Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/M4hSvEEPISvOpoJLFqfaUtViICE.roa
File: M4hSvEEPISvOpoJLFqfaUtViICE.roa (raw, json)
Hash identifier: IDlh//qFLveyGSLVN64PRMD+wkio/5jCBTjeWXD56rY=
Subject key identifier: 33:88:52:BC:41:0F:21:2B:CE:A6:82:4B:16:A7:DA:52:D5:62:20:21
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01882FDB7FCDCDFEEE627625FE3FC8F6FA00
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/M4hSvEEPISvOpoJLFqfaUtViICE.roa
Signing time: Thu 18 May 2023 17:14:54 +0000
ROA not before: Thu 18 May 2023 17:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6282
IP address blocks: 176.96.52.0/22 maxlen: 22
77.36.120.0/22 maxlen: 22
176.112.80.0/23 maxlen: 23
176.112.82.0/23 maxlen: 23
178.159.144.0/23 maxlen: 23
176.113.184.0/22 maxlen: 22
176.113.188.0/22 maxlen: 22
81.161.2.0/23 maxlen: 23
81.161.0.0/23 maxlen: 23
77.36.24.0/22 maxlen: 22
176.116.36.0/22 maxlen: 22
176.116.32.0/22 maxlen: 22
91.246.176.0/22 maxlen: 22
91.246.180.0/22 maxlen: 22
64.43.100.0/22 maxlen: 22
64.43.104.0/22 maxlen: 22
176.111.162.0/23 maxlen: 23
176.111.160.0/23 maxlen: 23
64.43.108.0/22 maxlen: 22
93.120.16.0/22 maxlen: 22
64.43.116.0/22 maxlen: 22
93.120.20.0/22 maxlen: 22
31.131.8.0/23 maxlen: 23
31.131.10.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2f:db:7f:cd:cd:fe:ee:62:76:25:fe:3f:c8:f6:fa:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 18 17:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=338852bc410f212bcea6824b16a7da52d5622021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9a:3b:3a:76:5b:d2:4f:1f:e0:ae:58:e6:95:
67:7f:0b:82:93:c4:53:ac:8f:7c:7b:d0:5e:34:06:
a8:be:39:be:28:21:2c:6f:e9:45:09:57:07:0e:7e:
40:e3:89:63:af:0c:f5:57:3b:a7:24:28:e2:ea:10:
f2:6d:98:63:36:f5:0d:59:9b:21:32:2d:f4:9e:a7:
5b:2f:62:9e:e2:99:f3:a6:7d:dd:8c:a0:e5:41:f7:
de:c4:32:7d:82:49:10:ac:f6:a1:79:71:55:ca:14:
13:ce:e6:63:fc:e4:f9:f1:78:81:f7:54:e0:48:2f:
bb:22:95:00:22:87:ea:b1:68:1e:3b:32:4c:9b:27:
f3:da:40:9d:d0:e1:f9:90:a0:f4:58:50:92:bb:f8:
34:49:4f:32:71:bd:de:53:8b:34:51:bb:28:f9:8d:
84:fb:00:27:7b:c9:0d:b1:4c:33:81:02:2c:fd:d5:
07:b4:a8:a9:a7:e8:ed:2a:82:b9:93:d8:bd:ce:1c:
69:32:28:78:25:65:df:94:26:cb:d0:c1:c6:89:22:
2e:f9:74:82:34:18:8c:16:4c:37:d0:28:98:44:54:
b4:28:d1:57:7b:80:0c:2b:e4:51:d5:c6:20:35:dd:
5c:df:a8:91:4f:4e:5f:92:44:2e:4e:ed:07:85:e6:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:88:52:BC:41:0F:21:2B:CE:A6:82:4B:16:A7:DA:52:D5:62:20:21
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/M4hSvEEPISvOpoJLFqfaUtViICE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.8.0/22
64.43.100.0-64.43.111.255
64.43.116.0/22
77.36.24.0/22
77.36.120.0/22
81.161.0.0/22
91.246.176.0/21
93.120.16.0/21
176.96.52.0/22
176.111.160.0/22
176.112.80.0/22
176.113.184.0/21
176.116.32.0/21
178.159.144.0/23
Signature Algorithm: sha256WithRSAEncryption
45:e5:48:1a:0b:e6:c3:37:d7:be:3e:d4:1a:31:52:1d:87:5c:
8c:eb:10:de:00:7b:10:17:23:25:ec:c4:8e:0c:c4:82:3a:93:
88:4c:94:5d:ef:21:5a:ed:74:d3:18:be:b6:db:b3:c2:d8:ca:
d1:31:36:cf:31:f9:57:4c:d8:5b:ff:6d:38:22:da:fb:78:59:
90:27:2a:62:38:5c:7a:38:08:05:b1:47:21:35:73:e7:5c:45:
25:de:61:75:b5:71:f0:46:11:7e:da:d4:5b:f4:60:80:98:e8:
b2:a3:fb:7e:b5:f1:76:c2:1c:c6:f6:12:ca:21:77:0f:ad:3d:
9b:2c:17:76:b1:3d:52:70:ca:fa:0d:ce:e0:8b:53:20:a0:2f:
b5:e7:90:a4:dd:7e:03:56:4c:f5:8e:0f:4f:81:70:8d:f7:5a:
4c:c5:13:f3:76:db:65:61:c1:11:f0:4d:dd:af:0c:72:6f:7a:
07:77:d2:b5:0a:1b:74:9f:2b:04:3d:16:76:e3:1f:49:b9:d7:
aa:48:bc:e7:e8:62:17:89:ef:ff:42:44:ec:19:00:bf:74:6e:
c1:75:69:6b:6c:85:93:c1:76:7d:85:e8:c8:12:b6:4c:17:e4:
fa:91:60:e6:51:9a:e3:33:b0:29:41:09:2a:0a:e8:3a:ed:2f:
14:56:08:cc
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAYgv23/Nzf7uYnYl/j/I9voAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjMwNTE4MTcxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzg4NTJiYzQxMGYyMTJiY2VhNjgyNGIxNmE3ZGE1MmQ1NjIyMDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZo7OnZb0k8f4K5Y5pVnfwuCk8RT
rI98e9BeNAaovjm+KCEsb+lFCVcHDn5A44ljrwz1VzunJCji6hDybZhjNvUNWZsh
Mi30nqdbL2Ke4pnzpn3djKDlQffexDJ9gkkQrPaheXFVyhQTzuZj/OT58XiB91Tg
SC+7IpUAIofqsWgeOzJMmyfz2kCd0OH5kKD0WFCSu/g0SU8ycb3eU4s0Ubso+Y2E
+wAne8kNsUwzgQIs/dUHtKipp+jtKoK5k9i9zhxpMih4JWXflCbL0MHGiSIu+XSC
NBiMFkw30CiYRFS0KNFXe4AMK+RR1cYgNd1c36iRT05fkkQuTu0HheaLlwIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFDOIUrxBDyErzqaCSxan2lLVYiAhMB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvTTRoU3ZFRVBJU3ZPcG9KTEZxZmFVdFZpSUNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcAwQCH4MIMAwD
BAJAK2QDBARAK2ADBAJAK3QDBAJNJBgDBAJNJHgDBAJRoQADBANb9rADBANdeBAD
BAKwYDQDBAKwb6ADBAKwcFADBAOwcbgDBAOwdCADBAGyn5AwDQYJKoZIhvcNAQEL
BQADggEBAEXlSBoL5sM3174+1BoxUh2HXIzrEN4AexAXIyXsxI4MxII6k4hMlF3v
IVrtdNMYvrbbs8LYytExNs8x+VdM2Fv/bTgi2vt4WZAnKmI4XHo4CAWxRyE1c+dc
RSXeYXW1cfBGEX7a1Fv0YICY6LKj+3618XbCHMb2Esohdw+tPZssF3axPVJwyvoN
zuCLUyCgL7XnkKTdfgNWTPWOD0+BcI33WkzFE/N222VhwRHwTd2vDHJvegd30rUK
G3SfKwQ9FnbjH0m516pIvOfoYheJ7/9CROwZAL90bsF1aWtshZPBdn2F6MgStkwX
5PqRYOZRmuMzsClBCSoK6DrtLxRWCMw=
-----END CERTIFICATE-----
Generated at Wed Aug 30 12:26:35 2023 by rpki-client on console-fra.rpki-client.org