Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/JwPgWrTy9k1y9mP751oITMrLGB4.roa
File: JwPgWrTy9k1y9mP751oITMrLGB4.roa (raw, json)
Hash identifier: yvYeooFFO+VkKqrGg+x66Ux5+tl9RYrp3wEyezU7css=
Subject key identifier: 27:03:E0:5A:B4:F2:F6:4D:72:F6:63:FB:E7:5A:08:4C:CA:CB:18:1E
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 018750DF74B9D25BAD2E92E495F61013D5EB
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/JwPgWrTy9k1y9mP751oITMrLGB4.roa
Signing time: Wed 05 Apr 2023 10:03:54 +0000
ROA not before: Wed 05 Apr 2023 10:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199636
IP address blocks: 185.146.220.0/22 maxlen: 24
141.255.128.0/21 maxlen: 24
212.114.16.0/20 maxlen: 24
45.80.8.0/22 maxlen: 24
185.91.220.0/22 maxlen: 24
45.80.24.0/22 maxlen: 24
45.80.20.0/22 maxlen: 24
45.80.32.0/22 maxlen: 24
95.178.88.0/22 maxlen: 24
88.202.236.0/22 maxlen: 24
91.203.92.0/22 maxlen: 24
185.44.88.0/22 maxlen: 24
130.180.208.0/20 maxlen: 24
2a05:6e00::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:df:74:b9:d2:5b:ad:2e:92:e4:95:f6:10:13:d5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: Apr 5 10:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2703e05ab4f2f64d72f663fbe75a084ccacb181e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:f1:19:e6:27:01:c7:21:15:83:db:63:1c:
0a:7d:9b:63:92:e1:84:8b:23:9e:81:82:93:3e:41:
3c:ed:17:6a:2a:96:45:cb:ed:52:a8:0c:f2:18:7d:
aa:30:90:67:3a:3f:ff:4f:58:a0:24:6b:bd:30:42:
0c:51:d8:3a:9f:ac:68:87:f4:bf:80:4e:23:f5:f2:
4c:b4:86:61:39:bc:1b:2f:a3:d7:9e:b4:bc:99:0d:
5c:e1:cd:68:55:f8:ae:c5:a3:b0:c5:7f:08:a3:4c:
0f:a0:61:5e:62:7f:c1:ac:ad:4f:c3:42:7e:c6:6d:
c1:9d:13:51:05:40:aa:68:22:75:aa:02:09:21:06:
57:3d:e3:8c:89:c7:bf:b3:22:30:bf:5e:c7:38:7f:
32:11:ed:ae:23:d9:e3:17:d5:c0:0f:35:e8:ec:15:
a5:ce:8a:ba:9d:95:48:67:5a:09:a0:d7:ef:28:64:
9e:10:24:91:25:a6:30:db:5e:bc:4d:c9:8a:6c:db:
a8:ae:5c:d6:e6:e2:47:84:87:a6:41:70:a4:26:86:
27:82:b8:5c:c2:81:5a:07:14:6a:50:6e:2f:16:ac:
aa:e4:14:84:a9:04:c6:d7:5c:aa:73:1a:ce:18:1e:
34:f0:03:10:85:a4:59:0f:97:78:69:a5:bd:e8:33:
72:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:03:E0:5A:B4:F2:F6:4D:72:F6:63:FB:E7:5A:08:4C:CA:CB:18:1E
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/JwPgWrTy9k1y9mP751oITMrLGB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.8.0/22
45.80.20.0-45.80.27.255
45.80.32.0/22
88.202.236.0/22
91.203.92.0/22
95.178.88.0/22
130.180.208.0/20
141.255.128.0/21
185.44.88.0/22
185.91.220.0/22
185.146.220.0/22
212.114.16.0/20
IPv6:
2a05:6e00::/29
Signature Algorithm: sha256WithRSAEncryption
3b:d5:4e:1a:94:d2:db:a7:8a:98:18:47:1e:b0:27:16:1c:db:
67:3e:13:12:7c:1d:32:6f:7e:6b:d9:3e:e4:6c:79:ca:6c:4a:
64:87:e7:1f:1f:ac:7d:e2:da:d5:44:ee:39:7e:90:ca:5d:92:
44:76:06:32:14:e2:a0:dc:36:a7:42:5c:f4:ac:d6:d3:17:74:
60:00:55:92:47:54:88:4d:86:82:99:92:a2:4a:bd:86:12:ae:
e1:00:1b:fd:98:ab:5e:56:85:99:00:b0:ea:76:0e:d1:4a:5b:
8b:45:b7:fb:02:d9:29:b7:21:e6:8c:b7:8f:1b:4e:ed:e6:9d:
55:ea:37:32:15:41:dd:66:99:71:2c:ce:5e:a3:0f:6c:29:f5:
eb:de:87:d2:64:f7:6e:04:6a:32:71:eb:79:4e:51:04:9d:e8:
9c:7c:a2:ac:00:33:0f:fd:58:bc:f9:69:7d:7b:27:9a:07:ba:
de:e4:8a:f8:f9:46:7b:f0:ea:cb:7d:38:cf:20:48:57:3d:29:
c8:6e:45:b9:7a:f9:96:58:d7:7a:40:5e:80:d9:7f:bc:48:b9:
df:aa:80:c1:9a:74:40:85:d9:ae:91:b2:ef:52:1b:c2:b9:eb:
d6:7a:d6:42:c6:61:5e:b9:81:20:fb:d6:cf:e0:e0:98:ff:8a:
98:df:b2:7f
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISAYdQ33S50lutLpLklfYQE9XrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MDllZTNkNjE4OTc0ZGEwY2JkODA1YTJkYTgwNDEwYTQ5
ODk4ODEwHhcNMjMwNDA1MTAwMzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzAzZTA1YWI0ZjJmNjRkNzJmNjYzZmJlNzVhMDg0Y2NhY2IxODFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrnxGeYnAcchFYPbYxwKfZtjkuGE
iyOegYKTPkE87RdqKpZFy+1SqAzyGH2qMJBnOj//T1igJGu9MEIMUdg6n6xoh/S/
gE4j9fJMtIZhObwbL6PXnrS8mQ1c4c1oVfiuxaOwxX8Io0wPoGFeYn/BrK1Pw0J+
xm3BnRNRBUCqaCJ1qgIJIQZXPeOMice/syIwv17HOH8yEe2uI9njF9XADzXo7BWl
zoq6nZVIZ1oJoNfvKGSeECSRJaYw2168TcmKbNuorlzW5uJHhIemQXCkJoYngrhc
woFaBxRqUG4vFqyq5BSEqQTG11yqcxrOGB408AMQhaRZD5d4aaW96DNy9QIDAQAB
o4ICYjCCAl4wHQYDVR0OBBYEFCcD4Fq08vZNcvZj++daCEzKyxgeMB8GA1UdIwQY
MBaAFOkJ7j1hiXTaDL2AWi2oBBCkmJiBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEt
ZGQxMTVmOWUzMzAxLzEvSndQZ1dyVHk5azF5OW1QNzUxb0lUTXJMR0I0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8yYjVmNWYtYmI5Ni00YjMxLThhNmEtZGQxMTVmOWUzMzAx
LzEvNlFudVBXR0pkTm9NdllCYUxhZ0VFS1NZbUlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzBWBAIAATBQAwQCLVAIMAwD
BAItUBQDBAItUBgDBAItUCADBAJYyuwDBAJby1wDBAJfslgDBASCtNADBAON/4AD
BAK5LFgDBAK5W9wDBAK5ktwDBATUchAwDQQCAAIwBwMFAyoFbgAwDQYJKoZIhvcN
AQELBQADggEBADvVThqU0tunipgYRx6wJxYc22c+ExJ8HTJvfmvZPuRsecpsSmSH
5x8frH3i2tVE7jl+kMpdkkR2BjIU4qDcNqdCXPSs1tMXdGAAVZJHVIhNhoKZkqJK
vYYSruEAG/2Yq15WhZkAsOp2DtFKW4tFt/sC2Sm3IeaMt48bTu3mnVXqNzIVQd1m
mXEszl6jD2wp9eveh9Jk924EajJx63lOUQSd6Jx8oqwAMw/9WLz5aX17J5oHut7k
ivj5Rnvw6st9OM8gSFc9KchuRbl6+ZZY13pAXoDZf7xIud+qgMGadECF2a6Rsu9S
G8K569Z61kLGYV65gSD71s/g4Jj/ipjfsn8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:50 2023 by rpki-client on console-ams.rpki-client.org