Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/MvJ9wGDw_SV73DhzZEnoX7UDWA0.roa
File: MvJ9wGDw_SV73DhzZEnoX7UDWA0.roa (raw, json)
Hash identifier: Soxwqp6Wiy0I2qZW7ReCt8a+E2UFIYH5eRdkuXkonec=
Subject key identifier: 32:F2:7D:C0:60:F0:FD:25:7B:DC:38:73:64:49:E8:5F:B5:03:58:0D
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 01864A6B4ACA11CCF1F7BD45EB9ADBF0BDC4
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/MvJ9wGDw_SV73DhzZEnoX7UDWA0.roa
Signing time: Mon 13 Feb 2023 10:56:30 +0000
ROA not before: Mon 13 Feb 2023 10:56:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44306
IP address blocks: 213.186.25.0/24 maxlen: 24
213.186.26.0/24 maxlen: 24
213.186.27.0/24 maxlen: 24
213.186.28.0/22 maxlen: 24
185.151.132.0/24 maxlen: 24
185.151.133.0/24 maxlen: 24
185.151.134.0/24 maxlen: 24
91.233.36.0/23 maxlen: 24
213.186.0.0/24 maxlen: 24
213.186.1.0/24 maxlen: 24
213.186.0.0/19 maxlen: 19
213.186.0.0/20 maxlen: 20
213.186.4.0/23 maxlen: 23
213.186.9.0/24 maxlen: 24
213.186.16.0/23 maxlen: 23
213.186.23.0/24 maxlen: 24
213.186.18.0/24 maxlen: 24
213.186.19.0/24 maxlen: 24
213.186.22.0/23 maxlen: 23
213.186.22.0/24 maxlen: 24
91.199.77.0/24 maxlen: 24
2a02:2608:fffe::/48 maxlen: 48
2a02:2608:fffe:1::/64 maxlen: 64
2a02:2608::/32 maxlen: 32
2a02:2608:1000::/48 maxlen: 48
2a02:2608:3000::/48 maxlen: 48
2a02:2608:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Mar 2023 11:41:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:6b:4a:ca:11:cc:f1:f7:bd:45:eb:9a:db:f0:bd:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Feb 13 10:56:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32f27dc060f0fd257bdc38736449e85fb503580d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c3:c9:c8:6e:15:f9:d2:80:77:3f:d1:40:27:
13:ed:9d:81:c9:5d:93:a0:33:4d:b8:4b:38:39:b6:
26:0c:ab:8b:50:f9:35:10:c8:04:32:30:de:c9:5f:
ef:14:fb:e9:17:6c:2e:61:81:07:de:26:96:71:b7:
f6:5c:be:65:b4:b2:b1:bd:d7:7a:be:5c:01:af:60:
1d:8d:ef:a6:70:63:4f:c5:79:2e:68:d2:04:45:ae:
9a:1c:45:a8:8b:23:06:df:f4:c8:e3:68:aa:e5:11:
6f:78:60:fd:91:3f:3d:c1:d8:b2:fd:68:c5:cf:42:
1d:ce:42:10:74:59:a7:2d:a4:29:d0:ec:38:4d:2b:
32:63:15:26:be:3f:52:88:88:81:f1:10:e9:29:44:
86:aa:dd:d8:84:bf:96:f8:ba:bd:09:37:e8:fc:7d:
17:8d:cf:54:62:78:f6:f9:1e:68:45:2b:4d:7e:6a:
1a:56:0a:a0:71:88:35:9a:99:36:1d:cc:08:99:74:
22:c9:7b:c4:26:d7:ba:99:a3:3b:ae:ea:e4:6f:a7:
10:8e:b0:b4:f8:1f:3f:04:64:88:16:19:bd:34:4e:
5d:0f:a3:13:08:3c:af:27:55:45:c2:9c:89:83:b6:
9c:ca:c1:fb:33:b6:3b:dd:db:ed:94:78:4a:1b:34:
ef:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F2:7D:C0:60:F0:FD:25:7B:DC:38:73:64:49:E8:5F:B5:03:58:0D
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/MvJ9wGDw_SV73DhzZEnoX7UDWA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.77.0/24
91.233.36.0/23
185.151.132.0-185.151.134.255
213.186.0.0/19
IPv6:
2a02:2608::/32
Signature Algorithm: sha256WithRSAEncryption
af:e9:bb:b7:28:a3:62:c9:ad:8c:03:9e:2e:8a:03:76:96:c0:
03:f2:b1:b8:0d:56:69:73:c7:18:86:de:94:f9:8e:93:14:9e:
44:38:c4:aa:d1:c6:dd:76:26:a6:56:3c:1e:1b:85:6a:55:cd:
7d:8c:1b:48:7b:7e:01:91:ab:d6:c8:83:67:70:15:a3:19:97:
64:28:6d:31:ab:6a:17:c6:36:97:f6:32:56:ea:a8:51:72:41:
98:19:63:09:27:c3:25:4b:c7:ae:06:29:b3:fb:6e:0c:70:4d:
d1:82:d1:5a:32:86:43:a9:7e:e5:9f:7f:34:61:37:60:a9:c8:
99:a0:3c:92:9c:93:d0:03:c8:88:eb:b6:53:a0:f0:6a:20:cf:
46:24:fd:0d:1e:31:63:ad:61:a1:b2:e9:dd:2c:ed:44:06:79:
9c:68:00:64:a2:e7:57:8e:08:e2:92:ac:76:9e:91:bc:c7:0d:
16:57:b5:2a:86:89:6f:8c:24:8a:7d:6c:92:0d:5a:09:d8:3f:
90:b1:ee:00:f9:e4:d4:2c:6a:42:7b:aa:29:bd:0a:17:9f:6f:
c9:43:a8:76:2a:25:45:8d:5c:2d:ac:85:61:01:f6:95:0d:b7:
6e:a7:1f:c5:e3:80:d6:b3:12:be:24:5b:41:cd:28:2b:f6:1b:
d4:ba:e4:cf
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAYZKa0rKEczx971F65rb8L3EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZDc4ZGUwMjM0ZTZmOTk3MDE1OTJmNTM2ZTQ1ZjVmNTU5
NGVlYzMwHhcNMjMwMjEzMTA1NjMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMmYyN2RjMDYwZjBmZDI1N2JkYzM4NzM2NDQ5ZTg1ZmI1MDM1ODBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8PJyG4V+dKAdz/RQCcT7Z2ByV2T
oDNNuEs4ObYmDKuLUPk1EMgEMjDeyV/vFPvpF2wuYYEH3iaWcbf2XL5ltLKxvdd6
vlwBr2Adje+mcGNPxXkuaNIERa6aHEWoiyMG3/TI42iq5RFveGD9kT89wdiy/WjF
z0IdzkIQdFmnLaQp0Ow4TSsyYxUmvj9SiIiB8RDpKUSGqt3YhL+W+Lq9CTfo/H0X
jc9UYnj2+R5oRStNfmoaVgqgcYg1mpk2HcwImXQiyXvEJte6maM7rurkb6cQjrC0
+B8/BGSIFhm9NE5dD6MTCDyvJ1VFwpyJg7acysH7M7Y73dvtlHhKGzTvlQIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFDLyfcBg8P0le9w4c2RJ6F+1A1gNMB8GA1UdIwQY
MBaAFKfXjeAjTm+ZcBWS9TbkX19VlO7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDllTjRDTk9iNWx3RlpMMU51UmZYMVdVN3NNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zMWFhYmEtYWM3ZS00ODlmLTg3N2Mt
MjhkNWI2MDdhNDdmLzEvTXZKOXdHRHdfU1Y3M0RoelpFbm9YN1VEV0EwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8zMWFhYmEtYWM3ZS00ODlmLTg3N2MtMjhkNWI2MDdhNDdm
LzEvcDllTjRDTk9iNWx3RlpMMU51UmZYMVdVN3NNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAmBAIAATAgAwQAW8dNAwQB
W+kkMAwDBAK5l4QDBAC5l4YDBAXVugAwDQQCAAIwBwMFACoCJggwDQYJKoZIhvcN
AQELBQADggEBAK/pu7coo2LJrYwDni6KA3aWwAPysbgNVmlzxxiG3pT5jpMUnkQ4
xKrRxt12JqZWPB4bhWpVzX2MG0h7fgGRq9bIg2dwFaMZl2QobTGrahfGNpf2Mlbq
qFFyQZgZYwknwyVLx64GKbP7bgxwTdGC0VoyhkOpfuWffzRhN2CpyJmgPJKck9AD
yIjrtlOg8Gogz0Yk/Q0eMWOtYaGy6d0s7UQGeZxoAGSi51eOCOKSrHaekbzHDRZX
tSqGiW+MJIp9bJINWgnYP5Cx7gD55NQsakJ7qim9Chefb8lDqHYqJUWNXC2shWEB
9pUNt26nH8XjgNazEr4kW0HNKCv2G9S65M8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org