Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/F9qdx6xSKCunpOHMGCqpWcHmJ8A.roa
File: F9qdx6xSKCunpOHMGCqpWcHmJ8A.roa (raw, json)
Hash identifier: AapksRjXqIrgVBUrHRiEUh+2Nwpn/PhKBIDGL/8gOBI=
Subject key identifier: 17:DA:9D:C7:AC:52:28:2B:A7:A4:E1:CC:18:2A:A9:59:C1:E6:27:C0
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018A3771310936F3DDFD4D51562F1B867A4B
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/F9qdx6xSKCunpOHMGCqpWcHmJ8A.roa
Signing time: Sun 27 Aug 2023 14:41:19 +0000
ROA not before: Sun 27 Aug 2023 14:41:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:71:31:09:36:f3:dd:fd:4d:51:56:2f:1b:86:7a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 27 14:41:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17da9dc7ac52282ba7a4e1cc182aa959c1e627c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:94:cf:04:21:95:e2:b2:87:13:a0:0d:fc:01:
e6:b7:7e:61:60:12:dd:c0:2e:8f:5c:d2:e6:43:77:
2b:4a:05:a4:b9:4f:f3:6a:84:fa:24:95:ce:17:ee:
0f:d5:76:a3:36:98:4b:7d:44:48:f9:9c:07:12:d7:
8d:ae:9b:7f:8d:e3:ce:75:ee:9c:9f:92:56:55:1a:
2d:3a:01:bb:e0:7d:d1:a9:7b:e4:bb:91:26:f7:1d:
d2:a7:7d:7a:fd:cb:96:01:2b:b9:17:d5:fc:ae:10:
31:d1:f9:2e:b0:af:96:fc:f9:af:5b:3e:c3:38:18:
20:8a:62:77:4d:31:74:a5:be:d0:00:05:cf:e6:d8:
2a:0c:09:bc:21:6b:75:30:69:88:30:dd:27:79:7b:
18:03:95:c2:49:ef:f4:c0:a0:aa:b4:64:ad:47:e5:
7e:8a:95:e0:41:18:93:04:f5:ec:20:b2:a9:c8:37:
8f:2e:63:ce:55:65:90:53:07:a1:c9:86:c0:3b:a9:
0c:56:0f:16:9a:d5:e6:83:04:9a:20:1b:89:e0:fd:
d9:97:3a:37:c8:e0:ab:2b:f1:74:9d:ff:17:e6:14:
69:96:12:d5:66:34:a2:d4:4d:8d:12:7a:10:49:58:
48:04:0a:66:a8:6f:b8:11:e8:a3:44:f7:13:67:8c:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DA:9D:C7:AC:52:28:2B:A7:A4:E1:CC:18:2A:A9:59:C1:E6:27:C0
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/F9qdx6xSKCunpOHMGCqpWcHmJ8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0/23
5.178.99.0-5.178.100.255
5.178.104.0-5.178.106.255
5.178.109.0-5.178.110.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:3e:de:ce:15:26:8d:c6:0c:4f:ac:19:58:bc:5c:a6:07:6c:
10:58:aa:46:2a:34:5e:e6:35:21:d0:91:53:3a:10:3b:57:4a:
2c:4d:64:b9:0b:03:20:f2:c8:ae:14:e5:d7:88:41:c7:e6:11:
a1:2c:9f:9b:06:69:9a:40:3b:84:a8:16:bf:30:32:fb:22:4a:
58:e3:d4:03:9f:2a:4e:56:12:05:7f:9a:1a:81:cc:78:a1:dd:
54:66:ac:e0:13:1b:39:be:94:ae:60:7d:98:fc:9f:97:b0:a3:
4c:c0:dd:a6:2c:4f:9f:35:da:13:29:5a:5c:fd:3f:91:01:5d:
57:d3:a4:3d:99:52:5c:9c:30:97:d1:e1:dd:c2:3b:9b:63:52:
33:d8:b4:e6:18:85:62:7c:9f:e3:a5:59:29:35:49:c7:df:60:
08:e1:f7:7a:95:37:9b:20:d8:78:fa:bc:bf:2e:27:d3:fb:bf:
6a:6d:ca:e4:3c:07:4e:14:98:05:72:79:b4:09:d9:66:8c:32:
c4:3b:e9:75:de:24:c4:8a:71:12:af:d9:06:f5:2b:23:61:f0:
8f:3a:81:bf:08:c2:48:5b:ef:71:7c:f7:19:cb:08:51:5c:5e:
40:67:5f:08:87:05:00:62:03:84:6c:3d:9c:b0:4e:c5:94:1b:
54:0f:3a:e5
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAYo3cTEJNvPd/U1RVi8bhnpLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjMwODI3MTQ0MTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2RhOWRjN2FjNTIyODJiYTdhNGUxY2MxODJhYTk1OWMxZTYyN2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgJTPBCGV4rKHE6AN/AHmt35hYBLd
wC6PXNLmQ3crSgWkuU/zaoT6JJXOF+4P1XajNphLfURI+ZwHEteNrpt/jePOde6c
n5JWVRotOgG74H3RqXvku5Em9x3Sp316/cuWASu5F9X8rhAx0fkusK+W/PmvWz7D
OBggimJ3TTF0pb7QAAXP5tgqDAm8IWt1MGmIMN0neXsYA5XCSe/0wKCqtGStR+V+
ipXgQRiTBPXsILKpyDePLmPOVWWQUwehyYbAO6kMVg8WmtXmgwSaIBuJ4P3Zlzo3
yOCrK/F0nf8X5hRplhLVZjSi1E2NEnoQSVhIBApmqG+4EeijRPcTZ4xg7QIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFBfancesUigrp6ThzBgqqVnB5ifAMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvRjlxZHg2eFNLQ3VucE9ITUdDcXBXY0htSjhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBhBAIAATBbAwQABSf4MAsD
BAEFJ/oDAwMFIAMEAAWQtwMEAQWyYDAMAwQABbJjAwQABbJkMAwDBAMFsmgDBAAF
smowDAMEAAWybQMEAAWybgMEAx/A8AMEAi0M2AMEArkFJDANBgkqhkiG9w0BAQsF
AAOCAQEAuz7ezhUmjcYMT6wZWLxcpgdsEFiqRio0XuY1IdCRUzoQO1dKLE1kuQsD
IPLIrhTl14hBx+YRoSyfmwZpmkA7hKgWvzAy+yJKWOPUA58qTlYSBX+aGoHMeKHd
VGas4BMbOb6UrmB9mPyfl7CjTMDdpixPnzXaEylaXP0/kQFdV9OkPZlSXJwwl9Hh
3cI7m2NSM9i05hiFYnyf46VZKTVJx99gCOH3epU3myDYePq8vy4n0/u/am3K5DwH
ThSYBXJ5tAnZZowyxDvpdd4kxIpxEq/ZBvUrI2HwjzqBvwjCSFvvcXz3GcsIUVxe
QGdfCIcFAGIDhGw9nLBOxZQbVA865Q==
-----END CERTIFICATE-----
Generated at Fri Sep 8 08:40:51 2023 by rpki-client on console-fra.rpki-client.org