Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/7xSwMdj46t2ElEYSypxeuLyXxCA.roa
File: 7xSwMdj46t2ElEYSypxeuLyXxCA.roa (raw, json)
Hash identifier: wSFi8r8l4EXM1fhxKb9RPe5uVh4Kh3FutqonWn0YBJM=
Subject key identifier: EF:14:B0:31:D8:F8:EA:DD:84:94:46:12:CA:9C:5E:B8:BC:97:C4:20
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018857D5BB0F8B41DAC1F201C2CBC34C1D2A
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/7xSwMdj46t2ElEYSypxeuLyXxCA.roa
Signing time: Fri 26 May 2023 11:33:24 +0000
ROA not before: Fri 26 May 2023 11:33:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47787
IP address blocks: 193.163.151.0/24 maxlen: 24
188.93.192.0/21 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
193.107.13.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
2a10:ee40::/29 maxlen: 29
2a0d:82c0::/29 maxlen: 48
2a11:c00::/29 maxlen: 48
2a0f:8900::/29 maxlen: 29
2a0d:82c7:9::/48 maxlen: 48
2a0f:d300::/29 maxlen: 29
2a0e:5f00::/29 maxlen: 48
2a0b:e740::/29 maxlen: 29
2a0f:7700::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 23 Nov 2023 20:16:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:d5:bb:0f:8b:41:da:c1:f2:01:c2:cb:c3:4c:1d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: May 26 11:33:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef14b031d8f8eadd84944612ca9c5eb8bc97c420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5e:b9:79:5d:10:75:56:60:07:a5:79:85:e7:
a6:39:96:58:ab:3a:3f:72:84:c0:91:7e:18:3e:64:
dc:75:4a:68:90:06:49:bb:16:ff:59:6d:55:90:76:
52:60:47:ad:8e:19:4f:94:e5:db:cf:2e:fd:a3:15:
99:43:f8:ae:0a:16:88:e2:c7:e5:b4:1c:a7:5d:77:
d3:d9:88:88:2b:af:ff:74:d9:b2:ac:ba:fc:35:60:
d6:d0:1e:d7:1c:ef:79:dd:5d:7d:d5:77:68:f4:12:
4a:9a:b9:f6:67:5c:f7:cc:14:0c:87:67:28:14:b7:
1f:ef:20:40:27:bb:b7:b4:56:19:e8:3b:22:de:40:
21:fb:5e:b5:52:b9:ca:b9:72:09:fe:7c:8d:2f:a7:
56:a6:bf:7d:67:9d:08:94:f2:26:fd:56:6e:1b:91:
0a:c5:e0:ed:10:7e:b6:f8:51:3a:60:36:4d:2f:1e:
a8:4e:d9:03:9b:89:98:28:02:26:79:fa:c9:2d:5c:
b1:da:73:73:6f:9a:a3:d4:69:f9:14:ef:51:08:c7:
90:5a:61:34:db:a3:8b:c5:62:18:fe:08:e5:ce:09:
46:5b:50:3b:2a:75:62:c8:c7:c3:41:3d:b8:c1:61:
fb:00:05:a4:ec:3f:94:77:19:a5:ba:6d:e0:b8:16:
bb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:14:B0:31:D8:F8:EA:DD:84:94:46:12:CA:9C:5E:B8:BC:97:C4:20
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/7xSwMdj46t2ElEYSypxeuLyXxCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
193.107.13.0/24
193.163.151.0/24
IPv6:
2a0b:e740::/29
2a0d:82c0::/29
2a0e:5f00::/29
2a0f:7700::/29
2a0f:8900::/29
2a0f:d300::/29
2a10:ee40::/29
2a11:c00::/29
Signature Algorithm: sha256WithRSAEncryption
a9:49:a9:d1:43:6d:13:8a:66:ad:c5:a6:da:6f:ae:57:06:49:
74:45:c2:32:da:2e:dd:61:e9:fa:5a:9b:2d:dc:70:23:d4:5b:
43:2b:4f:b6:20:fa:1a:98:cc:c8:4c:00:fd:d1:8e:1a:f8:9c:
c1:e5:1e:09:56:2b:c7:f4:73:f1:e4:34:25:2d:ae:f9:05:b2:
0b:a9:02:99:a2:8a:f6:d2:ce:ff:12:a6:f1:2d:52:04:9b:09:
5e:80:92:78:6f:d7:97:f3:02:4f:e2:63:a2:df:3d:b0:7f:03:
f7:3c:70:8d:c6:1f:2f:ba:67:5a:51:14:de:a6:8c:a0:f2:e5:
ed:80:b5:46:e9:37:f9:61:d5:88:d1:03:36:76:72:3b:01:0e:
de:ed:98:64:8a:ad:1b:be:50:50:09:cc:ce:63:d4:54:a7:40:
01:05:72:4f:6c:5f:b6:1c:7e:db:fd:85:c8:c5:f1:92:b9:7c:
ad:06:06:49:d7:db:0b:95:86:bd:d3:b0:95:c7:29:7c:1d:a8:
02:e4:c6:43:5f:d9:80:4f:f9:2e:12:a2:e9:60:d0:41:86:55:
d2:f8:1d:70:ce:69:0c:4a:f4:17:52:fc:b5:2d:a9:43:c5:85:
a2:b2:b4:c3:59:02:b0:e9:ec:84:c2:e1:0f:2c:23:7e:dc:3a:
71:ba:08:dd
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAYhX1bsPi0HawfIBwsvDTB0qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi
NjMwYmYwHhcNMjMwNTI2MTEzMzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjE0YjAzMWQ4ZjhlYWRkODQ5NDQ2MTJjYTljNWViOGJjOTdjNDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiV65eV0QdVZgB6V5heemOZZYqzo/
coTAkX4YPmTcdUpokAZJuxb/WW1VkHZSYEetjhlPlOXbzy79oxWZQ/iuChaI4sfl
tBynXXfT2YiIK6//dNmyrLr8NWDW0B7XHO953V191Xdo9BJKmrn2Z1z3zBQMh2co
FLcf7yBAJ7u3tFYZ6Dsi3kAh+161UrnKuXIJ/nyNL6dWpr99Z50IlPIm/VZuG5EK
xeDtEH62+FE6YDZNLx6oTtkDm4mYKAImefrJLVyx2nNzb5qj1Gn5FO9RCMeQWmE0
26OLxWIY/gjlzglGW1A7KnViyMfDQT24wWH7AAWk7D+Udxmlum3guBa7swIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFO8UsDHY+OrdhJRGEsqcXri8l8QgMB8GA1UdIwQY
MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt
MTQ3MGFjMzY0ZGQyLzEvN3hTd01kajQ2dDJFbEVZU3lweGV1THlYeENBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy
LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjAkBAIAATAeAwQAuXD7AwQA
uaaQAwQDvF3AAwQAwWsNAwQAwaOXMD4EAgACMDgDBQMqC+dAAwUDKg2CwAMFAyoO
XwADBQMqD3cAAwUDKg+JAAMFAyoP0wADBQMqEO5AAwUDKhEMADANBgkqhkiG9w0B
AQsFAAOCAQEAqUmp0UNtE4pmrcWm2m+uVwZJdEXCMtou3WHp+lqbLdxwI9RbQytP
tiD6GpjMyEwA/dGOGvicweUeCVYrx/Rz8eQ0JS2u+QWyC6kCmaKK9tLO/xKm8S1S
BJsJXoCSeG/Xl/MCT+Jjot89sH8D9zxwjcYfL7pnWlEU3qaMoPLl7YC1Ruk3+WHV
iNEDNnZyOwEO3u2YZIqtG75QUAnMzmPUVKdAAQVyT2xfthx+2/2FyMXxkrl8rQYG
SdfbC5WGvdOwlccpfB2oAuTGQ1/ZgE/5LhKi6WDQQYZV0vgdcM5pDEr0F1L8tS2p
Q8WForK0w1kCsOnshMLhDywjftw6cboI3Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org