Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/jKC6KoSLQt2pQwzDXadcL6vVo7s.roa
File: jKC6KoSLQt2pQwzDXadcL6vVo7s.roa (raw, json)
Hash identifier: vlX3on7L0vuFrQZ36Em7Z5kUv2tzVtrtB9NY0sN4A04=
Subject key identifier: 8C:A0:BA:2A:84:8B:42:DD:A9:43:0C:C3:5D:A7:5C:2F:AB:D5:A3:BB
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0187B2C97B233875C7FF15A9A1AE395B0B52
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/jKC6KoSLQt2pQwzDXadcL6vVo7s.roa
Signing time: Mon 24 Apr 2023 10:22:41 +0000
ROA not before: Mon 24 Apr 2023 10:22:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.253.193.0/24 maxlen: 24
178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
188.255.205.0/24 maxlen: 24
188.255.207.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
178.253.232.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
178.253.250.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
178.219.4.0/22 maxlen: 22
178.219.15.0/24 maxlen: 24
178.219.12.0/23 maxlen: 23
77.105.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:c9:7b:23:38:75:c7:ff:15:a9:a1:ae:39:5b:0b:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Apr 24 10:22:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ca0ba2a848b42dda9430cc35da75c2fabd5a3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e8:79:77:50:d3:fd:25:90:a9:d0:b2:0e:fc:
13:f2:b1:d4:55:b8:bc:00:b5:e5:26:be:47:06:cb:
6f:fd:9a:e8:9e:1a:de:5e:ef:7f:ce:c3:64:4d:0f:
1c:66:44:cc:e8:1d:fc:90:0d:a5:9f:92:9e:5e:17:
8d:3f:63:59:04:70:25:a4:6b:c0:1d:51:c3:cb:27:
0a:c4:44:93:7b:a5:f9:0f:4c:f6:35:8b:f0:4c:36:
70:db:22:30:53:e4:9f:f4:9d:ea:f2:0c:49:a8:96:
36:79:ac:bb:8c:30:61:cb:bb:2e:68:1b:1b:9b:17:
32:7e:2c:5d:a7:42:9a:dc:85:c2:52:fc:c5:ce:a1:
26:47:2e:07:72:69:44:7e:9c:73:cf:de:8b:8f:9a:
2e:14:c6:ec:05:02:bc:e4:f9:3a:ea:67:d3:00:30:
3e:8e:54:27:fa:f9:85:ce:38:1c:53:f7:f3:22:14:
e3:a4:31:c6:fd:c4:bd:41:55:49:46:f9:f1:93:d4:
ea:7c:18:f9:98:58:90:45:84:d8:fb:36:61:23:67:
4b:98:b9:78:a1:d2:29:0a:e0:15:a2:d7:74:90:6d:
92:86:16:a2:a7:8a:9e:0e:af:26:a9:61:81:82:2a:
82:58:12:19:a6:8a:c2:8e:1e:20:27:47:e8:46:80:
71:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A0:BA:2A:84:8B:42:DD:A9:43:0C:C3:5D:A7:5C:2F:AB:D5:A3:BB
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/jKC6KoSLQt2pQwzDXadcL6vVo7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.39.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
178.219.2.0/24
178.219.4.0/22
178.219.12.0/23
178.219.15.0/24
178.253.193.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.232.0/24
178.253.238.0/24
178.253.244.0-178.253.246.255
178.253.250.0/24
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.205.0/24
188.255.207.0/24
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.3.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:51:32:e3:a8:b8:03:38:d4:7e:24:85:2a:ff:87:7a:a9:bc:
9a:7d:63:fd:28:9e:2d:cf:e2:12:6b:e3:4e:64:f6:b9:b4:47:
46:b8:a8:8d:d9:b3:f4:c4:7b:3c:9d:7a:fa:72:8a:a1:61:93:
9d:cb:0a:95:e5:ff:71:9e:68:ab:d4:02:74:aa:27:9a:73:bb:
17:3d:9e:e0:ea:53:fb:31:25:be:28:f2:82:96:88:00:2e:23:
a2:18:e5:b7:cf:b3:89:73:54:15:30:34:7b:43:c8:9d:bb:bb:
6e:61:47:d1:f2:dc:f3:6f:43:54:6b:e0:27:c9:e7:d2:11:05:
c2:aa:75:3d:9e:92:aa:7e:07:f2:f7:e2:d0:06:a2:84:72:14:
6d:49:ff:d9:48:6b:73:b0:52:d6:89:e5:4a:08:af:a2:4f:3c:
55:1b:fd:2f:78:1a:0c:71:02:40:82:ee:0f:3c:57:4d:a1:16:
66:6c:ce:9a:b8:f8:a9:02:bb:89:24:f7:1e:e4:46:34:56:2d:
bb:37:03:50:ea:bc:25:19:f3:2e:93:2d:2d:1b:e8:0d:db:19:
80:2a:25:67:09:b6:3c:df:28:d4:e3:ab:9e:c2:b2:8e:e0:9d:
e6:cc:3f:45:20:c7:d3:c5:8f:ad:3d:2d:c3:7f:bb:98:3f:3f:
e4:a3:e2:a9
-----BEGIN CERTIFICATE-----
MIIGBzCCBO+gAwIBAgISAYeyyXsjOHXH/xWpoa45WwtSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMwNDI0MTAyMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Y2EwYmEyYTg0OGI0MmRkYTk0MzBjYzM1ZGE3NWMyZmFiZDVhM2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhuh5d1DT/SWQqdCyDvwT8rHUVbi8
ALXlJr5HBstv/ZronhreXu9/zsNkTQ8cZkTM6B38kA2ln5KeXheNP2NZBHAlpGvA
HVHDyycKxESTe6X5D0z2NYvwTDZw2yIwU+Sf9J3q8gxJqJY2eay7jDBhy7suaBsb
mxcyfixdp0Ka3IXCUvzFzqEmRy4HcmlEfpxzz96Lj5ouFMbsBQK85Pk66mfTADA+
jlQn+vmFzjgcU/fzIhTjpDHG/cS9QVVJRvnxk9TqfBj5mFiQRYTY+zZhI2dLmLl4
odIpCuAVotd0kG2Shhaip4qeDq8mqWGBgiqCWBIZporCjh4gJ0foRoBx7QIDAQAB
o4IDEzCCAw8wHQYDVR0OBBYEFIyguiqEi0LdqUMMw12nXC+r1aO7MB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvaktDNktvU0xRdDJwUXd6RFhhZGNMNnZWbzdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBJwYIKwYBBQUHAQcBAf8EggEWMIIBEjCCAQ4EAgABMIIB
BgMEAE1pJwMEAE+veAMEAFESMzAMAwQDURI4AwQAURI6AwQAURI/AwQAXbpBAwQA
XbpNAwQBbXkwAwQAbXk1AwQAbXk3AwQAbem8AwQAstsCAwQCstsEAwQBstsMAwQA
stsPAwQAsv3BAwQAsv3UMAwDBAOy/dgDBACy/doDBAGy/dwDBACy/egDBACy/e4w
DAMEArL99AMEALL99gMEALL9+gMEALz/swMEALz/vgMEAbz/wDAMAwQAvP/DAwQD
vP/AAwQAvP/NAwQAvP/PAwQAvP/ZAwQAvP/kAwQBvP/mAwQAvP/9MAwDBADURQMD
BAHURQQDBADURRMDBADURRUDBADURR4wDQYJKoZIhvcNAQELBQADggEBAH9RMuOo
uAM41H4khSr/h3qpvJp9Y/0oni3P4hJr405k9rm0R0a4qI3Zs/TEezydevpyiqFh
k53LCpXl/3GeaKvUAnSqJ5pzuxc9nuDqU/sxJb4o8oKWiAAuI6IY5bfPs4lzVBUw
NHtDyJ27u25hR9Hy3PNvQ1Rr4CfJ59IRBcKqdT2ekqp+B/L34tAGooRyFG1J/9lI
a3OwUtaJ5UoIr6JPPFUb/S94GgxxAkCC7g88V02hFmZszpq4+KkCu4kk9x7kRjRW
Lbs3A1DqvCUZ8y6TLS0b6A3bGYAqJWcJtjzfKNTjq57Cso7gnebMP0Ugx9PFj609
LcN/u5g/P+Sj4qk=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org