Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Y_VoxFX2u2HNwvU2a5HuGUhj1pc.roa
File: Y_VoxFX2u2HNwvU2a5HuGUhj1pc.roa (raw, json)
Hash identifier: qqN9TIuQqFGs3KXmIzFV6juW86GmfK9Wx0nUVXinnnU=
Subject key identifier: 63:F5:68:C4:55:F6:BB:61:CD:C2:F5:36:6B:91:EE:19:48:63:D6:97
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018A4C7B02BCC05B7D6429922CA023DF73EA
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Y_VoxFX2u2HNwvU2a5HuGUhj1pc.roa
Signing time: Thu 31 Aug 2023 16:44:04 +0000
ROA not before: Thu 31 Aug 2023 16:44:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50835
IP address blocks: 91.193.30.0/23 maxlen: 23
81.161.48.0/22 maxlen: 22
91.246.192.0/22 maxlen: 24
176.113.180.0/22 maxlen: 22
91.246.203.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
91.246.217.0/24 maxlen: 24
81.161.8.0/22 maxlen: 22
37.97.121.0/24 maxlen: 24
37.97.120.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
193.36.220.0/22 maxlen: 22
194.33.66.0/23 maxlen: 23
91.232.19.0/24 maxlen: 24
64.43.120.0/22 maxlen: 24
91.233.200.0/24 maxlen: 24
176.115.236.0/22 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
91.200.134.0/23 maxlen: 23
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
91.238.39.0/24 maxlen: 24
176.116.228.0/24 maxlen: 24
176.116.236.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.224.212.0/24 maxlen: 24
91.232.226.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
91.236.76.0/24 maxlen: 24
46.173.254.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4c:7b:02:bc:c0:5b:7d:64:29:92:2c:a0:23:df:73:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Aug 31 16:44:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63f568c455f6bb61cdc2f5366b91ee194863d697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:95:4b:fe:e4:a8:64:70:70:1d:a2:0d:df:dd:
6c:01:7a:74:b5:4b:92:32:ae:25:56:94:35:8e:c9:
30:28:a0:aa:39:e4:30:e5:8c:28:b4:a4:9e:7e:65:
5f:d0:27:21:cf:40:57:cf:7e:ed:49:7d:cd:1a:41:
03:0a:92:92:66:88:1d:3c:08:0d:f7:db:03:de:e1:
a9:f9:53:6d:6f:cc:47:19:2d:0e:2b:d9:14:87:73:
e6:3d:b4:ce:e9:7d:7e:40:8d:36:3c:4e:b0:ea:eb:
bd:7e:91:78:8d:3d:c0:bc:35:3c:c5:6c:5e:d4:fb:
91:21:b9:94:ba:1c:06:8d:4d:ba:05:2f:24:38:bb:
42:3d:c3:12:46:db:a0:ae:24:dd:7f:cf:b2:c4:42:
7f:75:b6:ef:9e:2f:bb:2b:9b:db:e0:ec:65:c8:cf:
93:aa:b7:93:fd:4d:3f:23:6b:24:52:90:b4:4d:d1:
41:8e:4c:0d:93:18:11:4b:4a:29:7c:e2:11:ac:32:
0e:38:04:e3:08:63:d9:91:2b:62:fd:87:c8:11:15:
4f:dc:55:c8:4a:93:6e:76:f7:cb:b3:22:92:b3:d4:
24:81:41:aa:e3:1d:60:b4:d1:f0:6a:06:60:68:30:
5c:33:46:7a:14:ea:7b:ea:ab:44:fe:00:6f:57:0f:
e5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F5:68:C4:55:F6:BB:61:CD:C2:F5:36:6B:91:EE:19:48:63:D6:97
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Y_VoxFX2u2HNwvU2a5HuGUhj1pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.134.0/23
91.224.212.0/24
91.232.19.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
91.246.217.0/24
109.207.130.0/24
109.207.132.0/24
176.96.94.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
193.36.220.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:dc:6a:eb:99:c6:f3:8d:52:f7:8c:c1:29:6d:bb:d9:b8:5b:
6d:de:5a:d6:c7:4c:c1:38:4b:fe:d0:23:d0:56:12:8d:dd:d4:
2c:76:ff:60:b4:98:da:48:b9:d6:c5:98:2d:9a:06:3f:ed:de:
b4:45:ec:fe:17:20:f1:60:16:60:25:f0:f9:d5:32:88:d7:37:
31:e1:9a:d3:c0:7a:9a:6c:ae:52:ef:a2:85:dc:21:cd:54:50:
42:70:60:6f:5f:ba:86:21:fc:6d:8c:dc:53:26:32:27:7d:47:
3d:f5:45:38:7a:20:90:69:f0:fa:74:47:06:8b:27:0e:db:75:
50:ab:59:90:83:9d:b4:c6:40:13:f4:3d:55:86:5f:c4:dc:f7:
0f:f3:97:07:d0:3d:e7:6f:1d:ec:d8:16:72:c4:e0:fc:8c:57:
cf:bd:f2:b1:b8:2b:43:9e:b8:29:a7:cb:ff:01:0e:21:f0:73:
c5:41:03:46:4b:35:0e:0d:37:ab:a5:10:4a:68:38:ca:ef:c4:
55:9d:16:7a:e1:0b:b4:25:9a:84:01:93:61:58:b6:f2:8e:2c:
50:12:9e:8f:9f:a1:d5:4f:a6:4a:66:a4:00:27:15:4c:48:ed:
e5:d8:f5:d5:ee:2e:05:f2:79:eb:03:79:f8:a3:e3:52:05:fd:
8a:ba:f6:ea
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgISAYpMewK8wFt9ZCmSLKAj33PqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjMwODMxMTY0NDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2Y1NjhjNDU1ZjZiYjYxY2RjMmY1MzY2YjkxZWUxOTQ4NjNkNjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpVL/uSoZHBwHaIN391sAXp0tUuS
Mq4lVpQ1jskwKKCqOeQw5YwotKSefmVf0Cchz0BXz37tSX3NGkEDCpKSZogdPAgN
99sD3uGp+VNtb8xHGS0OK9kUh3PmPbTO6X1+QI02PE6w6uu9fpF4jT3AvDU8xWxe
1PuRIbmUuhwGjU26BS8kOLtCPcMSRtugriTdf8+yxEJ/dbbvni+7K5vb4OxlyM+T
qreT/U0/I2skUpC0TdFBjkwNkxgRS0opfOIRrDIOOATjCGPZkSti/YfIERVP3FXI
SpNudvfLsyKSs9QkgUGq4x1gtNHwagZgaDBcM0Z6FOp76qtE/gBvVw/lDwIDAQAB
o4ICvDCCArgwHQYDVR0OBBYEFGP1aMRV9rthzcL1NmuR7hlIY9aXMB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvWV9Wb3hGWDJ1MkhOd3ZVMmE1SHVHVWhqMXBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHRBggrBgEFBQcBBwEB/wSBwTCBvjCBuwQCAAEwgbQDBAEl
YXgDBAIurfgDBAEurf4DBAJAK3gDBAJRoQgDBAJRoTADBAFbwR4DBAFbyIYDBABb
4NQDBABb6BMDBAFb6DgDBABb6OIDBABb6cgDBABb7EwDBABb7icDBABb7+IDBAJb
9sADBABb9ssDBABb9tkDBABtz4IDBABtz4QDBACwYF4DBAGwbnADBAKwcbQDBAKw
c+wDBACwdOQDBACwdOwDBAKweWwDBALBJNwDBAHCIUIwDQYJKoZIhvcNAQELBQAD
ggEBAD7cauuZxvONUveMwSltu9m4W23eWtbHTME4S/7QI9BWEo3d1Cx2/2C0mNpI
udbFmC2aBj/t3rRF7P4XIPFgFmAl8PnVMojXNzHhmtPAeppsrlLvooXcIc1UUEJw
YG9fuoYh/G2M3FMmMid9Rz31RTh6IJBp8Pp0RwaLJw7bdVCrWZCDnbTGQBP0PVWG
X8Tc9w/zlwfQPedvHezYFnLE4PyMV8+98rG4K0OeuCmny/8BDiHwc8VBA0ZLNQ4N
N6ulEEpoOMrvxFWdFnrhC7QlmoQBk2FYtvKOLFASno+fodVPpkpmpAAnFUxI7eXY
9dXuLgXyeesDefij41IF/Yq69uo=
-----END CERTIFICATE-----
Generated at Tue Sep 12 17:49:54 2023 by rpki-client on console-ams.rpki-client.org