Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/qtECyDSOigkxLVp1sSAH2KG-CI8.roa
File: qtECyDSOigkxLVp1sSAH2KG-CI8.roa (raw, json)
Hash identifier: Arv22PA5vIzhF+hKAHBgaUdfoWgy+Gdk+v1UlnMHLwg=
Subject key identifier: AA:D1:02:C8:34:8E:8A:09:31:2D:5A:75:B1:20:07:D8:A1:BE:08:8F
Certificate issuer: /CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Certificate serial: 01856F94BE9A45CAC0C2152C5D44BB19DA22
Authority key identifier: FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/qtECyDSOigkxLVp1sSAH2KG-CI8.roa
Signing time: Sun 01 Jan 2023 23:04:57 +0000
ROA not before: Sun 01 Jan 2023 23:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 80.144.0.0/13 maxlen: 13
80.156.0.0/16 maxlen: 16
62.156.0.0/14 maxlen: 14
217.224.0.0/11 maxlen: 11
80.128.0.0/11 maxlen: 11
217.80.0.0/12 maxlen: 12
46.80.0.0/12 maxlen: 12
193.158.0.0/15 maxlen: 15
62.153.0.0/16 maxlen: 16
194.25.0.0/16 maxlen: 16
217.0.0.0/13 maxlen: 13
80.157.8.0/21 maxlen: 21
80.157.0.0/16 maxlen: 16
93.192.0.0/10 maxlen: 10
84.128.0.0/10 maxlen: 10
87.128.0.0/10 maxlen: 10
79.192.0.0/10 maxlen: 10
91.0.0.0/10 maxlen: 10
62.224.0.0/14 maxlen: 14
195.145.0.0/16 maxlen: 16
62.154.0.0/15 maxlen: 15
80.128.0.0/12 maxlen: 12
80.157.16.0/20 maxlen: 20
212.184.0.0/15 maxlen: 15
195.243.0.0/16 maxlen: 16
80.152.0.0/14 maxlen: 14
2003:3c0::/28 maxlen: 28
2003:3e0::/28 maxlen: 28
2003::/23 maxlen: 23
2003::/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:be:9a:45:ca:c0:c2:15:2c:5d:44:bb:19:da:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Validity
Not Before: Jan 1 23:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aad102c8348e8a09312d5a75b12007d8a1be088f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b4:1f:02:0c:56:bd:07:7b:b7:7e:91:31:e6:
d1:35:f0:31:54:08:6c:5b:e7:10:9f:88:fa:3a:e4:
92:55:e3:67:68:5c:c6:41:a0:82:f2:0a:ba:34:51:
45:0f:d4:a7:90:71:f3:ca:7b:db:6b:7c:42:c6:75:
a3:62:1c:c9:c7:6e:ae:87:6c:99:d8:46:ae:f3:ba:
eb:46:b6:94:99:69:93:a4:00:82:c7:47:28:7d:91:
02:1a:69:7c:e8:c4:34:61:47:5b:ef:28:94:3a:ce:
61:8f:22:3c:4b:32:12:64:68:d1:58:db:f9:c0:a9:
36:79:b8:d1:d2:1f:ac:ec:72:f4:ec:d2:7d:4d:b8:
77:98:4f:48:bc:5f:0c:35:da:f0:71:ce:7a:f5:da:
2a:f9:ca:ab:2d:8b:52:55:a1:29:d1:5e:75:ed:c1:
61:b0:fd:62:cd:24:87:83:a3:db:3b:f0:5f:82:f0:
20:e2:9f:d3:7c:03:2c:ca:77:cf:f4:46:e9:6a:12:
f6:ec:ce:cd:9b:fb:c3:0a:b0:61:00:31:c0:32:bc:
c3:9e:c4:54:47:bd:24:4c:33:39:11:c2:d0:aa:39:
6b:eb:29:f8:5b:58:76:81:47:1d:59:25:9d:20:24:
29:52:c9:6b:0d:11:c0:8b:48:43:0f:a6:16:c6:a5:
ec:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D1:02:C8:34:8E:8A:09:31:2D:5A:75:B1:20:07:D8:A1:BE:08:8F
X509v3 Authority Key Identifier:
keyid:FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/qtECyDSOigkxLVp1sSAH2KG-CI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/1-tcQDnftkRnWbiMhu2cR1-dgmCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.80.0.0/12
62.153.0.0-62.159.255.255
62.224.0.0/14
79.192.0.0/10
80.128.0.0/11
84.128.0.0/10
87.128.0.0/10
91.0.0.0/10
93.192.0.0/10
193.158.0.0/15
194.25.0.0/16
195.145.0.0/16
195.243.0.0/16
212.184.0.0/15
217.0.0.0/13
217.80.0.0/12
217.224.0.0/11
IPv6:
2003::/19
Signature Algorithm: sha256WithRSAEncryption
6c:8a:92:8f:ca:e9:13:0b:66:24:13:fe:87:51:3a:ab:b2:e6:
29:60:a0:c3:25:58:3b:1a:b0:17:aa:ab:91:d9:7d:4b:97:8c:
f3:98:bd:75:aa:71:3f:64:27:24:63:f0:e6:8b:79:e3:3c:a7:
a5:f8:4d:1b:a9:7f:8f:a3:e5:9b:40:fb:d9:40:3e:81:0d:b7:
4c:94:be:5d:4e:bd:60:91:67:5a:a5:a1:42:cb:c6:ac:1f:30:
7e:19:00:09:cd:6e:5d:7b:70:fd:33:2f:71:a6:93:49:f2:e7:
8a:18:21:bb:a9:eb:f9:fd:22:f9:1b:5d:0d:e4:a5:a9:d0:65:
69:cc:af:a7:25:0b:85:56:61:4a:3b:e0:03:be:82:55:57:b6:
47:63:73:dc:f8:2c:e8:e2:23:2c:3d:b0:eb:42:34:b8:2f:90:
a5:34:ab:3e:86:ca:32:d4:fb:e7:50:ed:f6:00:28:5c:c5:5b:
c6:f5:55:4e:7a:00:d2:70:c3:48:be:99:39:46:7c:de:ed:ee:
73:42:99:b5:38:fa:de:4c:4a:15:48:6c:f2:16:90:85:72:bd:
f8:35:64:6f:21:46:33:ad:c7:3c:7b:06:5e:b0:c4:20:99:aa:
2d:66:3a:5e:37:52:9a:ed:b8:f4:cb:b4:0d:9c:52:97:85:6e:
88:18:26:08
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYVvlL6aRcrAwhUsXUS7GdoiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDcxMDBlNzdlZDkxMTlkNjZlMjMyMWJiNjcxMWQ3ZTc2
MDk4MmIwHhcNMjMwMTAxMjMwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWQxMDJjODM0OGU4YTA5MzEyZDVhNzViMTIwMDdkOGExYmUwODhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7QfAgxWvQd7t36RMebRNfAxVAhs
W+cQn4j6OuSSVeNnaFzGQaCC8gq6NFFFD9SnkHHzynvba3xCxnWjYhzJx26uh2yZ
2Eau87rrRraUmWmTpACCx0cofZECGml86MQ0YUdb7yiUOs5hjyI8SzISZGjRWNv5
wKk2ebjR0h+s7HL07NJ9Tbh3mE9IvF8MNdrwcc569doq+cqrLYtSVaEp0V517cFh
sP1izSSHg6PbO/BfgvAg4p/TfAMsynfP9EbpahL27M7Nm/vDCrBhADHAMrzDnsRU
R70kTDM5EcLQqjlr6yn4W1h2gUcdWSWdICQpUslrDRHAi0hDD6YWxqXsDwIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFKrRAsg0jooJMS1adbEgB9ihvgiPMB8GA1UdIwQY
MBaAFPrXEA537ZEZ1m4jIbtnEdfnYJgrMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10Y1FEbmZ0a1JuV2JpTWh1MmNSMS1kZ21Dcy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2UvMDFkNDExLWQ5MTUtNDI3Ny04ZmUy
LTc2YjBkZGEyYmYzZS8xL3F0RUN5RFNPaWdreExWcDFzU0FIMktHLUNJOC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvM2UvMDFkNDExLWQ5MTUtNDI3Ny04ZmUyLTc2YjBkZGEyYmYz
ZS8xLzEtdGNRRG5mdGtSbldiaU1odTJjUjEtZGdtQ3MuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwgYMGCCsGAQUFBwEHAQH/BHQwcjBiBAIAATBcAwMELlAw
CgMDAD6ZAwMFPoADAwI+4AMDBk/AAwMFUIADAwZUgAMDBleAAwMGWwADAwZdwAMD
AcGeAwMAwhkDAwDDkQMDAMPzAwMB1LgDAwPZAAMDBNlQAwMF2eAwDAQCAAIwBgME
BSADADANBgkqhkiG9w0BAQsFAAOCAQEAbIqSj8rpEwtmJBP+h1E6q7LmKWCgwyVY
OxqwF6qrkdl9S5eM85i9dapxP2QnJGPw5ot54zynpfhNG6l/j6Plm0D72UA+gQ23
TJS+XU69YJFnWqWhQsvGrB8wfhkACc1uXXtw/TMvcaaTSfLnihghu6nr+f0i+Rtd
DeSlqdBlacyvpyULhVZhSjvgA76CVVe2R2Nz3Pgs6OIjLD2w60I0uC+QpTSrPobK
MtT751Dt9gAoXMVbxvVVTnoA0nDDSL6ZOUZ83u3uc0KZtTj63kxKFUhs8haQhXK9
+DVkbyFGM63HPHsGXrDEIJmqLWY6XjdSmu249Mu0DZxSl4VuiBgmCA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:39 2023 by rpki-client on console-ams.rpki-client.org