Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/7cbk6rb8qIZU7UPc4lTBAIq4Hjk.roa
File: 7cbk6rb8qIZU7UPc4lTBAIq4Hjk.roa (raw, json)
Hash identifier: kahz3v2qQRlGapAD78WqRUssAFwVXu5WnfucjCbFzu0=
Subject key identifier: ED:C6:E4:EA:B6:FC:A8:86:54:ED:43:DC:E2:54:C1:00:8A:B8:1E:39
Certificate issuer: /CN=eedde41f362e98ae37d1efc7caf3e7d3c1653ee2
Certificate serial: 0186EE860AFF7C81CED702094398768EAA15
Authority key identifier: EE:DD:E4:1F:36:2E:98:AE:37:D1:EF:C7:CA:F3:E7:D3:C1:65:3E:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7t3kHzYumK430e_HyvPn08FlPuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/7cbk6rb8qIZU7UPc4lTBAIq4Hjk.roa
Signing time: Fri 17 Mar 2023 07:43:27 +0000
ROA not before: Fri 17 Mar 2023 07:43:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31103
IP address blocks: 84.19.160.0/19 maxlen: 24
217.114.208.0/20 maxlen: 24
84.19.167.0/24 maxlen: 24
84.19.188.0/24 maxlen: 24
95.169.161.0/24 maxlen: 24
87.118.67.0/24 maxlen: 24
95.169.160.0/24 maxlen: 24
87.118.64.0/18 maxlen: 24
95.169.170.0/24 maxlen: 24
95.169.169.0/24 maxlen: 24
87.118.83.0/24 maxlen: 24
95.169.176.0/21 maxlen: 24
95.169.184.0/22 maxlen: 24
87.118.86.0/24 maxlen: 24
95.169.186.0/24 maxlen: 24
95.169.190.0/23 maxlen: 24
95.169.189.0/24 maxlen: 24
95.169.188.0/24 maxlen: 24
95.169.187.0/24 maxlen: 24
87.118.92.0/24 maxlen: 24
62.141.48.0/20 maxlen: 24
87.118.120.0/24 maxlen: 24
2001:1b60::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:86:0a:ff:7c:81:ce:d7:02:09:43:98:76:8e:aa:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eedde41f362e98ae37d1efc7caf3e7d3c1653ee2
Validity
Not Before: Mar 17 07:43:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edc6e4eab6fca88654ed43dce254c1008ab81e39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:50:d2:98:ce:8e:89:75:bb:90:32:6c:e8:40:
1c:12:14:60:6b:87:3e:55:3f:5d:5b:c5:78:02:6c:
f0:04:ab:60:bc:30:b8:b8:e8:ec:fc:22:7d:90:a2:
05:a7:8e:a4:19:11:24:d2:d6:59:ad:01:ba:4a:44:
75:d3:7f:9d:16:57:60:59:80:e7:11:73:5d:e7:73:
52:30:fe:71:7e:4c:fe:12:66:97:49:a6:bf:4c:75:
7f:09:9a:db:b9:43:5a:03:d3:98:4a:e2:5a:be:36:
75:89:d6:65:e7:30:0a:4c:5d:25:b0:2a:89:f5:d3:
9b:b6:7a:de:98:38:de:e8:08:35:8d:f7:42:7b:b6:
6a:0a:a8:d2:3b:50:4c:62:3d:41:ee:a1:19:90:b4:
4a:5d:b0:34:ed:a6:7b:4e:e7:b2:70:1a:c9:2b:c0:
89:ec:ea:f5:a7:d1:a9:a8:0a:72:b2:6e:0a:7c:8e:
43:b2:08:2e:8c:96:94:4b:b8:39:89:31:f3:70:0a:
25:27:54:bf:00:e4:02:77:aa:52:9b:e7:cd:61:9c:
61:c4:bc:66:7e:d0:b1:92:38:29:a6:a1:03:d0:d2:
98:a7:80:f7:d4:38:47:1d:09:a4:a0:b9:e0:1c:00:
35:67:98:54:17:5f:8a:0c:72:c0:b8:3c:05:bf:7b:
d8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:C6:E4:EA:B6:FC:A8:86:54:ED:43:DC:E2:54:C1:00:8A:B8:1E:39
X509v3 Authority Key Identifier:
keyid:EE:DD:E4:1F:36:2E:98:AE:37:D1:EF:C7:CA:F3:E7:D3:C1:65:3E:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7t3kHzYumK430e_HyvPn08FlPuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/7cbk6rb8qIZU7UPc4lTBAIq4Hjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/626fa6-6eca-476e-a5af-afe63376c88f/1/7t3kHzYumK430e_HyvPn08FlPuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.141.48.0/20
84.19.160.0/19
87.118.64.0/18
95.169.160.0/23
95.169.169.0-95.169.170.255
95.169.176.0/20
217.114.208.0/20
IPv6:
2001:1b60::/29
Signature Algorithm: sha256WithRSAEncryption
11:b1:3b:12:2e:d7:a9:56:19:4d:d5:b0:bc:1f:de:b6:a2:88:
f2:a3:bd:a7:6b:41:7e:21:d5:42:64:dc:9b:1b:fa:c8:75:76:
eb:b0:70:db:62:4a:06:e2:1d:67:19:67:8f:c9:18:78:b5:44:
04:65:e7:0b:c7:30:42:5d:a2:1d:3e:93:99:1d:9b:87:49:f6:
c7:ab:74:41:7c:d1:dd:45:75:6d:c2:85:24:41:81:2c:83:13:
11:89:35:52:08:8e:92:63:ed:ad:19:1a:c8:20:6b:85:cb:d2:
3e:fa:31:c3:57:2a:12:17:b3:2d:7c:47:b3:b4:87:b0:de:8e:
8b:6a:c5:07:3f:00:02:9c:45:93:16:93:6b:8e:7a:55:d3:86:
c9:ef:c7:12:89:6f:ea:8e:c2:a1:cb:17:97:a4:ec:fe:35:b6:
76:1c:ee:29:5e:6a:5b:a4:7f:f9:15:d8:9d:f6:5d:a3:79:92:
1d:e3:cd:d7:cf:8e:aa:52:58:d5:2c:6a:b9:e9:3c:4a:01:f6:
3c:2a:92:76:0f:59:fe:9f:9e:84:87:cf:67:f2:b8:ed:f2:1a:
8a:ad:c2:46:7d:46:21:29:a3:13:35:1c:ec:99:34:52:6a:e5:
ca:36:50:11:e4:8b:6a:40:2f:0d:d6:29:c4:82:52:7d:07:1d:
9c:7c:ce:b4
-----BEGIN CERTIFICATE-----
MIIFODCCBCCgAwIBAgISAYbuhgr/fIHO1wIJQ5h2jqoVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlZGRlNDFmMzYyZTk4YWUzN2QxZWZjN2NhZjNlN2QzYzE2
NTNlZTIwHhcNMjMwMzE3MDc0MzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZGM2ZTRlYWI2ZmNhODg2NTRlZDQzZGNlMjU0YzEwMDhhYjgxZTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhVDSmM6OiXW7kDJs6EAcEhRga4c+
VT9dW8V4AmzwBKtgvDC4uOjs/CJ9kKIFp46kGREk0tZZrQG6SkR103+dFldgWYDn
EXNd53NSMP5xfkz+EmaXSaa/THV/CZrbuUNaA9OYSuJavjZ1idZl5zAKTF0lsCqJ
9dObtnremDje6Ag1jfdCe7ZqCqjSO1BMYj1B7qEZkLRKXbA07aZ7TueycBrJK8CJ
7Or1p9GpqApysm4KfI5DsggujJaUS7g5iTHzcAolJ1S/AOQCd6pSm+fNYZxhxLxm
ftCxkjgppqED0NKYp4D31DhHHQmkoLngHAA1Z5hUF1+KDHLAuDwFv3vY9QIDAQAB
o4ICRDCCAkAwHQYDVR0OBBYEFO3G5Oq2/KiGVO1D3OJUwQCKuB45MB8GA1UdIwQY
MBaAFO7d5B82LpiuN9Hvx8rz59PBZT7iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3Qza0h6WXVtSzQzMGVfSHl2UG4wOEZsUHVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My82MjZmYTYtNmVjYS00NzZlLWE1YWYt
YWZlNjMzNzZjODhmLzEvN2NiazZyYjhxSVpVN1VQYzRsVEJBSXE0SGprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My82MjZmYTYtNmVjYS00NzZlLWE1YWYtYWZlNjMzNzZjODhm
LzEvN3Qza0h6WXVtSzQzMGVfSHl2UG4wOEZsUHVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQEPo0wAwQF
VBOgAwQGV3ZAAwQBX6mgMAwDBABfqakDBABfqaoDBARfqbADBATZctAwDQQCAAIw
BwMFAyABG2AwDQYJKoZIhvcNAQELBQADggEBABGxOxIu16lWGU3VsLwf3raiiPKj
vadrQX4h1UJk3Jsb+sh1duuwcNtiSgbiHWcZZ4/JGHi1RARl5wvHMEJdoh0+k5kd
m4dJ9serdEF80d1FdW3ChSRBgSyDExGJNVIIjpJj7a0ZGsgga4XL0j76McNXKhIX
sy18R7O0h7DejotqxQc/AAKcRZMWk2uOelXThsnvxxKJb+qOwqHLF5ek7P41tnYc
7ilealukf/kV2J32XaN5kh3jzdfPjqpSWNUsarnpPEoB9jwqknYPWf6fnoSHz2fy
uO3yGoqtwkZ9RiEpoxM1HOyZNFJq5co2UBHki2pALw3WKcSCUn0HHZx8zrQ=
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:37 2024 by rpki-client on console-ams.rpki-client.org