Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/vbZo84H8jwnnuZKob2e_4wD65dY.roa
File: vbZo84H8jwnnuZKob2e_4wD65dY.roa (raw, json)
Hash identifier: vsljX4rtRGZIHAIV3OneM8qikxi9xa2hIF1fIu5tJ6Q=
Subject key identifier: BD:B6:68:F3:81:FC:8F:09:E7:B9:92:A8:6F:67:BF:E3:00:FA:E5:D6
Certificate issuer: /CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Certificate serial: 0186EAE95C819B24B8E5094FE9AA4C57D45D
Authority key identifier: 70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/vbZo84H8jwnnuZKob2e_4wD65dY.roa
Signing time: Thu 16 Mar 2023 14:53:27 +0000
ROA not before: Thu 16 Mar 2023 14:53:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200738
IP address blocks: 45.129.20.0/24 maxlen: 24
45.129.21.0/24 maxlen: 24
188.215.8.0/22 maxlen: 22
93.114.240.0/22 maxlen: 22
77.83.124.0/22 maxlen: 22
176.100.224.0/24 maxlen: 24
176.100.225.0/24 maxlen: 24
176.100.224.0/20 maxlen: 20
185.97.168.0/22 maxlen: 22
193.31.36.0/22 maxlen: 22
185.170.147.0/24 maxlen: 24
193.26.148.0/22 maxlen: 22
193.35.14.0/23 maxlen: 23
193.35.26.0/23 maxlen: 23
176.100.212.0/22 maxlen: 22
176.100.208.0/22 maxlen: 22
2a06:6c0:3::/48 maxlen: 48
2a06:6c0:23::/48 maxlen: 48
2a06:6c0:254::/48 maxlen: 48
2a06:6c0:2::/48 maxlen: 48
2a06:6c0:22::/48 maxlen: 48
2a06:6c0:1::/48 maxlen: 48
2a06:6c0:255::/48 maxlen: 48
2a06:6c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 15 Jun 2023 09:04:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:e9:5c:81:9b:24:b8:e5:09:4f:e9:aa:4c:57:d4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7094a425595e923c4b53b9c000aa8f19ad923f20
Validity
Not Before: Mar 16 14:53:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdb668f381fc8f09e7b992a86f67bfe300fae5d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:41:db:1b:e8:3c:f9:f1:08:45:a2:86:58:c9:
66:06:7c:73:0f:ed:85:28:a2:10:7f:50:5a:ef:17:
34:b0:59:5e:cf:1d:0b:e9:f5:c5:92:82:53:68:57:
d1:f6:0b:11:7a:d1:93:c0:7c:1a:04:32:eb:f8:b8:
de:29:ba:4b:a6:64:d9:30:53:17:0d:51:33:95:59:
45:6e:02:e0:cb:03:29:90:d8:a9:ff:fb:ad:12:b5:
63:d6:f6:9f:0b:2b:f1:b5:4a:96:50:71:c9:8a:88:
87:57:a0:9d:e0:b8:7e:df:f1:03:e3:6d:1d:dd:eb:
9f:d8:39:e2:1d:13:87:9a:be:65:09:7f:f0:09:1e:
d5:d0:e2:74:e7:8b:58:ea:6c:86:3e:e2:5c:17:52:
a7:c4:42:66:ba:01:f2:38:73:61:21:2b:ba:b5:86:
5f:e0:e2:58:f0:d1:c3:6b:80:8c:c4:a5:5c:7d:0f:
4d:0d:1c:8f:08:ba:33:cf:a8:72:2b:5b:24:f9:d7:
f1:e0:19:0d:00:66:44:e1:5b:fa:01:83:31:1c:a1:
24:ac:cf:a4:50:ae:1b:ef:cb:00:63:c0:01:28:27:
0f:13:13:39:32:fe:88:a2:76:62:db:57:6b:2d:ec:
0c:d6:b2:74:8e:c5:14:08:15:e7:e4:74:bf:ac:bd:
21:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B6:68:F3:81:FC:8F:09:E7:B9:92:A8:6F:67:BF:E3:00:FA:E5:D6
X509v3 Authority Key Identifier:
keyid:70:94:A4:25:59:5E:92:3C:4B:53:B9:C0:00:AA:8F:19:AD:92:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJSkJVlekjxLU7nAAKqPGa2SPyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/vbZo84H8jwnnuZKob2e_4wD65dY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/963170-58be-46bb-a5de-777373e6055e/1/cJSkJVlekjxLU7nAAKqPGa2SPyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.20.0/23
77.83.124.0/22
93.114.240.0/22
176.100.208.0/21
176.100.224.0/20
185.97.168.0/22
185.170.147.0/24
188.215.8.0/22
193.26.148.0/22
193.31.36.0/22
193.35.14.0/23
193.35.26.0/23
IPv6:
2a06:6c0::/46
2a06:6c0:22::/47
2a06:6c0:254::/47
Signature Algorithm: sha256WithRSAEncryption
77:5b:fd:bd:10:19:f3:42:e5:11:96:2e:e2:b6:9a:27:f1:d5:
ae:ca:cf:1d:61:23:c6:c6:87:01:aa:5c:8a:8f:35:78:bb:c2:
24:8f:1a:15:1c:9d:1a:fe:0a:59:88:0a:06:eb:2a:b4:9f:21:
95:74:60:db:33:5d:47:24:4f:4f:03:ac:f3:a5:03:4b:00:5f:
23:be:6a:68:67:5c:c9:d6:6e:20:d2:e3:ec:e3:1e:bc:16:60:
ba:69:17:dd:96:d9:a4:f8:d6:aa:da:c7:75:eb:56:a9:84:d9:
d0:5a:06:24:7d:70:d5:b8:c9:3f:ff:ec:dc:1f:3b:1e:64:26:
97:ca:71:04:40:b5:e5:d5:2e:30:38:9b:51:43:ec:1a:5b:05:
00:29:87:fb:01:e3:ab:2f:f7:4b:01:99:cd:60:96:2b:f2:41:
18:4b:be:7b:2c:09:b3:51:51:e7:5c:ec:ca:1a:20:d4:84:c0:
d3:9b:ea:ba:27:1c:bc:b2:23:d3:e3:7d:69:a7:38:4c:57:b6:
a9:1d:47:12:d7:70:96:59:28:69:4b:de:10:87:09:83:e1:73:
14:b5:2f:8d:50:65:8a:78:dc:09:31:6e:d6:96:b5:77:37:45:
92:a8:5c:20:5b:74:5d:f0:4f:3f:4a:20:01:4a:6e:16:91:80:
73:b2:18:b2
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAYbq6VyBmyS45QlP6apMV9RdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwOTRhNDI1NTk1ZTkyM2M0YjUzYjljMDAwYWE4ZjE5YWQ5
MjNmMjAwHhcNMjMwMzE2MTQ1MzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZGI2NjhmMzgxZmM4ZjA5ZTdiOTkyYTg2ZjY3YmZlMzAwZmFlNWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEHbG+g8+fEIRaKGWMlmBnxzD+2F
KKIQf1Ba7xc0sFlezx0L6fXFkoJTaFfR9gsRetGTwHwaBDLr+LjeKbpLpmTZMFMX
DVEzlVlFbgLgywMpkNip//utErVj1vafCyvxtUqWUHHJioiHV6Cd4Lh+3/ED420d
3euf2DniHROHmr5lCX/wCR7V0OJ054tY6myGPuJcF1KnxEJmugHyOHNhISu6tYZf
4OJY8NHDa4CMxKVcfQ9NDRyPCLozz6hyK1sk+dfx4BkNAGZE4Vv6AYMxHKEkrM+k
UK4b78sAY8ABKCcPExM5Mv6IonZi21drLewM1rJ0jsUUCBXn5HS/rL0hewIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFL22aPOB/I8J57mSqG9nv+MA+uXWMB8GA1UdIwQY
MBaAFHCUpCVZXpI8S1O5wACqjxmtkj8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0pTa0pWbGVranhMVTduQUFLcVBHYTJTUHlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85NjMxNzAtNThiZS00NmJiLWE1ZGUt
Nzc3MzczZTYwNTVlLzEvdmJabzg0SDhqd25udVpLb2IyZV80d0Q2NWRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS85NjMxNzAtNThiZS00NmJiLWE1ZGUtNzc3MzczZTYwNTVl
LzEvY0pTa0pWbGVranhMVTduQUFLcVBHYTJTUHlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwTgQCAAEwSAMEAS2BFAME
Ak1TfAMEAl1y8AMEA7Bk0AMEBLBk4AMEArlhqAMEALmqkwMEArzXCAMEAsEalAME
AsEfJAMEAcEjDgMEAcEjGjAhBAIAAjAbAwcCKgYGwAAAAwcBKgYGwAAiAwcBKgYG
wAJUMA0GCSqGSIb3DQEBCwUAA4IBAQB3W/29EBnzQuURli7itpon8dWuys8dYSPG
xocBqlyKjzV4u8IkjxoVHJ0a/gpZiAoG6yq0nyGVdGDbM11HJE9PA6zzpQNLAF8j
vmpoZ1zJ1m4g0uPs4x68FmC6aRfdltmk+Naq2sd161aphNnQWgYkfXDVuMk//+zc
HzseZCaXynEEQLXl1S4wOJtRQ+waWwUAKYf7AeOrL/dLAZnNYJYr8kEYS757LAmz
UVHnXOzKGiDUhMDTm+q6Jxy8siPT431ppzhMV7apHUcS13CWWShpS94QhwmD4XMU
tS+NUGWKeNwJMW7WlrV3N0WSqFwgW3Rd8E8/SiABSm4WkYBzshiy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:34 2024 by rpki-client on console-fra.rpki-client.org