Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/f9h1nGlseaPeSKNpTj3jYCGn_3s.roa
File: f9h1nGlseaPeSKNpTj3jYCGn_3s.roa (raw, json)
Hash identifier: eh4adLbIieZQaGnZExIUo06P3/iYXLY6L26//IPU3tI=
Subject key identifier: 7F:D8:75:9C:69:6C:79:A3:DE:48:A3:69:4E:3D:E3:60:21:A7:FF:7B
Certificate issuer: /CN=1ecb9bd5ed96e69dda8fc2a1fe02147adae8f713
Certificate serial: 018FA71A32ED54CDD8DA77007F278E9A2DB8
Authority key identifier: 1E:CB:9B:D5:ED:96:E6:9D:DA:8F:C2:A1:FE:02:14:7A:DA:E8:F7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/f9h1nGlseaPeSKNpTj3jYCGn_3s.roa
Signing time: Thu 23 May 2024 20:17:42 +0000
ROA not before: Thu 23 May 2024 20:17:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19229
IP address blocks: 77.95.80.0/21 maxlen: 21
77.95.80.0/23 maxlen: 23
77.95.82.0/23 maxlen: 23
77.95.84.0/23 maxlen: 23
77.95.86.0/23 maxlen: 23
176.32.232.0/21 maxlen: 21
176.32.232.0/24 maxlen: 24
176.32.233.0/24 maxlen: 24
176.32.234.0/24 maxlen: 24
176.32.235.0/24 maxlen: 24
176.32.236.0/24 maxlen: 24
176.32.237.0/24 maxlen: 24
176.32.238.0/24 maxlen: 24
176.32.239.0/24 maxlen: 24
185.148.132.0/22 maxlen: 22
185.148.132.0/23 maxlen: 23
185.148.134.0/23 maxlen: 23
217.64.224.0/20 maxlen: 20
217.64.224.0/23 maxlen: 23
217.64.226.0/23 maxlen: 23
217.64.228.0/23 maxlen: 23
217.64.230.0/23 maxlen: 23
217.64.232.0/23 maxlen: 23
217.64.234.0/23 maxlen: 23
217.64.236.0/23 maxlen: 23
217.64.238.0/23 maxlen: 23
217.147.64.0/20 maxlen: 20
217.147.64.0/23 maxlen: 23
217.147.66.0/23 maxlen: 23
217.147.68.0/23 maxlen: 23
217.147.70.0/23 maxlen: 23
217.147.72.0/23 maxlen: 23
217.147.74.0/23 maxlen: 23
217.147.76.0/23 maxlen: 23
217.147.78.0/23 maxlen: 23
2a02:5f00::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 24 May 2024 14:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a7:1a:32:ed:54:cd:d8:da:77:00:7f:27:8e:9a:2d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ecb9bd5ed96e69dda8fc2a1fe02147adae8f713
Validity
Not Before: May 23 20:17:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fd8759c696c79a3de48a3694e3de36021a7ff7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a2:4f:1a:57:06:e9:6d:e5:41:06:e5:8b:73:
31:e5:60:3f:b1:88:86:44:92:d0:d6:0b:16:96:94:
dd:a2:97:e3:21:77:5f:55:d6:e9:85:6b:0f:58:b9:
c3:ad:1a:a5:54:f7:2f:ff:d4:1f:d0:08:7d:b3:66:
59:ac:87:85:b5:08:a8:a2:53:94:40:a6:62:17:30:
74:0d:0d:60:40:57:c9:5d:36:db:c3:35:08:86:68:
65:d9:67:5f:1f:3a:b5:2a:1c:15:42:4e:29:38:13:
3c:3e:93:6a:c5:98:b5:9a:98:3d:f3:c9:1a:7d:d2:
a4:84:4e:60:5e:9c:4f:24:bb:a8:17:7b:9f:7e:bf:
6f:c4:04:b6:91:cc:20:e8:3e:96:af:be:e7:c6:89:
51:e1:2a:b1:5c:e5:f7:f7:72:5e:33:97:5b:a7:0e:
2d:a8:ed:89:45:38:bd:b2:7c:4a:39:18:03:18:b2:
04:86:1c:ae:75:9e:55:89:53:fa:23:2d:72:6b:06:
b7:94:33:cb:c6:0f:84:3a:58:eb:93:18:bd:08:6b:
53:5c:9a:d4:63:82:2c:30:80:79:26:b5:d0:79:dd:
13:55:2a:e3:95:c9:b8:fa:2d:e9:94:91:6d:f4:91:
1e:4b:24:76:b1:d6:38:5c:7c:92:57:ed:b9:f3:e3:
91:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D8:75:9C:69:6C:79:A3:DE:48:A3:69:4E:3D:E3:60:21:A7:FF:7B
X509v3 Authority Key Identifier:
keyid:1E:CB:9B:D5:ED:96:E6:9D:DA:8F:C2:A1:FE:02:14:7A:DA:E8:F7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/f9h1nGlseaPeSKNpTj3jYCGn_3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/Hsub1e2W5p3aj8Kh_gIUetro9xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.80.0/21
176.32.232.0/21
185.148.132.0/22
217.64.224.0/20
217.147.64.0/20
IPv6:
2a02:5f00::/32
Signature Algorithm: sha256WithRSAEncryption
1e:5c:68:4f:76:52:9b:d6:4b:c4:2c:80:7a:43:0b:8e:91:65:
1a:3e:95:31:b9:8b:df:2a:d4:bd:ad:07:a5:b5:ec:9d:aa:73:
08:cb:92:30:86:9f:00:9f:e7:e4:c3:a6:f2:e0:ed:3d:cc:85:
65:bc:e3:cf:64:e4:fc:81:4d:c4:a2:e4:ca:81:9c:0d:a7:cb:
c0:fb:54:b7:d1:60:38:9b:e0:0b:ca:36:e4:6e:c2:36:a9:81:
20:54:8e:8a:80:9c:dd:c2:72:35:d6:c6:8f:6f:83:6a:1f:53:
18:87:8c:64:04:78:83:5c:1b:97:9f:99:8b:e1:17:7e:a3:5b:
c8:41:c8:57:c9:d3:d2:ee:c6:1b:05:5c:94:ef:58:af:39:3d:
53:5e:a2:0f:5c:3c:aa:1b:89:0d:9e:62:ab:c7:0b:01:49:76:
0c:d8:3b:52:25:83:0d:95:32:21:d4:e8:c1:e0:aa:13:eb:44:
96:78:ee:0c:6b:c8:a1:ee:45:26:f5:59:45:41:6b:c6:80:52:
25:5a:c5:dc:59:9d:72:6c:ce:8e:33:4c:d7:56:26:f8:8c:ab:
df:d2:f0:1c:eb:eb:a8:61:3d:7f:d9:c3:cc:6e:d3:51:ce:aa:
43:d7:d7:ae:e9:5b:2a:10:d7:ca:c4:a7:f7:92:68:2f:29:b5:
d8:06:f0:fc
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAY+nGjLtVM3Y2ncAfyeOmi24MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlY2I5YmQ1ZWQ5NmU2OWRkYThmYzJhMWZlMDIxNDdhZGFl
OGY3MTMwHhcNMjQwNTIzMjAxNzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmQ4NzU5YzY5NmM3OWEzZGU0OGEzNjk0ZTNkZTM2MDIxYTdmZjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqJPGlcG6W3lQQbli3Mx5WA/sYiG
RJLQ1gsWlpTdopfjIXdfVdbphWsPWLnDrRqlVPcv/9Qf0Ah9s2ZZrIeFtQioolOU
QKZiFzB0DQ1gQFfJXTbbwzUIhmhl2WdfHzq1KhwVQk4pOBM8PpNqxZi1mpg988ka
fdKkhE5gXpxPJLuoF3uffr9vxAS2kcwg6D6Wr77nxolR4SqxXOX393JeM5dbpw4t
qO2JRTi9snxKORgDGLIEhhyudZ5ViVP6Iy1yawa3lDPLxg+EOljrkxi9CGtTXJrU
Y4IsMIB5JrXQed0TVSrjlcm4+i3plJFt9JEeSyR2sdY4XHySV+258+ORPQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFH/YdZxpbHmj3kijaU4942Ahp/97MB8GA1UdIwQY
MBaAFB7Lm9Xtluad2o/Cof4CFHra6PcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHN1YjFlMlc1cDNhajhLaF9nSVVldHJvOXhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9jMzQxNTAtNTkxMi00OTBjLWIzNWIt
ZjU0ZmJmNjkxN2JjLzEvZjloMW5HbHNlYVBlU0tOcFRqM2pZQ0duXzNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9jMzQxNTAtNTkxMi00OTBjLWIzNWItZjU0ZmJmNjkxN2Jj
LzEvSHN1YjFlMlc1cDNhajhLaF9nSVVldHJvOXhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDTV9QAwQD
sCDoAwQCuZSEAwQE2UDgAwQE2ZNAMA0EAgACMAcDBQAqAl8AMA0GCSqGSIb3DQEB
CwUAA4IBAQAeXGhPdlKb1kvELIB6QwuOkWUaPpUxuYvfKtS9rQelteydqnMIy5Iw
hp8An+fkw6by4O09zIVlvOPPZOT8gU3EouTKgZwNp8vA+1S30WA4m+ALyjbkbsI2
qYEgVI6KgJzdwnI11saPb4NqH1MYh4xkBHiDXBuXn5mL4Rd+o1vIQchXydPS7sYb
BVyU71ivOT1TXqIPXDyqG4kNnmKrxwsBSXYM2DtSJYMNlTIh1OjB4KoT60SWeO4M
a8ih7kUm9VlFQWvGgFIlWsXcWZ1ybM6OM0zXVib4jKvf0vAc6+uoYT1/2cPMbtNR
zqpD19eu6VsqENfKxKf3kmgvKbXYBvD8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:54 2024 by rpki-client on console-fra.rpki-client.org