Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/FcoJkMXwWXYBVEVnESJyd0Bo7pE.roa
File: FcoJkMXwWXYBVEVnESJyd0Bo7pE.roa (raw, json)
Hash identifier: ZzGgn9L/cW6o5EI4QgkBUuEz8hVRus0KuzYVpt9FZgY=
Subject key identifier: 15:CA:09:90:C5:F0:59:76:01:54:45:67:11:22:72:77:40:68:EE:91
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 018751C54175E035735AB2E292FF21272555
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/FcoJkMXwWXYBVEVnESJyd0Bo7pE.roa
Signing time: Wed 05 Apr 2023 14:14:54 +0000
ROA not before: Wed 05 Apr 2023 14:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 378
IP address blocks: 192.117.80.0/20 maxlen: 20
192.115.164.0/22 maxlen: 22
192.115.168.0/21 maxlen: 21
192.114.0.0/21 maxlen: 21
192.114.16.0/21 maxlen: 21
192.115.192.0/21 maxlen: 21
128.139.0.0/17 maxlen: 17
128.139.0.0/16 maxlen: 16
192.114.92.0/22 maxlen: 22
192.114.96.0/20 maxlen: 20
192.114.102.0/24 maxlen: 24
192.114.100.0/24 maxlen: 24
192.114.101.0/24 maxlen: 24
192.114.124.0/22 maxlen: 22
128.139.199.0/24 maxlen: 24
192.114.128.0/20 maxlen: 20
185.115.212.0/22 maxlen: 22
192.114.48.0/21 maxlen: 21
192.114.56.0/22 maxlen: 22
128.139.128.0/17 maxlen: 17
192.114.60.0/23 maxlen: 23
192.114.192.0/18 maxlen: 18
128.139.200.0/24 maxlen: 24
192.115.46.0/24 maxlen: 24
192.115.64.0/22 maxlen: 22
132.78.0.0/16 maxlen: 16
192.115.32.0/20 maxlen: 20
2001:bf8::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:c5:41:75:e0:35:73:5a:b2:e2:92:ff:21:27:25:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Apr 5 14:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15ca0990c5f0597601544567112272774068ee91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:80:2a:ba:70:0d:cc:e9:01:e1:86:61:df:7c:
6b:8c:ec:d1:6e:aa:51:16:d2:7d:5d:63:e8:20:6a:
21:2a:97:31:00:b7:b3:c4:15:56:47:0b:50:f9:c7:
f8:dc:ac:eb:2e:35:01:d2:84:8e:f5:92:66:b4:14:
e7:64:b6:7f:c0:82:b2:18:5d:05:5a:82:fa:fb:96:
9b:ec:6a:e1:89:3a:da:97:d3:93:7e:c5:88:07:3e:
62:9f:6a:58:55:8e:49:d3:38:05:a9:7d:c1:bd:c9:
ed:e9:a3:6b:5e:e7:11:77:e0:26:16:de:9d:07:ee:
76:d8:a6:fb:9a:47:6a:77:1b:90:e9:67:19:22:5c:
2c:15:72:32:f0:77:ed:64:05:24:52:bc:d4:b5:05:
72:25:c7:5a:83:2a:89:c7:d6:20:19:d2:30:ee:d3:
f7:04:ca:5b:b3:f0:4d:e5:79:86:ca:c7:60:3b:3e:
37:72:6b:c2:78:5b:b0:11:27:d4:33:49:86:6b:8a:
0f:7f:0d:b3:57:3e:92:1c:76:be:b6:ae:40:3c:ed:
6f:dc:a7:b6:ac:d7:68:10:8f:be:64:d7:28:35:2b:
9a:7f:7e:45:6d:4d:a4:86:85:e7:f6:07:99:2d:72:
7d:b5:80:b7:01:26:3b:e0:61:5a:b7:24:c9:ee:89:
89:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:CA:09:90:C5:F0:59:76:01:54:45:67:11:22:72:77:40:68:EE:91
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/FcoJkMXwWXYBVEVnESJyd0Bo7pE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.139.0.0/16
132.78.0.0/16
185.115.212.0/22
192.114.0.0/21
192.114.16.0/21
192.114.48.0-192.114.61.255
192.114.92.0-192.114.111.255
192.114.124.0-192.114.143.255
192.114.192.0/18
192.115.32.0/20
192.115.64.0/22
192.115.164.0-192.115.175.255
192.115.192.0/21
192.117.80.0/20
IPv6:
2001:bf8::/32
Signature Algorithm: sha256WithRSAEncryption
47:43:a1:62:47:88:9a:ec:d5:1d:b3:55:e0:f7:a6:32:b3:64:
2f:e6:80:04:e5:7e:4a:2e:59:f5:63:f3:c6:77:fa:7d:92:e2:
f5:26:26:5e:64:64:c4:d7:52:7e:df:39:e5:ca:5e:1b:3b:d7:
93:b7:18:43:11:31:5f:d7:37:8d:be:a4:ff:ff:37:5d:06:b9:
1a:89:af:27:4f:fb:64:5d:05:9c:63:b6:cb:e4:7d:a6:66:17:
db:e3:d8:4c:25:ed:0c:9d:0e:8a:f5:e8:80:bf:e5:4d:c4:2a:
95:93:b4:2f:7f:b6:93:3d:f7:33:d3:be:23:7b:a9:a3:5e:58:
7a:a9:76:77:3d:0a:be:d6:3d:1c:75:dc:ce:44:c1:19:e8:bb:
b3:e8:78:a6:fb:e6:54:25:1a:4a:03:39:6d:c4:31:55:b1:a2:
9c:a8:12:69:b4:2d:06:89:d4:8f:d9:0e:23:25:e9:08:48:2e:
46:bf:55:f1:2d:a9:cc:2d:2e:45:b6:83:b5:3d:36:43:bc:f2:
a9:e7:ac:ff:de:b2:3c:6f:5f:7a:49:c1:d9:29:93:3e:16:91:
c1:f0:e5:04:95:5f:f2:06:4a:40:63:87:40:dd:12:87:3e:99:
f8:04:44:5c:52:dd:dc:c1:de:30:1e:fc:c3:3a:5d:dc:c6:0d:
b7:7a:50:76
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgISAYdRxUF14DVzWrLikv8hJyVVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZmE1OTZhMzEyNmFjZTAyOWM2ZDcwZDUyOTI1N2UwN2Iz
OGJhMDYwHhcNMjMwNDA1MTQxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWNhMDk5MGM1ZjA1OTc2MDE1NDQ1NjcxMTIyNzI3NzQwNjhlZTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooAqunANzOkB4YZh33xrjOzRbqpR
FtJ9XWPoIGohKpcxALezxBVWRwtQ+cf43KzrLjUB0oSO9ZJmtBTnZLZ/wIKyGF0F
WoL6+5ab7GrhiTral9OTfsWIBz5in2pYVY5J0zgFqX3Bvcnt6aNrXucRd+AmFt6d
B+522Kb7mkdqdxuQ6WcZIlwsFXIy8HftZAUkUrzUtQVyJcdagyqJx9YgGdIw7tP3
BMpbs/BN5XmGysdgOz43cmvCeFuwESfUM0mGa4oPfw2zVz6SHHa+tq5APO1v3Ke2
rNdoEI++ZNcoNSuaf35FbU2khoXn9geZLXJ9tYC3ASY74GFatyTJ7omJkwIDAQAB
o4IChzCCAoMwHQYDVR0OBBYEFBXKCZDF8Fl2AVRFZxEicndAaO6RMB8GA1UdIwQY
MBaAFB76WWoxJqzgKcbXDVKSV+B7OLoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODIt
OWQwYzYyMDczNWYxLzEvRmNvSmtNWHdXWFlCVkVWbkVTSnlkMEJvN3BFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODItOWQwYzYyMDczNWYx
LzEvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGcBggrBgEFBQcBBwEB/wSBjDCBiTB4BAIAATByAwMAgIsD
AwCETgMEArlz1AMEA8ByAAMEA8ByEDAMAwQEwHIwAwQBwHI8MAwDBALAclwDBATA
cmAwDAMEAsByfAMEBMBygAMEBsBywAMEBMBzIAMEAsBzQDAMAwQCwHOkAwQEwHOg
AwQDwHPAAwQEwHVQMA0EAgACMAcDBQAgAQv4MA0GCSqGSIb3DQEBCwUAA4IBAQBH
Q6FiR4ia7NUds1Xg96Yys2Qv5oAE5X5KLln1Y/PGd/p9kuL1JiZeZGTE11J+3znl
yl4bO9eTtxhDETFf1zeNvqT//zddBrkaia8nT/tkXQWcY7bL5H2mZhfb49hMJe0M
nQ6K9eiAv+VNxCqVk7Qvf7aTPfcz074je6mjXlh6qXZ3PQq+1j0cddzORMEZ6Luz
6Him++ZUJRpKAzltxDFVsaKcqBJptC0GidSP2Q4jJekISC5Gv1XxLanMLS5FtoO1
PTZDvPKp56z/3rI8b196ScHZKZM+FpHB8OUElV/yBkpAY4dA3RKHPpn4BERcUt3c
wd4wHvzDOl3cxg23elB2
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:29 2024 by rpki-client on console-fra.rpki-client.org