Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/11pgKBLkqJ0cckxFvaDd5ofdqn0.roa
File: 11pgKBLkqJ0cckxFvaDd5ofdqn0.roa (raw, json)
Hash identifier: IT3YOsg4lKwTvjwIQ94KjLSPyOUD2WxIvJMl5V8wEO0=
Subject key identifier: D7:5A:60:28:12:E4:A8:9D:1C:72:4C:45:BD:A0:DD:E6:87:DD:AA:7D
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018895EB33A59EB1B05824BE19AE798A4ED5
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/11pgKBLkqJ0cckxFvaDd5ofdqn0.roa
Signing time: Wed 07 Jun 2023 12:53:19 +0000
ROA not before: Wed 07 Jun 2023 12:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50835
IP address blocks: 91.193.30.0/23 maxlen: 23
81.161.48.0/22 maxlen: 22
91.246.192.0/22 maxlen: 24
77.36.57.0/24 maxlen: 24
77.36.60.0/24 maxlen: 24
176.113.180.0/22 maxlen: 22
91.246.203.0/24 maxlen: 24
77.36.65.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
91.246.217.0/24 maxlen: 24
81.161.8.0/22 maxlen: 22
37.97.121.0/24 maxlen: 24
37.97.120.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
193.36.220.0/22 maxlen: 22
194.33.66.0/23 maxlen: 23
64.43.120.0/22 maxlen: 24
91.233.200.0/24 maxlen: 24
176.115.236.0/22 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
91.200.134.0/23 maxlen: 23
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
91.238.39.0/24 maxlen: 24
176.116.228.0/24 maxlen: 24
91.239.222.0/23 maxlen: 23
176.116.236.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.224.212.0/24 maxlen: 24
91.232.226.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
91.236.76.0/24 maxlen: 24
46.173.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 28 Jun 2023 13:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:eb:33:a5:9e:b1:b0:58:24:be:19:ae:79:8a:4e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jun 7 12:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d75a602812e4a89d1c724c45bda0dde687ddaa7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2d:ff:ed:2f:97:26:9d:cc:19:3b:69:ea:dd:
89:b7:7e:3b:b2:b5:95:93:df:9a:a5:56:43:2c:46:
6c:55:14:ee:3f:68:12:e1:0f:34:09:fc:87:ce:da:
cb:9e:48:cf:14:6d:4f:54:ff:e9:57:b9:d3:d4:e4:
d1:af:b2:0f:bd:0e:e9:e4:67:cb:ae:2e:95:6f:ca:
3a:30:85:78:3a:07:39:a3:58:f3:a7:06:e2:92:54:
ed:44:8f:88:01:d0:67:32:ca:37:2a:62:ba:7e:11:
a0:8c:46:d1:46:85:bb:1f:44:80:aa:16:2f:27:23:
14:0f:f5:c5:90:2c:10:71:ce:c4:69:0c:cb:b0:75:
46:84:1e:e4:a8:46:cb:f0:53:6e:e7:3c:6e:e6:6d:
4e:cd:31:41:76:94:cb:d6:bf:69:31:0c:e6:ca:cb:
57:f3:df:b1:9f:12:09:49:7f:c4:62:79:11:0b:f4:
bb:31:b6:b9:ab:53:1c:f6:47:85:34:34:02:c4:c4:
6a:99:4a:2f:fd:78:e4:da:94:80:95:e3:04:61:4b:
88:d9:38:35:71:b1:f0:2b:92:b1:23:ee:cc:97:3f:
7e:35:6f:0b:57:1d:af:09:25:c8:3c:91:c2:89:a6:
63:b9:c8:f0:59:53:7f:fa:78:26:e8:5f:54:36:40:
58:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5A:60:28:12:E4:A8:9D:1C:72:4C:45:BD:A0:DD:E6:87:DD:AA:7D
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/11pgKBLkqJ0cckxFvaDd5ofdqn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
77.36.57.0/24
77.36.60.0/24
77.36.65.0/24
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.134.0/23
91.224.212.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.222.0/23
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
91.246.217.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
193.36.220.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
81:fd:24:f5:41:0c:f8:47:2e:6f:02:74:aa:46:48:08:b2:9b:
60:78:50:ab:9c:82:37:df:7e:f9:4f:67:a4:c8:58:c3:e6:45:
8b:6d:07:79:a0:26:96:97:4c:cf:1e:4e:a6:91:18:fe:72:59:
07:cb:df:d3:13:b6:9d:49:04:b0:7b:ea:59:85:14:41:ae:f6:
d5:76:21:c5:df:3a:0e:ca:d9:7b:19:05:db:f3:44:1e:52:42:
e1:5a:0c:74:0d:31:bf:05:18:b6:80:fe:b3:1a:86:02:12:23:
49:7e:12:f5:e4:01:63:b5:70:81:fe:96:bc:90:2b:fd:cb:6b:
26:8a:1c:b0:ec:9e:c4:14:aa:e4:89:a6:e1:ff:f4:97:eb:4e:
6c:c4:e1:d7:32:45:97:e8:27:25:3a:f9:b3:4d:57:11:7c:10:
4f:72:2e:eb:b0:af:1b:ed:a6:4f:f8:51:0c:c3:22:db:bc:2f:
22:d4:57:1f:31:2a:4f:e8:75:9b:a7:6e:be:3f:63:a4:12:f9:
d7:8f:6e:03:f4:10:cc:cb:2b:2c:ba:60:45:c2:cd:2b:5e:31:
49:aa:12:50:1c:1d:39:ed:94:d0:95:82:ce:6f:7b:a3:fd:ae:
00:6c:fb:b2:e4:e3:27:47:e9:1b:10:13:c7:06:7c:ec:4c:e3:
59:b3:68:b2
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgISAYiV6zOlnrGwWCS+Ga55ik7VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjMwNjA3MTI1MzE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzVhNjAyODEyZTRhODlkMWM3MjRjNDViZGEwZGRlNjg3ZGRhYTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAni3/7S+XJp3MGTtp6t2Jt347srWV
k9+apVZDLEZsVRTuP2gS4Q80CfyHztrLnkjPFG1PVP/pV7nT1OTRr7IPvQ7p5GfL
ri6Vb8o6MIV4Ogc5o1jzpwbiklTtRI+IAdBnMso3KmK6fhGgjEbRRoW7H0SAqhYv
JyMUD/XFkCwQcc7EaQzLsHVGhB7kqEbL8FNu5zxu5m1OzTFBdpTL1r9pMQzmystX
89+xnxIJSX/EYnkRC/S7Mba5q1Mc9keFNDQCxMRqmUov/Xjk2pSAleMEYUuI2Tg1
cbHwK5KxI+7Mlz9+NW8LVx2vCSXIPJHCiaZjucjwWVN/+ngm6F9UNkBY2QIDAQAB
o4ICzjCCAsowHQYDVR0OBBYEFNdaYCgS5KidHHJMRb2g3eaH3ap9MB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvMTFwZ0tCTGtxSjBjY2t4RnZhRGQ1b2ZkcW4wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHjBggrBgEFBQcBBwEB/wSB0zCB0DCBzQQCAAEwgcYDBAEl
YXgDBAIurfgDBAEurf4DBAJAK3gDBABNJDkDBABNJDwDBABNJEEDBAJRoQgDBAJR
oTADBAFbwR4DBAFbyIYDBABb4NQDBAFb6DgDBABb6OIDBABb6cgDBABb7EwDBABb
7icDBAFb794DBABb7+IDBAJb9sADBABb9ssDBABb9tkDBABtz4IDBABtz4QDBACw
YF4DBAGwbnADBAKwcbQDBAKwc+wDBACwdOQDBACwdOwDBAKweWwDBALBJNwDBAHC
IUIwDQYJKoZIhvcNAQELBQADggEBAIH9JPVBDPhHLm8CdKpGSAiym2B4UKucgjff
fvlPZ6TIWMPmRYttB3mgJpaXTM8eTqaRGP5yWQfL39MTtp1JBLB76lmFFEGu9tV2
IcXfOg7K2XsZBdvzRB5SQuFaDHQNMb8FGLaA/rMahgISI0l+EvXkAWO1cIH+lryQ
K/3LayaKHLDsnsQUquSJpuH/9JfrTmzE4dcyRZfoJyU6+bNNVxF8EE9yLuuwrxvt
pk/4UQzDItu8LyLUVx8xKk/odZunbr4/Y6QS+dePbgP0EMzLKyy6YEXCzSteMUmq
ElAcHTntlNCVgs5ve6P9rgBs+7Lk4ydH6RsQE8cGfOxM41mzaLI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:56 2024 by rpki-client on console-fra.rpki-client.org