Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EXDRyIucQ8co5Vc0-_hNQkJj93I.roa
File: EXDRyIucQ8co5Vc0-_hNQkJj93I.roa (raw, json)
Hash identifier: XW7B7Y35DNaT10sFoqaFXvBAnPunfjLrRr9MR3EBsNo=
Subject key identifier: 11:70:D1:C8:8B:9C:43:C7:28:E5:57:34:FB:F8:4D:42:42:63:F7:72
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0188901B5BC56B9FA73297171479815CEF2E
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EXDRyIucQ8co5Vc0-_hNQkJj93I.roa
Signing time: Tue 06 Jun 2023 09:48:12 +0000
ROA not before: Tue 06 Jun 2023 09:48:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52116
IP address blocks: 178.253.207.0/24 maxlen: 24
178.253.213.0/24 maxlen: 24
188.255.130.0/24 maxlen: 24
178.253.210.0/24 maxlen: 24
178.253.219.0/24 maxlen: 24
178.253.214.0/24 maxlen: 24
188.255.140.0/24 maxlen: 24
178.253.222.0/24 maxlen: 24
93.186.64.0/24 maxlen: 24
93.186.67.0/24 maxlen: 24
93.186.71.0/24 maxlen: 24
93.186.72.0/24 maxlen: 24
188.255.208.0/24 maxlen: 24
188.255.213.0/24 maxlen: 24
188.255.219.0/24 maxlen: 24
188.255.238.0/24 maxlen: 24
188.255.246.0/24 maxlen: 24
188.255.244.0/23 maxlen: 23
212.69.6.0/24 maxlen: 24
188.255.248.0/24 maxlen: 24
188.255.252.0/24 maxlen: 24
212.69.7.0/24 maxlen: 24
188.255.247.0/24 maxlen: 24
188.255.250.0/23 maxlen: 23
178.253.236.0/24 maxlen: 24
178.253.240.0/24 maxlen: 24
81.18.50.0/24 maxlen: 24
81.18.49.0/24 maxlen: 24
81.18.55.0/24 maxlen: 24
81.18.52.0/23 maxlen: 23
81.18.61.0/24 maxlen: 24
188.255.190.0/24 maxlen: 24
79.175.103.0/24 maxlen: 24
79.175.116.0/24 maxlen: 24
79.175.118.0/24 maxlen: 24
79.175.115.0/24 maxlen: 24
188.255.254.0/24 maxlen: 24
212.69.12.0/24 maxlen: 24
188.255.255.0/24 maxlen: 24
178.219.11.0/24 maxlen: 24
178.219.8.0/23 maxlen: 23
185.47.89.0/24 maxlen: 24
185.47.88.0/24 maxlen: 24
185.47.90.0/24 maxlen: 24
77.105.31.0/24 maxlen: 24
80.74.173.0/24 maxlen: 24
77.105.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:90:1b:5b:c5:6b:9f:a7:32:97:17:14:79:81:5c:ef:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jun 6 09:48:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1170d1c88b9c43c728e55734fbf84d424263f772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:e7:ba:d1:f3:06:c8:00:96:6b:2c:b6:84:
20:60:75:3a:0d:17:92:f4:3a:c6:14:c1:aa:52:f3:
14:4f:d6:27:bf:26:c9:ca:91:ef:c0:28:8a:29:85:
34:9f:0c:2e:b3:4b:85:68:e1:7a:f0:49:42:c4:c5:
56:54:cb:f5:a1:a9:70:70:cb:19:89:b0:c1:8e:28:
bc:07:ad:be:82:a4:dd:77:94:a7:f6:45:94:08:88:
4d:08:cd:99:3f:47:0b:39:dd:38:e0:7e:c4:a9:09:
39:4d:81:ae:10:15:51:21:4e:3c:8b:a1:42:a4:2d:
a5:9c:c7:c3:82:32:42:4b:aa:4b:ad:4f:41:dd:64:
e5:99:e5:e3:06:7c:5d:8c:85:89:cd:c1:a8:e1:6e:
e5:a6:f3:eb:77:a8:92:3c:8c:35:32:06:6a:d5:ce:
02:78:f1:dd:e9:f5:77:b4:c8:82:c8:8e:c7:7a:35:
68:84:71:b1:c0:4c:ae:b3:93:52:2f:91:fd:08:a9:
23:7f:a7:7c:f2:b9:1e:fd:00:cf:de:ab:e8:dd:f1:
b7:2b:e4:47:2a:96:37:26:13:25:b8:26:d6:4e:61:
3e:01:b3:64:65:8a:2b:4c:fa:e4:91:0a:42:84:ae:
b9:91:aa:c6:58:e9:a3:cc:1d:0e:c8:e5:81:b2:2f:
b0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:70:D1:C8:8B:9C:43:C7:28:E5:57:34:FB:F8:4D:42:42:63:F7:72
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EXDRyIucQ8co5Vc0-_hNQkJj93I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.11.0/24
77.105.31.0/24
79.175.103.0/24
79.175.115.0-79.175.116.255
79.175.118.0/24
80.74.173.0/24
81.18.49.0-81.18.50.255
81.18.52.0/23
81.18.55.0/24
81.18.61.0/24
93.186.64.0/24
93.186.67.0/24
93.186.71.0-93.186.72.255
178.219.8.0/23
178.219.11.0/24
178.253.207.0/24
178.253.210.0/24
178.253.213.0-178.253.214.255
178.253.219.0/24
178.253.222.0/24
178.253.236.0/24
178.253.240.0/24
185.47.88.0-185.47.90.255
188.255.130.0/24
188.255.140.0/24
188.255.190.0/24
188.255.208.0/24
188.255.213.0/24
188.255.219.0/24
188.255.238.0/24
188.255.244.0-188.255.248.255
188.255.250.0-188.255.252.255
188.255.254.0/23
212.69.6.0/23
212.69.12.0/24
Signature Algorithm: sha256WithRSAEncryption
58:61:8c:41:aa:74:e6:54:82:37:c0:dc:9b:a1:e4:f6:00:6d:
b6:4e:c4:1e:ab:1b:19:99:5d:51:ca:a2:9a:d5:50:0a:6e:60:
0f:29:de:e8:04:85:80:c8:8d:a4:7b:ea:13:d0:87:59:a1:4a:
ce:a1:90:ed:b1:ae:c2:b6:22:b6:db:55:e6:dd:11:6d:58:85:
a1:f4:7e:43:3c:a0:65:ab:28:df:b3:66:c5:12:c3:eb:76:d6:
70:9a:18:78:01:d2:d7:0c:c1:5f:10:19:19:63:70:c9:a7:05:
06:51:3d:d4:b9:1e:0e:c4:fa:d5:eb:bb:ff:32:ba:32:5d:ef:
79:c3:79:ee:d7:63:79:80:79:10:27:39:ec:fc:90:e4:0c:dd:
7a:a7:a5:54:c8:53:bb:5d:a3:c6:45:ef:4d:0d:ce:22:b4:82:
99:cc:95:21:0e:70:47:f4:bf:71:a9:67:b6:2d:7e:75:0b:79:
9f:6d:d7:74:01:8c:6a:3e:71:8f:55:7f:af:7a:40:33:50:b8:
92:7c:a1:5c:2f:3d:30:00:5a:79:73:3f:d2:e9:80:51:24:4c:
74:6f:d6:12:4b:7f:5e:db:5b:30:0f:69:67:5c:9b:8b:8e:97:
46:c4:6a:59:be:70:ad:59:34:2b:31:ac:33:cd:53:fd:ca:c8:
04:f0:84:ff
-----BEGIN CERTIFICATE-----
MIIGCzCCBPOgAwIBAgISAYiQG1vFa5+nMpcXFHmBXO8uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMwNjA2MDk0ODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTcwZDFjODhiOWM0M2M3MjhlNTU3MzRmYmY4NGQ0MjQyNjNmNzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkK7nutHzBsgAlmsstoQgYHU6DReS
9DrGFMGqUvMUT9YnvybJypHvwCiKKYU0nwwus0uFaOF68ElCxMVWVMv1oalwcMsZ
ibDBjii8B62+gqTdd5Sn9kWUCIhNCM2ZP0cLOd044H7EqQk5TYGuEBVRIU48i6FC
pC2lnMfDgjJCS6pLrU9B3WTlmeXjBnxdjIWJzcGo4W7lpvPrd6iSPIw1MgZq1c4C
ePHd6fV3tMiCyI7HejVohHGxwEyus5NSL5H9CKkjf6d88rke/QDP3qvo3fG3K+RH
KpY3JhMluCbWTmE+AbNkZYorTPrkkQpChK65karGWOmjzB0OyOWBsi+wzQIDAQAB
o4IDFzCCAxMwHQYDVR0OBBYEFBFw0ciLnEPHKOVXNPv4TUJCY/dyMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvRVhEUnlJdWNROGNvNVZjMC1faE5Ra0pqOTNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBKwYIKwYBBQUHAQcBAf8EggEaMIIBFjCCARIEAgABMIIB
CgMEAE1pCwMEAE1pHwMEAE+vZzAMAwQAT69zAwQAT690AwQAT692AwQAUEqtMAwD
BABREjEDBABREjIDBAFREjQDBABREjcDBABREj0DBABdukADBABdukMwDAMEAF26
RwMEAF26SAMEAbLbCAMEALLbCwMEALL9zwMEALL90jAMAwQAsv3VAwQAsv3WAwQA
sv3bAwQAsv3eAwQAsv3sAwQAsv3wMAwDBAO5L1gDBAC5L1oDBAC8/4IDBAC8/4wD
BAC8/74DBAC8/9ADBAC8/9UDBAC8/9sDBAC8/+4wDAMEArz/9AMEALz/+DAMAwQB
vP/6AwQAvP/8AwQBvP/+AwQB1EUGAwQA1EUMMA0GCSqGSIb3DQEBCwUAA4IBAQBY
YYxBqnTmVII3wNyboeT2AG22TsQeqxsZmV1RyqKa1VAKbmAPKd7oBIWAyI2ke+oT
0IdZoUrOoZDtsa7CtiK221Xm3RFtWIWh9H5DPKBlqyjfs2bFEsPrdtZwmhh4AdLX
DMFfEBkZY3DJpwUGUT3UuR4OxPrV67v/MroyXe95w3nu12N5gHkQJzns/JDkDN16
p6VUyFO7XaPGRe9NDc4itIKZzJUhDnBH9L9xqWe2LX51C3mfbdd0AYxqPnGPVX+v
ekAzULiSfKFcLz0wAFp5cz/S6YBRJEx0b9YSS39e21swD2lnXJuLjpdGxGpZvnCt
WTQrMawzzVP9ysgE8IT/
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org