Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/d3T7lilvflE-nwuFmFUd9mVCaiY.roa
File: d3T7lilvflE-nwuFmFUd9mVCaiY.roa (raw, json)
Hash identifier: GNwxrN5pF6OGWUeZZP2/1UlM+NqDGHNMuY6hjRKBXFs=
Subject key identifier: 77:74:FB:96:29:6F:7E:51:3E:9F:0B:85:98:55:1D:F6:65:42:6A:26
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 0186A7468046B052EC8B40709A0D949A73D5
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/d3T7lilvflE-nwuFmFUd9mVCaiY.roa
Signing time: Fri 03 Mar 2023 11:41:00 +0000
ROA not before: Fri 03 Mar 2023 11:41:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44306
IP address blocks: 213.186.25.0/24 maxlen: 24
213.186.26.0/24 maxlen: 24
213.186.27.0/24 maxlen: 24
213.186.28.0/22 maxlen: 24
46.151.128.0/21 maxlen: 24
185.151.132.0/24 maxlen: 24
185.151.133.0/24 maxlen: 24
185.151.134.0/24 maxlen: 24
91.233.36.0/23 maxlen: 24
213.186.0.0/24 maxlen: 24
213.186.1.0/24 maxlen: 24
213.186.0.0/19 maxlen: 19
213.186.0.0/20 maxlen: 20
213.186.4.0/23 maxlen: 23
213.186.9.0/24 maxlen: 24
213.186.16.0/23 maxlen: 23
213.186.23.0/24 maxlen: 24
213.186.18.0/24 maxlen: 24
213.186.19.0/24 maxlen: 24
213.186.22.0/23 maxlen: 23
213.186.22.0/24 maxlen: 24
91.199.77.0/24 maxlen: 24
2a02:2608:fffe::/48 maxlen: 48
2a02:2608:fffe:1::/64 maxlen: 64
2a02:2608::/32 maxlen: 32
2a02:2608:2000::/48 maxlen: 48
2a02:2608:3000::/48 maxlen: 48
2a02:2608:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 06 Jun 2023 11:10:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a7:46:80:46:b0:52:ec:8b:40:70:9a:0d:94:9a:73:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Mar 3 11:41:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7774fb96296f7e513e9f0b8598551df665426a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a6:ca:6e:e0:bc:9d:7e:71:27:d0:a3:26:7d:
55:c5:36:56:0e:12:f9:f2:65:b7:5a:f5:eb:ce:49:
76:78:57:bf:aa:e7:c0:59:f0:91:5f:52:e8:6a:87:
e4:93:dc:df:06:31:9b:21:97:e5:76:42:88:8f:e0:
41:ea:3a:66:d3:11:cb:e5:5e:c6:62:48:14:cb:fd:
e5:8b:05:14:39:f4:bc:35:1b:a2:65:58:0b:b9:b7:
ce:05:ac:58:0a:1d:6f:f3:45:7b:9e:43:c1:46:bd:
24:77:8e:fe:30:3a:bb:cf:e3:d6:56:ea:ad:7a:c2:
80:66:18:97:1a:88:6f:d2:95:10:ff:17:ab:1f:64:
97:26:bb:57:b3:12:3e:88:61:5a:74:73:61:8f:84:
7c:95:69:b8:fa:5e:f5:c8:e6:96:1c:c6:92:d9:d5:
6a:04:c6:fe:9f:d7:ca:45:e0:9c:de:46:d8:45:20:
b6:b9:e6:a6:ae:77:d6:1a:0a:fe:71:5d:f5:e9:71:
21:1b:c5:3a:07:a8:e9:e0:cf:df:3b:0c:41:84:11:
6a:99:34:02:82:3e:aa:0e:ca:07:e5:ad:74:6f:e0:
65:f9:6d:41:eb:2d:8d:2f:95:ea:4c:6c:83:ec:11:
65:c4:89:2d:3a:26:d4:c6:ab:12:72:a0:07:b5:0b:
75:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:74:FB:96:29:6F:7E:51:3E:9F:0B:85:98:55:1D:F6:65:42:6A:26
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/d3T7lilvflE-nwuFmFUd9mVCaiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.128.0/21
91.199.77.0/24
91.233.36.0/23
185.151.132.0-185.151.134.255
213.186.0.0/19
IPv6:
2a02:2608::/32
Signature Algorithm: sha256WithRSAEncryption
16:3f:f2:5c:18:72:2e:d9:27:aa:23:cb:7a:7a:df:2c:fd:a2:
cb:98:11:82:d7:1a:5f:ec:84:ce:4f:b8:b9:a6:c2:ee:ee:a1:
fc:bd:32:08:d2:f0:7a:0d:49:f4:44:97:66:ad:b5:4c:c0:d8:
56:13:8f:37:e8:54:94:df:9d:38:02:e9:ef:95:32:ab:5a:78:
9d:9b:41:2d:90:af:b8:73:db:f1:d2:37:03:d0:b4:21:8d:82:
64:da:52:db:af:f6:ca:74:04:d3:23:03:bc:c6:d9:a6:1e:fd:
ee:56:90:fc:73:5b:a3:c2:23:39:47:3f:3f:3e:3d:6e:73:60:
e6:d3:2a:8b:a6:c8:9b:49:44:11:67:b8:fd:f9:50:d7:6c:64:
9f:60:a2:d1:20:2d:b3:8d:1f:8b:4d:64:c7:c1:1d:6a:86:23:
5b:12:90:b0:fa:78:3a:e9:68:f8:5f:c2:be:87:17:cb:c6:ad:
ff:29:b5:44:03:63:fc:2d:15:52:2e:25:57:0c:01:ee:7a:4c:
75:a5:50:b2:84:b0:06:65:fb:e9:5f:40:29:61:e9:25:2d:bb:
6e:a7:32:18:56:25:9c:76:f8:5f:b6:eb:e1:92:f2:ad:a2:ac:
99:fa:31:15:57:57:e3:f5:e7:0c:f5:7b:bd:36:36:5a:9b:9a:
b8:b7:f6:a1
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAYanRoBGsFLsi0Bwmg2UmnPVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3ZDc4ZGUwMjM0ZTZmOTk3MDE1OTJmNTM2ZTQ1ZjVmNTU5
NGVlYzMwHhcNMjMwMzAzMTE0MTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Nzc0ZmI5NjI5NmY3ZTUxM2U5ZjBiODU5ODU1MWRmNjY1NDI2YTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06bKbuC8nX5xJ9CjJn1VxTZWDhL5
8mW3WvXrzkl2eFe/qufAWfCRX1Loaofkk9zfBjGbIZfldkKIj+BB6jpm0xHL5V7G
YkgUy/3liwUUOfS8NRuiZVgLubfOBaxYCh1v80V7nkPBRr0kd47+MDq7z+PWVuqt
esKAZhiXGohv0pUQ/xerH2SXJrtXsxI+iGFadHNhj4R8lWm4+l71yOaWHMaS2dVq
BMb+n9fKReCc3kbYRSC2ueamrnfWGgr+cV316XEhG8U6B6jp4M/fOwxBhBFqmTQC
gj6qDsoH5a10b+Bl+W1B6y2NL5XqTGyD7BFlxIktOibUxqsScqAHtQt1DwIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFHd0+5Ypb35RPp8LhZhVHfZlQmomMB8GA1UdIwQY
MBaAFKfXjeAjTm+ZcBWS9TbkX19VlO7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDllTjRDTk9iNWx3RlpMMU51UmZYMVdVN3NNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zMWFhYmEtYWM3ZS00ODlmLTg3N2Mt
MjhkNWI2MDdhNDdmLzEvZDNUN2xpbHZmbEUtbnd1Rm1GVWQ5bVZDYWlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My8zMWFhYmEtYWM3ZS00ODlmLTg3N2MtMjhkNWI2MDdhNDdm
LzEvcDllTjRDTk9iNWx3RlpMMU51UmZYMVdVN3NNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAsBAIAATAmAwQDLpeAAwQA
W8dNAwQBW+kkMAwDBAK5l4QDBAC5l4YDBAXVugAwDQQCAAIwBwMFACoCJggwDQYJ
KoZIhvcNAQELBQADggEBABY/8lwYci7ZJ6ojy3p63yz9osuYEYLXGl/shM5PuLmm
wu7uofy9MgjS8HoNSfREl2attUzA2FYTjzfoVJTfnTgC6e+VMqtaeJ2bQS2Qr7hz
2/HSNwPQtCGNgmTaUtuv9sp0BNMjA7zG2aYe/e5WkPxzW6PCIzlHPz8+PW5zYObT
KoumyJtJRBFnuP35UNdsZJ9gotEgLbONH4tNZMfBHWqGI1sSkLD6eDrpaPhfwr6H
F8vGrf8ptUQDY/wtFVIuJVcMAe56THWlULKEsAZl++lfQClh6SUtu26nMhhWJZx2
+F+26+GS8q2irJn6MRVXV+P15wz1e702Nlqbmri39qE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org