Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/E7nE1_zWxDqRiqrc98oQAkWtujE.roa
File: E7nE1_zWxDqRiqrc98oQAkWtujE.roa (raw, json)
Hash identifier: 2Zbrgt5TwrKRCtymaUq6mgTgTFG6T4NCweZklD9VY0g=
Subject key identifier: 13:B9:C4:D7:FC:D6:C4:3A:91:8A:AA:DC:F7:CA:10:02:45:AD:BA:31
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018895EB34677C49EDDF941E1FAB0247D30E
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/E7nE1_zWxDqRiqrc98oQAkWtujE.roa
Signing time: Wed 07 Jun 2023 12:53:19 +0000
ROA not before: Wed 07 Jun 2023 12:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211306
IP address blocks: 176.96.92.0/24 maxlen: 24
77.36.56.0/24 maxlen: 24
77.36.54.0/23 maxlen: 23
91.200.132.0/24 maxlen: 24
77.36.88.0/24 maxlen: 24
77.36.2.0/23 maxlen: 23
77.36.4.0/24 maxlen: 24
77.36.7.0/24 maxlen: 24
77.36.5.0/24 maxlen: 24
77.36.6.0/24 maxlen: 24
91.239.225.0/24 maxlen: 24
77.232.218.0/24 maxlen: 24
178.159.146.0/24 maxlen: 24
77.232.216.0/23 maxlen: 23
91.237.49.0/24 maxlen: 24
93.120.44.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 21 Jul 2023 17:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:eb:34:67:7c:49:ed:df:94:1e:1f:ab:02:47:d3:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jun 7 12:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13b9c4d7fcd6c43a918aaadcf7ca100245adba31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e4:f0:48:2b:2f:cb:68:4e:12:aa:8d:9d:90:
d0:1e:9e:82:e9:96:77:eb:7d:1e:37:87:97:d7:81:
eb:6e:e7:73:dd:37:6a:6e:19:e9:a0:36:7d:58:14:
98:1f:ff:13:d7:5a:5b:0f:0e:3c:8c:77:38:c3:28:
91:0a:39:cc:39:9a:e1:55:9a:bd:2f:73:ab:10:51:
96:88:f2:41:01:83:ed:ef:d9:31:fb:b5:06:12:d8:
ce:12:d5:ec:8b:e6:00:de:4e:9b:ee:8f:23:7d:38:
8e:09:19:36:11:b7:26:0d:b4:f6:d0:7b:3f:4d:22:
e2:5a:f0:4e:58:fd:1b:32:d4:13:7a:fd:6d:34:56:
d5:57:2f:2c:bb:ac:a8:b6:ea:1e:1a:c1:9b:f4:6c:
bd:d7:3d:9a:75:a9:76:d2:7f:48:ce:f7:1a:9a:37:
f6:69:7f:98:e8:c6:31:7c:27:d1:87:5c:f0:13:04:
a7:17:03:00:ae:36:db:ce:37:d5:7b:6f:5d:46:03:
1c:a4:05:30:7a:9a:b4:e5:45:7d:cb:f5:82:cd:8b:
cc:c1:d4:32:56:17:e8:e0:b9:9f:0b:06:79:f4:e0:
7e:e6:50:2d:61:60:d7:dc:d3:d6:70:14:56:d3:03:
43:a2:e9:01:c9:f5:54:21:0e:e1:1e:04:b5:25:1d:
18:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B9:C4:D7:FC:D6:C4:3A:91:8A:AA:DC:F7:CA:10:02:45:AD:BA:31
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/E7nE1_zWxDqRiqrc98oQAkWtujE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.36.2.0-77.36.7.255
77.36.54.0-77.36.56.255
77.36.88.0/24
77.232.216.0-77.232.218.255
91.200.132.0/24
91.237.49.0/24
91.239.225.0/24
93.120.44.0/23
176.96.92.0/24
178.159.146.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:94:53:46:24:59:63:bd:53:f4:38:68:c4:54:df:8f:ab:06:
f4:d7:6b:36:41:4a:1d:ff:21:d4:98:a2:98:bc:cb:cb:c5:5d:
22:fa:af:1e:33:eb:72:c0:17:40:4c:36:d4:27:62:12:af:9f:
2e:38:9a:66:89:38:c3:c1:9a:1e:f2:45:24:b7:c2:00:6f:0b:
ee:cf:80:e0:14:c2:fb:7d:85:45:17:1f:29:cb:22:57:12:65:
e9:c2:f1:49:93:42:39:20:57:e4:bc:b6:d1:6a:f8:c3:98:29:
b9:1d:01:92:bd:3e:48:c9:c2:2c:36:ce:6a:cd:9c:d6:c9:2f:
08:eb:1c:07:7f:7b:05:8f:62:91:24:0e:02:a2:44:7a:11:a4:
b2:8e:75:f6:01:60:ed:5c:9b:72:d1:69:d5:a8:43:29:cf:8d:
ad:15:01:92:70:a0:f9:d6:f9:f8:9e:8b:18:70:83:c8:eb:c4:
fb:5a:04:96:ef:8d:0a:80:ff:63:9b:3e:b1:6f:de:20:8c:86:
b3:78:d6:0b:8e:9f:9d:c6:2f:ad:7c:bc:13:c2:64:2b:92:d0:
09:43:dc:8d:98:a3:e2:b4:19:27:40:93:ca:94:de:d0:4e:2d:
ac:0c:f9:d4:f1:e5:de:a6:8b:42:13:13:91:c4:52:b0:50:88:
64:7f:f6:30
-----BEGIN CERTIFICATE-----
MIIFSzCCBDOgAwIBAgISAYiV6zRnfEnt35QeH6sCR9MOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjMwNjA3MTI1MzE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2I5YzRkN2ZjZDZjNDNhOTE4YWFhZGNmN2NhMTAwMjQ1YWRiYTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAheTwSCsvy2hOEqqNnZDQHp6C6ZZ3
630eN4eX14Hrbudz3TdqbhnpoDZ9WBSYH/8T11pbDw48jHc4wyiRCjnMOZrhVZq9
L3OrEFGWiPJBAYPt79kx+7UGEtjOEtXsi+YA3k6b7o8jfTiOCRk2EbcmDbT20Hs/
TSLiWvBOWP0bMtQTev1tNFbVVy8su6yotuoeGsGb9Gy91z2adal20n9Izvcamjf2
aX+Y6MYxfCfRh1zwEwSnFwMArjbbzjfVe29dRgMcpAUwepq05UV9y/WCzYvMwdQy
Vhfo4LmfCwZ59OB+5lAtYWDX3NPWcBRW0wNDoukByfVUIQ7hHgS1JR0Y4QIDAQAB
o4ICVzCCAlMwHQYDVR0OBBYEFBO5xNf81sQ6kYqq3PfKEAJFrboxMB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvRTduRTFfeld4RHFSaXFyYzk4b1FBa1d0dWpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUMAwDBAFNJAID
BANNJAAwDAMEAU0kNgMEAE0kOAMEAE0kWDAMAwQDTejYAwQATejaAwQAW8iEAwQA
W+0xAwQAW+/hAwQBXXgsAwQAsGBcAwQAsp+SMA0GCSqGSIb3DQEBCwUAA4IBAQCf
lFNGJFljvVP0OGjEVN+Pqwb012s2QUod/yHUmKKYvMvLxV0i+q8eM+tywBdATDbU
J2ISr58uOJpmiTjDwZoe8kUkt8IAbwvuz4DgFML7fYVFFx8pyyJXEmXpwvFJk0I5
IFfkvLbRavjDmCm5HQGSvT5IycIsNs5qzZzWyS8I6xwHf3sFj2KRJA4CokR6EaSy
jnX2AWDtXJty0WnVqEMpz42tFQGScKD51vn4nosYcIPI68T7WgSW740KgP9jmz6x
b94gjIazeNYLjp+dxi+tfLwTwmQrktAJQ9yNmKPitBknQJPKlN7QTi2sDPnU8eXe
potCExORxFKwUIhkf/Yw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org