Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/svDeaL_tX_FG6jetjAp8avPloTA.roa
File: svDeaL_tX_FG6jetjAp8avPloTA.roa (raw, json)
Hash identifier: Hz34dLX5G8sjuxewbm+gh2qMFcVL5OxLwsObp45fDzg=
Subject key identifier: B2:F0:DE:68:BF:ED:5F:F1:46:EA:37:AD:8C:0A:7C:6A:F3:E5:A1:30
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0186273C040A49BBD075A36205E53BA6BF2E
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/svDeaL_tX_FG6jetjAp8avPloTA.roa
Signing time: Mon 06 Feb 2023 14:58:10 +0000
ROA not before: Mon 06 Feb 2023 14:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:27:3c:04:0a:49:bb:d0:75:a3:62:05:e5:3b:a6:bf:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Feb 6 14:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2f0de68bfed5ff146ea37ad8c0a7c6af3e5a130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:30:9e:86:56:07:55:ef:b3:a1:70:16:30:d8:
02:ab:06:05:a8:4b:9e:fd:2d:bb:6a:29:f1:d7:30:
b8:7e:fb:9b:76:5e:d2:c9:91:c7:2c:69:bb:30:15:
f3:31:f4:90:d7:6e:21:7d:05:7d:7b:10:e8:98:04:
c7:98:c6:bf:7d:b9:4c:e2:8d:9f:fa:e5:36:f0:cd:
98:5a:7f:d8:69:56:a8:fa:ff:3b:fa:5a:37:b6:f6:
95:5e:29:6f:5d:52:9b:16:91:8b:9f:57:0a:a1:05:
be:67:42:8b:da:88:90:90:ab:f8:f5:0f:a9:34:2b:
80:1f:9c:8b:90:4f:39:52:94:3c:d5:db:b1:10:ba:
0b:98:8c:4e:a4:59:d4:ab:c0:3e:7a:51:ef:72:d8:
0b:ea:63:10:72:a4:13:4c:12:09:0c:d0:26:39:04:
40:d1:dc:6e:5e:d8:e5:8d:90:3d:4c:ca:3e:0c:76:
6e:6e:dc:f3:d6:b2:05:c7:5c:dc:a5:cb:1d:dd:16:
9e:50:22:31:15:d7:d1:6f:7c:63:ea:ec:47:c2:fa:
05:c5:7b:11:05:22:7e:ca:66:fb:7d:22:1f:e7:a8:
0a:c1:54:e5:a3:d2:0c:a7:11:16:04:b8:b8:86:45:
33:3b:2c:17:b0:2f:8b:82:53:6c:96:41:30:5a:e7:
1f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F0:DE:68:BF:ED:5F:F1:46:EA:37:AD:8C:0A:7C:6A:F3:E5:A1:30
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/svDeaL_tX_FG6jetjAp8avPloTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.153.0-45.87.154.255
45.89.52.0/24
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
193.46.56.0/23
193.57.136.0-193.57.138.255
194.4.48.0/22
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
53:bc:90:84:ca:e1:de:95:97:4e:9f:08:b6:c7:b9:a2:5a:1a:
01:00:5d:6d:66:46:52:21:ea:21:fd:72:1e:09:03:d7:cf:17:
4b:36:fc:29:dd:31:d4:b6:9a:3e:e2:02:29:46:83:22:f0:99:
f2:ac:8e:61:ef:c5:32:16:af:d2:64:24:c1:66:74:be:2f:f8:
9d:fe:f4:a7:56:fc:34:15:64:66:10:97:5b:14:b9:8d:2f:79:
39:da:46:83:25:0c:5f:bd:b1:e6:39:18:51:2e:86:46:cf:4b:
fc:cc:df:1c:bb:56:14:e8:c8:d0:d1:db:fc:93:b7:e2:8a:c3:
93:06:26:3c:e8:fd:0e:55:1e:77:4f:60:72:a7:09:32:e2:b2:
bf:01:e8:69:db:a3:39:51:02:ab:26:96:f4:9c:30:0c:eb:86:
0a:50:a1:b7:54:6d:d9:2f:0a:53:e8:b4:c4:e0:f9:b4:69:f5:
04:1e:81:58:89:82:1d:a3:06:be:f4:af:17:50:48:91:1b:85:
63:5c:a7:35:79:f1:cc:2f:cd:d3:e6:2b:69:f8:22:56:7e:58:
0d:df:95:33:11:6c:25:86:b3:16:11:df:7b:e5:86:32:a4:b3:
9a:7b:40:25:5b:a9:bc:0d:aa:58:a8:3d:31:52:11:6f:d9:01:
34:a2:18:30
-----BEGIN CERTIFICATE-----
MIIFYjCCBEqgAwIBAgISAYYnPAQKSbvQdaNiBeU7pr8uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm
MWM3ZTgwHhcNMjMwMjA2MTQ1ODEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmYwZGU2OGJmZWQ1ZmYxNDZlYTM3YWQ4YzBhN2M2YWYzZTVhMTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjCehlYHVe+zoXAWMNgCqwYFqEue
/S27ainx1zC4fvubdl7SyZHHLGm7MBXzMfSQ124hfQV9exDomATHmMa/fblM4o2f
+uU28M2YWn/YaVao+v87+lo3tvaVXilvXVKbFpGLn1cKoQW+Z0KL2oiQkKv49Q+p
NCuAH5yLkE85UpQ81duxELoLmIxOpFnUq8A+elHvctgL6mMQcqQTTBIJDNAmOQRA
0dxuXtjljZA9TMo+DHZubtzz1rIFx1zcpcsd3RaeUCIxFdfRb3xj6uxHwvoFxXsR
BSJ+ymb7fSIf56gKwVTlo9IMpxEWBLi4hkUzOywXsC+LglNslkEwWucfEQIDAQAB
o4ICbjCCAmowHQYDVR0OBBYEFLLw3mi/7V/xRuo3rYwKfGrz5aEwMB8GA1UdIwQY
MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt
ZWU3NDY1NzU0ZmY2LzEvc3ZEZWFMX3RYX0ZHNmpldGpBcDhhdlBsb1RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2
LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGDBggrBgEFBQcBBwEB/wR0MHIwcAQCAAEwagMEAAW2JAME
AAW2JwMEAS0IkAMEAC1DIwMEAS1UADAMAwQALVeZAwQALVeaAwQALVk0AwQCLZ/4
AwQAXbmmAwQAjWKpAwQCuefMAwQBwS44MAwDBAPBOYgDBADBOYoDBALCBDADBAHC
dL4wDQYJKoZIhvcNAQELBQADggEBAFO8kITK4d6Vl06fCLbHuaJaGgEAXW1mRlIh
6iH9ch4JA9fPF0s2/CndMdS2mj7iAilGgyLwmfKsjmHvxTIWr9JkJMFmdL4v+J3+
9KdW/DQVZGYQl1sUuY0veTnaRoMlDF+9seY5GFEuhkbPS/zM3xy7VhToyNDR2/yT
t+KKw5MGJjzo/Q5VHndPYHKnCTLisr8B6GnbozlRAqsmlvScMAzrhgpQobdUbdkv
ClPotMTg+bRp9QQegViJgh2jBr70rxdQSJEbhWNcpzV58cwvzdPmK2n4IlZ+WA3f
lTMRbCWGsxYR33vlhjKks5p7QCVbqbwNqlioPTFSEW/ZATSiGDA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org