Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/_2Qkz-vOF2shICngXQZQVnGiV1c.roa
File: _2Qkz-vOF2shICngXQZQVnGiV1c.roa (raw, json)
Hash identifier: taGrtJmHLlwRDQG97u69QxEnzRZHnc9ENL9W9UwwA5o=
Subject key identifier: FF:64:24:CF:EB:CE:17:6B:21:20:29:E0:5D:06:50:56:71:A2:57:57
Certificate issuer: /CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Certificate serial: 01856CEF3BB18C41628CFA6B813A59559055
Authority key identifier: 70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/_2Qkz-vOF2shICngXQZQVnGiV1c.roa
Signing time: Sun 01 Jan 2023 10:44:55 +0000
ROA not before: Sun 01 Jan 2023 10:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200738
IP address blocks: 45.129.20.0/24 maxlen: 24
45.129.21.0/24 maxlen: 24
188.215.8.0/22 maxlen: 22
93.114.240.0/22 maxlen: 22
77.83.124.0/22 maxlen: 22
176.100.224.0/24 maxlen: 24
176.100.225.0/24 maxlen: 24
176.100.224.0/20 maxlen: 20
185.97.168.0/22 maxlen: 22
193.31.36.0/22 maxlen: 22
185.170.147.0/24 maxlen: 24
193.26.148.0/22 maxlen: 22
193.35.14.0/23 maxlen: 23
193.35.26.0/23 maxlen: 23
176.100.208.0/22 maxlen: 22
176.100.212.0/22 maxlen: 22
2a06:6c0:3::/48 maxlen: 48
2a06:6c0:254::/48 maxlen: 48
2a06:6c0:2::/48 maxlen: 48
2a06:6c0:1::/48 maxlen: 48
2a06:6c0:255::/48 maxlen: 48
2a06:6c0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:3b:b1:8c:41:62:8c:fa:6b:81:3a:59:55:90:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Validity
Not Before: Jan 1 10:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff6424cfebce176b212029e05d06505671a25757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:02:31:02:3f:15:ef:e7:ee:f5:c2:2d:78:
f8:fa:d7:c0:b5:43:7d:87:b7:ae:f8:f9:15:3f:ba:
f2:7e:9e:18:6a:c6:df:82:b5:5b:fb:a5:7a:6c:c9:
a0:ac:a3:ee:69:f7:26:a7:06:33:e0:48:e7:5d:4d:
94:f9:bc:62:46:c2:3a:53:21:a1:28:c2:79:9f:ab:
30:f0:fa:8b:ca:c5:bc:56:2b:4f:7a:fe:5d:97:55:
33:30:e6:63:6a:ee:b5:d8:c6:58:22:09:34:0b:9d:
00:00:13:b5:bd:29:bf:f2:86:47:9b:3f:60:5c:a7:
23:d3:4d:75:6a:9f:a1:43:72:2e:e6:86:08:0c:cd:
44:72:db:49:3e:74:fe:37:8c:d8:fa:3e:96:1a:23:
01:7c:b2:4c:68:8a:f2:75:08:5f:19:50:65:8e:63:
f2:a4:f6:6f:a9:6c:a7:64:3b:c6:ce:3b:ae:92:c0:
e1:dc:ea:a1:38:21:cc:fd:1a:2f:77:39:4c:b6:40:
6e:50:de:90:16:ad:4a:d4:16:f6:9f:07:ff:9d:3f:
8e:02:fa:bd:cd:97:45:99:ba:2d:25:0c:dc:87:d5:
2b:3a:f7:7d:7b:d2:07:0f:f4:d3:ce:43:23:80:c3:
40:40:76:f5:0d:f8:5e:6a:2c:11:4b:ba:e7:62:7c:
b5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:64:24:CF:EB:CE:17:6B:21:20:29:E0:5D:06:50:56:71:A2:57:57
X509v3 Authority Key Identifier:
keyid:70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/_2Qkz-vOF2shICngXQZQVnGiV1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.20.0/23
77.83.124.0/22
93.114.240.0/22
176.100.208.0/21
176.100.224.0/20
185.97.168.0/22
185.170.147.0/24
188.215.8.0/22
193.26.148.0/22
193.31.36.0/22
193.35.14.0/23
193.35.26.0/23
IPv6:
2a06:6c0::/46
2a06:6c0:254::/47
Signature Algorithm: sha256WithRSAEncryption
68:bd:88:d9:1d:d5:c5:a9:14:8a:16:a5:77:f6:3a:d2:0a:2b:
b4:ba:40:4c:73:00:7f:1e:9a:6e:46:d0:0b:3f:8c:7c:fd:f1:
c6:0c:e2:73:d6:7b:59:1e:9d:ca:ef:aa:a1:17:51:7b:40:c0:
07:c0:04:08:16:04:af:20:15:17:a3:92:e8:eb:5c:e7:cf:38:
a7:20:1e:e6:86:32:9f:ed:4b:c7:c7:5f:5c:a5:af:85:87:45:
64:6f:fe:a1:f6:94:71:2c:bd:c4:b6:8d:b2:42:ea:e8:e7:40:
59:cb:84:a8:b2:53:8a:21:79:bd:90:cb:55:7f:7a:6c:c2:fa:
eb:bb:37:e7:94:1a:47:fa:16:43:72:f6:98:a7:57:96:4c:c5:
04:9e:80:2a:a9:da:c4:3a:80:98:10:60:17:d9:16:e7:4c:e8:
b7:25:5b:78:27:50:3e:51:dc:ec:e6:b2:92:a5:78:8e:3e:10:
04:f7:ea:23:c3:19:f2:5d:84:10:47:9d:41:05:e8:be:f4:88:
9e:0e:4a:5d:95:41:bd:ac:4a:46:23:56:24:b3:a8:bb:f4:5b:
51:ba:e5:00:f0:5c:36:de:c0:f7:d7:ef:75:d2:94:02:55:be:
63:54:c1:73:a7:22:8d:ba:dd:58:cb:8f:f1:b1:e9:ab:31:a9:
0d:55:00:70
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAYVs7zuxjEFijPprgTpZVZBVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwOTRhNDI1NTk1ZTkyM2M0YjUzYjljMDAwYWE4ZjE5YWQ5
MjNmMjAwHhcNMjMwMTAxMTA0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjY0MjRjZmViY2UxNzZiMjEyMDI5ZTA1ZDA2NTA1NjcxYTI1NzU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov0CMQI/Fe/n7vXCLXj4+tfAtUN9
h7eu+PkVP7ryfp4YasbfgrVb+6V6bMmgrKPuafcmpwYz4EjnXU2U+bxiRsI6UyGh
KMJ5n6sw8PqLysW8VitPev5dl1UzMOZjau612MZYIgk0C50AABO1vSm/8oZHmz9g
XKcj0011ap+hQ3Iu5oYIDM1EcttJPnT+N4zY+j6WGiMBfLJMaIrydQhfGVBljmPy
pPZvqWynZDvGzjuuksDh3OqhOCHM/RovdzlMtkBuUN6QFq1K1Bb2nwf/nT+OAvq9
zZdFmbotJQzch9UrOvd9e9IHD/TTzkMjgMNAQHb1DfheaiwRS7rnYny1yQIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFP9kJM/rzhdrISAp4F0GUFZxoldXMB8GA1UdIwQY
MBaAFHCUpCVZXpI8S1O5wACqjxmtkj8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0pTa0pWbGVranhMVTduQUFLcVBHYTJTUHlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85NjMxNzAtNThiZS00NmJiLWE1ZGUt
Nzc3MzczZTYwNTVlLzEvXzJRa3otdk9GMnNoSUNuZ1hRWlFWbkdpVjFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS85NjMxNzAtNThiZS00NmJiLWE1ZGUtNzc3MzczZTYwNTVl
LzEvY0pTa0pWbGVranhMVTduQUFLcVBHYTJTUHlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBOBAIAATBIAwQBLYEUAwQC
TVN8AwQCXXLwAwQDsGTQAwQEsGTgAwQCuWGoAwQAuaqTAwQCvNcIAwQCwRqUAwQC
wR8kAwQBwSMOAwQBwSMaMBgEAgACMBIDBwIqBgbAAAADBwEqBgbAAlQwDQYJKoZI
hvcNAQELBQADggEBAGi9iNkd1cWpFIoWpXf2OtIKK7S6QExzAH8emm5G0As/jHz9
8cYM4nPWe1kencrvqqEXUXtAwAfABAgWBK8gFRejkujrXOfPOKcgHuaGMp/tS8fH
X1ylr4WHRWRv/qH2lHEsvcS2jbJC6ujnQFnLhKiyU4oheb2Qy1V/emzC+uu7N+eU
Gkf6FkNy9pinV5ZMxQSegCqp2sQ6gJgQYBfZFudM6LclW3gnUD5R3OzmspKleI4+
EAT36iPDGfJdhBBHnUEF6L70iJ4OSl2VQb2sSkYjViSzqLv0W1G65QDwXDbewPfX
73XSlAJVvmNUwXOnIo263VjLj/Gx6asxqQ1VAHA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:44 2023 by rpki-client on console-fra.rpki-client.org