Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/pioxKeHDYdQ-MmiowVX45y1V9Rw.roa
File: pioxKeHDYdQ-MmiowVX45y1V9Rw.roa (raw, json)
Hash identifier: kBYfOhgAE/2Ui9b+xVrhyUpeGeJ4xGqngQkX1nYdcMk=
Subject key identifier: A6:2A:31:29:E1:C3:61:D4:3E:32:68:A8:C1:55:F8:E7:2D:55:F5:1C
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 0186589E9361AA0C02CFE3055998032FD377
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/pioxKeHDYdQ-MmiowVX45y1V9Rw.roa
Signing time: Thu 16 Feb 2023 05:07:12 +0000
ROA not before: Thu 16 Feb 2023 05:07:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29262
IP address blocks: 193.38.44.0/23 maxlen: 23
194.56.186.0/23 maxlen: 23
193.38.46.0/23 maxlen: 23
85.235.74.0/23 maxlen: 23
85.235.72.0/23 maxlen: 23
139.28.35.0/24 maxlen: 24
139.28.34.0/24 maxlen: 24
139.28.33.0/24 maxlen: 24
139.28.32.0/24 maxlen: 24
194.169.94.0/23 maxlen: 23
194.169.92.0/23 maxlen: 23
84.54.0.0/22 maxlen: 22
83.171.244.0/22 maxlen: 22
37.221.78.0/23 maxlen: 23
185.254.54.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
141.98.50.0/24 maxlen: 24
188.119.68.0/22 maxlen: 22
193.187.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 21 Feb 2023 18:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:58:9e:93:61:aa:0c:02:cf:e3:05:59:98:03:2f:d3:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Feb 16 05:07:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a62a3129e1c361d43e3268a8c155f8e72d55f51c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:18:7b:eb:ae:c9:fc:80:db:3a:93:20:a5:bf:
a0:ad:9e:68:2d:d5:b4:7b:71:77:b9:e9:4b:3b:44:
0a:15:05:40:34:92:24:85:83:67:7b:07:f2:89:bf:
ad:fa:34:e1:b2:08:72:12:72:3f:d3:13:6f:d0:35:
a9:7a:88:29:bf:d0:75:e9:ce:83:13:08:56:69:a6:
94:36:36:c8:b0:70:4b:d4:86:b7:69:51:49:ff:cd:
d6:4f:79:d5:a8:36:c6:d5:4c:c2:dc:0f:64:ce:57:
af:9b:ba:cd:9d:10:1f:9e:ca:98:fa:51:e1:61:9e:
0f:06:2d:1e:6f:fb:6d:50:e7:ae:6a:ec:d5:5d:b2:
6a:98:79:34:d5:de:3f:83:b8:66:2d:46:7d:40:b4:
3c:8a:11:97:4f:3c:de:c2:42:5d:c5:54:c2:a0:8a:
17:03:95:48:78:b8:03:c8:79:db:5c:23:a9:ad:dc:
cf:cb:d1:c8:21:8f:56:17:da:0a:b5:30:ef:05:d0:
8b:72:c8:57:ed:93:ae:6f:b7:00:bc:a4:0f:10:6e:
87:47:43:e5:d3:b4:e1:35:9d:21:ae:a1:f0:f2:3f:
ba:b1:23:d1:5f:60:60:bb:2f:ab:f9:5b:44:5e:79:
64:fe:3b:2e:89:3b:e4:f9:46:ea:1f:88:0e:34:54:
6c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2A:31:29:E1:C3:61:D4:3E:32:68:A8:C1:55:F8:E7:2D:55:F5:1C
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/pioxKeHDYdQ-MmiowVX45y1V9Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.78.0/23
83.171.244.0/22
84.54.0.0/22
85.235.72.0/22
139.28.32.0/22
141.98.50.0/24
185.254.54.0/23
188.119.68.0/22
193.38.44.0/22
193.187.140.0/22
194.56.186.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:d0:16:3d:c0:a2:e1:0c:3d:b7:95:09:de:4a:8f:a8:0a:0e:
2a:c2:88:6e:9e:17:35:f1:62:e9:50:06:87:be:98:02:37:2f:
8a:59:0f:6b:59:67:49:7d:f9:eb:c3:c1:83:bd:a1:f8:2a:f2:
ca:97:7e:05:0e:e8:e8:08:32:1e:53:13:7e:60:4c:c1:69:d8:
eb:9e:a5:a1:2a:5f:40:dd:49:7a:f2:7e:1e:bd:bc:15:5b:0a:
15:69:df:cd:a8:4f:10:22:63:8e:fe:85:cd:96:ab:b9:ee:a1:
d4:15:de:41:4e:1b:34:4b:b2:e4:25:22:6d:7d:37:fe:ef:69:
0f:6a:5e:51:02:38:af:99:60:c9:69:9d:65:7e:60:18:5d:2e:
86:73:ea:85:6e:2e:b2:f5:c0:37:cd:55:24:10:45:51:50:09:
01:03:27:e6:0c:b8:76:33:1f:a8:38:ee:de:80:22:20:c2:ae:
26:b2:3c:9c:d9:65:4a:ba:8b:8b:d2:b8:a7:19:21:5e:37:b6:
d5:48:37:14:72:9a:81:df:c8:cc:e7:0d:c5:87:c9:78:a7:cb:
19:36:76:9d:55:c7:75:83:e9:ec:26:92:75:bc:8b:48:55:f3:
e4:41:60:fa:5f:61:e7:aa:3e:6d:ba:7b:e0:59:a1:e7:54:1c:
ba:95:21:bc
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAYZYnpNhqgwCz+MFWZgDL9N3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOTUwOWIzM2RhNTVmM2U1ZDUyODNlYjYyMWQwZDM1ZDdh
ZWVkNWMwHhcNMjMwMjE2MDUwNzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjJhMzEyOWUxYzM2MWQ0M2UzMjY4YThjMTU1ZjhlNzJkNTVmNTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRh7667J/IDbOpMgpb+grZ5oLdW0
e3F3uelLO0QKFQVANJIkhYNnewfyib+t+jThsghyEnI/0xNv0DWpeogpv9B16c6D
EwhWaaaUNjbIsHBL1Ia3aVFJ/83WT3nVqDbG1UzC3A9kzlevm7rNnRAfnsqY+lHh
YZ4PBi0eb/ttUOeuauzVXbJqmHk01d4/g7hmLUZ9QLQ8ihGXTzzewkJdxVTCoIoX
A5VIeLgDyHnbXCOprdzPy9HIIY9WF9oKtTDvBdCLcshX7ZOub7cAvKQPEG6HR0Pl
07ThNZ0hrqHw8j+6sSPRX2Bguy+r+VtEXnlk/jsuiTvk+UbqH4gONFRsswIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFKYqMSnhw2HUPjJoqMFV+OctVfUcMB8GA1UdIwQY
MBaAFE+VCbM9pV8+XVKD62IdDTXXru1cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDVVSnN6MmxYejVkVW9QclloME5OZGV1N1Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82ZmMxYmMtYTVmOC00MmE4LTk1ZTQt
NjAxMDdlMmI1MTA5LzEvcGlveEtlSERZZFEtTW1pb3dWWDQ1eTFWOVJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82ZmMxYmMtYTVmOC00MmE4LTk1ZTQtNjAxMDdlMmI1MTA5
LzEvVDVVSnN6MmxYejVkVW9QclloME5OZGV1N1Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQBJd1OAwQC
U6v0AwQCVDYAAwQCVetIAwQCixwgAwQAjWIyAwQBuf42AwQCvHdEAwQCwSYsAwQC
wbuMAwQBwji6AwQCwqlcMA0GCSqGSIb3DQEBCwUAA4IBAQC30BY9wKLhDD23lQne
So+oCg4qwohunhc18WLpUAaHvpgCNy+KWQ9rWWdJffnrw8GDvaH4KvLKl34FDujo
CDIeUxN+YEzBadjrnqWhKl9A3Ul68n4evbwVWwoVad/NqE8QImOO/oXNlqu57qHU
Fd5BThs0S7LkJSJtfTf+72kPal5RAjivmWDJaZ1lfmAYXS6Gc+qFbi6y9cA3zVUk
EEVRUAkBAyfmDLh2Mx+oOO7egCIgwq4msjyc2WVKuouL0rinGSFeN7bVSDcUcpqB
38jM5w3Fh8l4p8sZNnadVcd1g+nsJpJ1vItIVfPkQWD6X2Hnqj5tunvgWaHnVBy6
lSG8
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org