Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PHPbAIvuMFJXyuGd0wsyEO7D4hU.roa
File: PHPbAIvuMFJXyuGd0wsyEO7D4hU.roa (raw, json)
Hash identifier: Ok12hxCXFOQu8fdr04NhkUKZcUKGeY9yLlxCyb3YFHk=
Subject key identifier: 3C:73:DB:00:8B:EE:30:52:57:CA:E1:9D:D3:0B:32:10:EE:C3:E2:15
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01899C6672B94E3E8659AFB205D5A84D1724
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PHPbAIvuMFJXyuGd0wsyEO7D4hU.roa
Signing time: Fri 28 Jul 2023 12:08:27 +0000
ROA not before: Fri 28 Jul 2023 12:08:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12741
IP address blocks: 77.252.0.0/14 maxlen: 14
159.205.0.0/16 maxlen: 16
193.19.104.0/23 maxlen: 23
89.171.0.0/16 maxlen: 16
62.87.128.0/17 maxlen: 17
178.16.116.0/24 maxlen: 24
178.16.121.0/24 maxlen: 24
178.16.125.0/24 maxlen: 24
62.181.160.0/19 maxlen: 19
213.134.128.0/19 maxlen: 19
87.204.0.0/15 maxlen: 15
62.244.128.0/19 maxlen: 19
82.143.128.0/18 maxlen: 18
62.89.64.0/18 maxlen: 18
77.65.188.0/24 maxlen: 24
77.65.193.0/24 maxlen: 24
77.65.209.0/24 maxlen: 24
213.241.0.0/17 maxlen: 17
178.36.0.0/15 maxlen: 15
213.238.64.0/18 maxlen: 18
93.180.160.0/19 maxlen: 19
213.241.89.0/24 maxlen: 24
83.238.0.0/16 maxlen: 16
62.233.128.0/17 maxlen: 17
213.17.244.0/24 maxlen: 24
81.210.0.0/17 maxlen: 17
5.226.135.0/24 maxlen: 24
213.186.64.0/19 maxlen: 19
77.65.134.0/24 maxlen: 24
212.106.0.0/19 maxlen: 19
77.65.155.0/24 maxlen: 24
77.65.171.0/24 maxlen: 24
85.31.252.0/24 maxlen: 24
213.146.32.0/19 maxlen: 19
78.8.0.0/14 maxlen: 14
185.58.162.0/23 maxlen: 23
185.58.160.0/22 maxlen: 22
185.58.160.0/23 maxlen: 23
62.111.128.0/17 maxlen: 17
37.128.0.0/17 maxlen: 17
85.128.0.0/17 maxlen: 17
62.148.64.0/19 maxlen: 19
84.40.128.0/17 maxlen: 17
81.168.128.0/17 maxlen: 17
81.219.0.0/16 maxlen: 16
193.91.16.0/20 maxlen: 20
195.114.160.0/19 maxlen: 19
85.202.54.0/24 maxlen: 24
85.202.59.0/24 maxlen: 24
213.195.128.0/18 maxlen: 18
217.30.128.0/19 maxlen: 19
213.17.128.0/17 maxlen: 17
5.226.92.0/24 maxlen: 24
213.216.64.0/18 maxlen: 18
193.192.173.0/24 maxlen: 24
93.159.0.0/18 maxlen: 18
87.239.216.0/21 maxlen: 22
193.192.181.0/24 maxlen: 24
193.192.190.0/24 maxlen: 24
193.192.188.0/24 maxlen: 24
62.111.250.0/24 maxlen: 24
5.226.64.0/18 maxlen: 18
87.105.0.0/16 maxlen: 16
2001:41b0::/32 maxlen: 48
2001:16b0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 24 Oct 2023 09:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:66:72:b9:4e:3e:86:59:af:b2:05:d5:a8:4d:17:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jul 28 12:08:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c73db008bee305257cae19dd30b3210eec3e215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:44:15:2f:09:4c:6c:0f:ff:4c:65:cd:c5:
84:5f:15:31:29:91:4c:d9:ce:19:fa:86:cf:0a:c5:
d8:99:c1:f6:3f:29:91:04:8f:1e:96:e9:57:c9:3a:
46:c3:20:fd:c6:b7:fb:e5:72:0c:66:d6:a6:4b:8b:
b5:3b:c0:3a:62:f8:f9:62:4a:a1:b3:9a:05:cf:2a:
94:b9:e3:d3:5d:a9:31:4f:2d:df:22:24:27:1f:1c:
46:43:f5:cd:4d:e4:5a:57:14:0d:d9:d4:10:1f:c2:
cc:1c:43:e1:dd:bd:0a:2a:98:8f:19:a5:96:70:40:
d0:58:53:21:bc:4f:02:07:6d:cc:df:ad:c5:f5:37:
c3:4b:cf:d5:37:99:3d:66:dd:af:ad:87:f4:5e:1d:
0c:f3:6c:a1:e0:98:a7:e3:04:d5:a4:6a:20:44:a0:
15:04:f5:0c:98:a1:1a:bd:f2:4b:bb:2e:3b:2a:f8:
55:c5:67:5b:b5:31:1b:f0:74:e1:56:97:03:eb:07:
14:39:a3:7d:2f:4c:d0:e7:e3:95:00:5f:59:9b:cd:
49:39:5f:b2:ef:94:1b:39:ea:44:9a:7c:25:30:f0:
d6:39:55:30:75:db:4c:4c:12:a2:7a:fe:5a:7b:b2:
96:c2:89:f7:af:fb:31:01:5b:9a:cc:fc:29:e0:87:
c7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:73:DB:00:8B:EE:30:52:57:CA:E1:9D:D3:0B:32:10:EE:C3:E2:15
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/PHPbAIvuMFJXyuGd0wsyEO7D4hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.64.0/18
5.226.135.0/24
37.128.0.0/17
62.87.128.0/17
62.89.64.0/18
62.111.128.0/17
62.148.64.0/19
62.181.160.0/19
62.233.128.0/17
62.244.128.0/19
77.65.134.0/24
77.65.155.0/24
77.65.171.0/24
77.65.188.0/24
77.65.193.0/24
77.65.209.0/24
77.252.0.0/14
78.8.0.0/14
81.168.128.0/17
81.210.0.0/17
81.219.0.0/16
82.143.128.0/18
83.238.0.0/16
84.40.128.0/17
85.31.252.0/24
85.128.0.0/17
85.202.54.0/24
85.202.59.0/24
87.105.0.0/16
87.204.0.0/15
87.239.216.0/21
89.171.0.0/16
93.159.0.0/18
93.180.160.0/19
159.205.0.0/16
178.16.116.0/24
178.16.121.0/24
178.16.125.0/24
178.36.0.0/15
185.58.160.0/22
193.19.104.0/23
193.91.16.0/20
193.192.173.0/24
193.192.181.0/24
193.192.188.0/24
193.192.190.0/24
195.114.160.0/19
212.106.0.0/19
213.17.128.0/17
213.134.128.0/19
213.146.32.0/19
213.186.64.0/19
213.195.128.0/18
213.216.64.0/18
213.238.64.0/18
213.241.0.0/17
217.30.128.0/19
IPv6:
2001:16b0::/32
2001:41b0::/32
Signature Algorithm: sha256WithRSAEncryption
10:d6:d4:a2:a9:28:a4:73:66:31:8a:ed:02:bb:19:bd:56:00:
fb:ab:32:4b:b3:2d:22:15:67:8d:2c:7c:33:7c:8b:cd:8f:28:
f6:7e:36:9a:5d:bb:f3:55:8d:38:0f:f3:be:81:a2:aa:7a:7b:
54:ca:26:e9:6e:9d:28:6a:57:e7:96:04:59:10:e7:0f:38:bb:
e5:70:09:aa:a3:6d:98:15:1e:39:c6:f4:91:07:cc:65:8d:09:
ab:bd:a0:98:4b:d3:bd:7a:ee:39:53:3b:c6:43:b1:0f:0b:f1:
8b:d0:a6:58:08:0a:39:0b:1b:02:c4:90:e2:03:af:1d:03:5d:
f6:27:34:0e:86:c5:99:34:fc:91:d3:40:3a:7a:8d:72:17:21:
a4:6c:5b:d4:d5:70:82:02:cd:f2:ff:bf:ff:ca:9b:8d:cb:e3:
d7:22:31:b3:4e:65:03:97:8d:e2:8e:e3:61:08:17:a8:7c:65:
d8:fe:fe:e4:42:9f:f7:1c:07:f1:78:11:7a:95:a5:6b:24:c6:
59:21:90:d6:ac:1a:9c:1a:bf:17:2f:2a:37:c2:73:c7:93:75:
95:47:ed:dd:99:41:71:95:44:a0:f5:da:d9:4b:e3:49:30:72:
8f:24:51:da:a7:ca:14:fd:2f:8a:7c:d9:dd:f4:a7:79:a5:26:
35:2b:29:3b
-----BEGIN CERTIFICATE-----
MIIGZDCCBUygAwIBAgISAYmcZnK5Tj6GWa+yBdWoTRckMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwNzI4MTIwODI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzczZGIwMDhiZWUzMDUyNTdjYWUxOWRkMzBiMzIxMGVlYzNlMjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqalEFS8JTGwP/0xlzcWEXxUxKZFM
2c4Z+obPCsXYmcH2PymRBI8elulXyTpGwyD9xrf75XIMZtamS4u1O8A6Yvj5Ykqh
s5oFzyqUuePTXakxTy3fIiQnHxxGQ/XNTeRaVxQN2dQQH8LMHEPh3b0KKpiPGaWW
cEDQWFMhvE8CB23M363F9TfDS8/VN5k9Zt2vrYf0Xh0M82yh4Jin4wTVpGogRKAV
BPUMmKEavfJLuy47KvhVxWdbtTEb8HThVpcD6wcUOaN9L0zQ5+OVAF9Zm81JOV+y
75QbOepEmnwlMPDWOVUwddtMTBKiev5ae7KWwon3r/sxAVuazPwp4IfHYQIDAQAB
o4IDcDCCA2wwHQYDVR0OBBYEFDxz2wCL7jBSV8rhndMLMhDuw+IVMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvUEhQYkFJdnVNRkpYeXVHZDB3c3lFTzdENGhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBhAYIKwYBBQUHAQcBAf8EggFzMIIBbzCCAVUEAgABMIIB
TQMEBgXiQAMEAAXihwMEByWAAAMEBz5XgAMEBj5ZQAMEBz5vgAMEBT6UQAMEBT61
oAMEBz7pgAMEBT70gAMEAE1BhgMEAE1BmwMEAE1BqwMEAE1BvAMEAE1BwQMEAE1B
0QMDAk38AwMCTggDBAdRqIADBAdR0gADAwBR2wMEBlKPgAMDAFPuAwQHVCiAAwQA
VR/8AwQHVYAAAwQAVco2AwQAVco7AwMAV2kDAwFXzAMEA1fv2AMDAFmrAwQGXZ8A
AwQFXbSgAwMAn80DBACyEHQDBACyEHkDBACyEH0DAwGyJAMEArk6oAMEAcETaAME
BMFbEAMEAMHArQMEAMHAtQMEAMHAvAMEAMHAvgMEBcNyoAMEBdRqAAMEB9URgAME
BdWGgAMEBdWSIAMEBdW6QAMEBtXDgAMEBtXYQAMEBtXuQAMEB9XxAAMEBdkegDAU
BAIAAjAOAwUAIAEWsAMFACABQbAwDQYJKoZIhvcNAQELBQADggEBABDW1KKpKKRz
ZjGK7QK7Gb1WAPurMkuzLSIVZ40sfDN8i82PKPZ+Nppdu/NVjTgP876Boqp6e1TK
JulunShqV+eWBFkQ5w84u+VwCaqjbZgVHjnG9JEHzGWNCau9oJhL07167jlTO8ZD
sQ8L8YvQplgICjkLGwLEkOIDrx0DXfYnNA6GxZk0/JHTQDp6jXIXIaRsW9TVcIIC
zfL/v//Km43L49ciMbNOZQOXjeKO42EIF6h8Zdj+/uRCn/ccB/F4EXqVpWskxlkh
kNasGpwavxcvKjfCc8eTdZVH7d2ZQXGVRKD12tlL40kwco8kUdqnyhT9L4p82d30
p3mlJjUrKTs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org