Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/m84OCgz_uXAKOJjgJWlX-X334b8.roa
File: m84OCgz_uXAKOJjgJWlX-X334b8.roa (raw, json)
Hash identifier: t/sW+OO5+Vn/+drq2kHqE9IdWGpRn1YQd5NJzDz6vpA=
Subject key identifier: 9B:CE:0E:0A:0C:FF:B9:70:0A:38:98:E0:25:69:57:F9:7D:F7:E1:BF
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 01856FD4F85D72812267E1027D496906B0E7
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/m84OCgz_uXAKOJjgJWlX-X334b8.roa
Signing time: Mon 02 Jan 2023 00:15:06 +0000
ROA not before: Mon 02 Jan 2023 00:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57794
IP address blocks: 37.98.192.0/21 maxlen: 21
37.98.192.0/22 maxlen: 22
37.98.196.0/22 maxlen: 22
188.117.228.0/22 maxlen: 22
188.117.232.0/21 maxlen: 21
188.117.232.0/22 maxlen: 22
82.192.2.0/23 maxlen: 23
82.192.2.0/24 maxlen: 24
82.192.3.0/24 maxlen: 24
188.117.236.0/22 maxlen: 22
188.117.240.0/22 maxlen: 22
188.117.240.0/23 maxlen: 23
188.117.242.0/23 maxlen: 23
188.117.248.0/23 maxlen: 23
188.117.250.0/23 maxlen: 23
188.117.248.0/22 maxlen: 22
188.117.192.0/21 maxlen: 21
188.117.192.0/22 maxlen: 22
188.117.196.0/22 maxlen: 22
188.117.216.0/23 maxlen: 23
188.117.216.0/22 maxlen: 22
188.117.218.0/23 maxlen: 23
188.117.224.0/21 maxlen: 21
188.117.224.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:f8:5d:72:81:22:67:e1:02:7d:49:69:06:b0:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 2 00:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bce0e0a0cffb9700a3898e0256957f97df7e1bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5b:1e:74:d1:61:58:6b:19:55:82:34:5b:c0:
a7:f1:94:f2:80:7e:8f:f6:09:38:5a:dc:0a:2e:73:
65:96:ef:67:97:e9:91:7e:aa:2c:bf:ad:b8:15:d2:
57:04:b7:76:ff:f5:04:c6:eb:a7:1c:8a:77:2e:93:
a5:c7:90:35:dd:a1:69:25:56:49:5e:07:69:77:54:
cd:03:d6:a7:29:1b:7a:79:aa:bf:fd:84:68:b0:70:
d4:8a:cb:ac:05:42:4c:eb:ac:75:8c:b1:07:a0:4a:
a3:9b:be:72:52:6f:b7:6f:d9:1d:90:10:c2:81:73:
3f:9a:e0:74:fd:cd:6b:fe:17:8c:ec:38:aa:55:2d:
3a:42:72:cc:d2:5a:ba:01:11:55:45:0f:d0:1f:f9:
55:ed:9d:86:a6:c5:6d:a9:3e:7a:55:1d:d1:ae:a9:
0b:56:fd:a9:ab:f2:4c:db:7f:5c:85:75:64:0b:d1:
e2:ac:4e:ff:45:c9:10:81:27:48:39:be:b7:2f:7d:
35:31:31:ee:cb:e9:bd:10:7a:58:9e:0d:f0:40:a6:
be:40:d9:15:c0:cf:ff:f8:eb:29:7f:92:2d:2e:83:
75:90:e9:f4:d4:90:c7:15:8e:16:a7:ac:3f:9f:26:
4e:97:40:d5:71:1f:01:3b:ed:b8:aa:99:1a:e9:01:
57:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CE:0E:0A:0C:FF:B9:70:0A:38:98:E0:25:69:57:F9:7D:F7:E1:BF
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/m84OCgz_uXAKOJjgJWlX-X334b8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.98.192.0/21
82.192.2.0/23
188.117.192.0/21
188.117.216.0/22
188.117.224.0-188.117.243.255
188.117.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:f1:d2:03:7b:da:c6:91:41:a5:7b:bb:c3:b7:b2:ca:ee:b5:
46:2e:3e:7d:99:30:41:3c:bd:80:b0:81:ae:30:92:1f:71:d1:
c3:d2:b3:e3:07:4c:5f:9e:53:76:8f:5d:2f:c7:c0:2d:7a:45:
9a:34:a7:71:ff:7e:95:86:4c:d4:f6:f9:15:c5:8b:22:c1:27:
aa:98:f5:0a:8d:1f:df:65:37:c2:b7:5e:f5:32:66:ae:bd:52:
f6:13:4d:c1:1e:d2:53:a3:db:24:4f:90:19:a4:6b:e0:b3:03:
97:52:a3:d4:7a:5d:28:3c:8a:78:e5:d7:65:d0:69:b3:a0:5c:
5c:2c:3f:79:cc:8b:ad:c1:d4:94:e2:66:5b:3d:03:d8:d7:1e:
ff:e0:af:65:d3:d7:f2:92:31:ce:0b:65:05:81:13:66:48:61:
d1:2b:54:ea:44:77:92:27:cd:8a:91:3b:7d:52:f0:96:72:9f:
b3:24:66:07:b1:9c:8d:f4:a7:8a:0a:4d:f9:7f:f9:9d:23:fb:
43:fc:b5:6f:8c:65:38:2a:9d:2b:3f:9d:ec:fc:8a:9f:6c:e5:
0f:de:94:68:5d:fc:a4:38:90:42:31:c5:53:5f:ac:d1:57:23:
84:e6:cb:85:32:0c:97:2b:17:ff:89:86:22:16:c9:08:07:b1:
66:de:8f:a9
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgISAYVv1PhdcoEiZ+ECfUlpBrDnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYWI1MzY0MGIwOTMxOTI0YjczZjc2MDkyNTg0NTE1MGE2
Y2NjYTUwHhcNMjMwMTAyMDAxNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmNlMGUwYTBjZmZiOTcwMGEzODk4ZTAyNTY5NTdmOTdkZjdlMWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllsedNFhWGsZVYI0W8Cn8ZTygH6P
9gk4WtwKLnNllu9nl+mRfqosv624FdJXBLd2//UExuunHIp3LpOlx5A13aFpJVZJ
Xgdpd1TNA9anKRt6eaq//YRosHDUisusBUJM66x1jLEHoEqjm75yUm+3b9kdkBDC
gXM/muB0/c1r/heM7DiqVS06QnLM0lq6ARFVRQ/QH/lV7Z2GpsVtqT56VR3RrqkL
Vv2pq/JM239chXVkC9HirE7/RckQgSdIOb63L301MTHuy+m9EHpYng3wQKa+QNkV
wM//+Ospf5ItLoN1kOn01JDHFY4Wp6w/nyZOl0DVcR8BO+24qpka6QFXmQIDAQAB
o4ICLzCCAiswHQYDVR0OBBYEFJvODgoM/7lwCjiY4CVpV/l99+G/MB8GA1UdIwQY
MBaAFG6rU2QLCTGSS3P3YJJYRRUKbMylMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnF0VFpBc0pNWkpMY19kZ2tsaEZGUXBzektVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8yYTM4ZTYtMjk0ZS00ZmEzLWE1YTAt
NTMwNDYzMjM5NTFmLzEvbTg0T0Nnel91WEFLT0pqZ0pXbFgtWDMzNGI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC8yYTM4ZTYtMjk0ZS00ZmEzLWE1YTAtNTMwNDYzMjM5NTFm
LzEvYnF0VFpBc0pNWkpMY19kZ2tsaEZGUXBzektVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQDJWLAAwQB
UsACAwQDvHXAAwQCvHXYMAwDBAW8deADBAK8dfADBAK8dfgwDQYJKoZIhvcNAQEL
BQADggEBALTx0gN72saRQaV7u8O3ssrutUYuPn2ZMEE8vYCwga4wkh9x0cPSs+MH
TF+eU3aPXS/HwC16RZo0p3H/fpWGTNT2+RXFiyLBJ6qY9QqNH99lN8K3XvUyZq69
UvYTTcEe0lOj2yRPkBmka+CzA5dSo9R6XSg8injl12XQabOgXFwsP3nMi63B1JTi
Zls9A9jXHv/gr2XT1/KSMc4LZQWBE2ZIYdErVOpEd5InzYqRO31S8JZyn7MkZgex
nI30p4oKTfl/+Z0j+0P8tW+MZTgqnSs/nez8ip9s5Q/elGhd/KQ4kEIxxVNfrNFX
I4Tmy4UyDJcrF/+JhiIWyQgHsWbej6k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:52 2024 by rpki-client on console-fra.rpki-client.org