Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/Y5_l6Wfinjz0Kb9qRJh083TEZUQ.roa
File: Y5_l6Wfinjz0Kb9qRJh083TEZUQ.roa (raw, json)
Hash identifier: dgVy4jAkXYMpA/yGMqSCWV1eI2qpe/1GvnAY9FaNywQ=
Subject key identifier: 63:9F:E5:E9:67:E2:9E:3C:F4:29:BF:6A:44:98:74:F3:74:C4:65:44
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 01856C1CAEBB9EC90893751BF0542A66D892
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/Y5_l6Wfinjz0Kb9qRJh083TEZUQ.roa
Signing time: Sun 01 Jan 2023 06:54:57 +0000
ROA not before: Sun 01 Jan 2023 06:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 80.86.192.0/24 maxlen: 24
80.86.199.0/24 maxlen: 24
80.86.196.0/24 maxlen: 24
80.86.198.0/24 maxlen: 24
80.86.193.0/24 maxlen: 24
81.221.251.0/24 maxlen: 24
81.221.250.0/24 maxlen: 24
81.221.253.0/24 maxlen: 24
81.221.252.0/24 maxlen: 24
81.221.254.0/24 maxlen: 24
81.221.255.0/24 maxlen: 24
194.191.17.0/24 maxlen: 24
194.191.16.0/24 maxlen: 24
212.59.186.0/24 maxlen: 24
212.59.184.0/24 maxlen: 24
194.191.24.0/24 maxlen: 24
194.191.21.0/24 maxlen: 24
194.191.20.0/24 maxlen: 24
194.191.19.0/24 maxlen: 24
194.191.18.0/24 maxlen: 24
212.59.189.0/24 maxlen: 24
212.59.188.0/24 maxlen: 24
194.191.26.0/24 maxlen: 24
194.191.25.0/24 maxlen: 24
82.195.224.0/24 maxlen: 24
82.195.226.0/24 maxlen: 24
82.195.225.0/24 maxlen: 24
82.195.227.0/24 maxlen: 24
2a01:2a8:2001::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:ae:bb:9e:c9:08:93:75:1b:f0:54:2a:66:d8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: Jan 1 06:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=639fe5e967e29e3cf429bf6a449874f374c46544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ea:45:e0:2b:ec:86:ea:b8:66:d9:58:66:9a:
1e:81:40:c6:f3:73:28:13:4d:81:74:e2:cd:67:ce:
5c:26:26:0c:38:bc:96:2c:5d:ca:de:4e:f5:9c:96:
2a:4a:53:a1:48:cc:e5:ee:3c:2c:3f:1b:3f:1a:b2:
19:5c:d6:d0:d9:0d:6a:0f:e4:9f:fe:c9:15:f9:57:
5a:7a:50:6c:04:90:7c:13:8f:24:72:9c:99:24:47:
1e:ef:69:be:94:53:34:e7:b4:c7:08:92:4f:c4:7f:
a6:af:b4:17:f9:4e:27:2b:6b:87:fb:9e:0d:92:43:
71:79:47:f3:77:51:bd:b9:0e:46:e7:85:99:4d:48:
e3:15:bc:7f:21:b1:cb:62:6f:df:d0:89:c1:ff:d9:
6e:d0:c4:4b:6b:3c:df:4c:df:45:77:10:d1:93:f2:
ca:dc:d5:d0:22:60:3a:6c:39:26:79:96:95:e5:bb:
38:42:78:b7:3c:5e:4c:ea:ca:ad:b6:74:53:f7:96:
a2:00:6e:1a:e4:f8:31:46:7a:4b:4c:76:57:88:76:
e8:2e:b9:88:58:61:e3:c5:96:cf:e8:a8:63:39:e4:
27:d0:18:9b:b2:ca:d8:b8:56:9a:48:4f:14:43:87:
62:1d:29:88:45:70:cf:e9:24:93:5c:7a:8f:51:24:
8d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9F:E5:E9:67:E2:9E:3C:F4:29:BF:6A:44:98:74:F3:74:C4:65:44
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/Y5_l6Wfinjz0Kb9qRJh083TEZUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.86.192.0/23
80.86.196.0/24
80.86.198.0/23
81.221.250.0-81.221.255.255
82.195.224.0/22
194.191.16.0-194.191.21.255
194.191.24.0-194.191.26.255
212.59.184.0/24
212.59.186.0/24
212.59.188.0/23
IPv6:
2a01:2a8:2001::/48
Signature Algorithm: sha256WithRSAEncryption
c5:3f:49:fc:c6:7d:a7:c0:c4:a6:06:54:56:e9:8e:00:3e:fc:
a1:6b:4e:d1:7c:25:d7:c7:63:33:30:55:c0:27:32:c0:20:29:
c3:99:f2:1d:21:ac:c2:75:f1:b4:8a:f6:53:1f:9e:e8:c2:1f:
94:27:3a:32:cb:38:4a:16:53:1b:d0:2a:e3:a1:3c:50:8f:22:
f2:8f:09:44:6b:07:61:6c:44:95:6d:cc:33:6d:ee:82:17:7c:
3c:4d:41:fe:ad:84:ee:5a:b2:bf:9e:f5:51:4c:7b:c9:ed:f7:
aa:86:03:6d:7d:62:08:8c:98:43:6b:c9:77:5e:8c:52:51:6f:
6e:0e:36:8d:dd:60:45:fd:2c:c1:9f:ae:2b:1d:0f:22:ad:d7:
83:55:ba:43:2c:73:0c:5d:75:25:2f:bd:5a:6b:ff:80:57:75:
b3:ce:f8:22:86:e4:a0:4e:5e:7c:98:61:ed:1c:a6:e9:1b:5f:
fd:a8:34:12:b9:f8:e2:03:d5:82:4c:d2:bc:b1:0d:c2:cb:7a:
ec:e3:74:41:47:04:db:f3:e3:86:25:69:cb:cc:e1:4a:f1:80:
f0:a7:5d:83:d0:45:dc:c0:0e:06:bf:61:34:37:69:36:c8:91:
52:50:30:82:02:ed:51:ab:b3:de:0a:a5:53:d5:e5:26:2e:a1:
ee:c0:1c:de
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgISAYVsHK67nskIk3Ub8FQqZtiSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NGM2NzA2ZTNmYmViZGZmMTQ2YThhMTRlYzJhMzI4NGE5
MmJhNjIwHhcNMjMwMTAxMDY1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzlmZTVlOTY3ZTI5ZTNjZjQyOWJmNmE0NDk4NzRmMzc0YzQ2NTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOpF4Cvshuq4ZtlYZpoegUDG83Mo
E02BdOLNZ85cJiYMOLyWLF3K3k71nJYqSlOhSMzl7jwsPxs/GrIZXNbQ2Q1qD+Sf
/skV+VdaelBsBJB8E48kcpyZJEce72m+lFM057THCJJPxH+mr7QX+U4nK2uH+54N
kkNxeUfzd1G9uQ5G54WZTUjjFbx/IbHLYm/f0InB/9lu0MRLazzfTN9FdxDRk/LK
3NXQImA6bDkmeZaV5bs4Qni3PF5M6sqttnRT95aiAG4a5PgxRnpLTHZXiHboLrmI
WGHjxZbP6KhjOeQn0BibssrYuFaaSE8UQ4diHSmIRXDP6SSTXHqPUSSNkQIDAQAB
o4ICZzCCAmMwHQYDVR0OBBYEFGOf5eln4p489Cm/akSYdPN0xGVEMB8GA1UdIwQY
MBaAFKdMZwbj++vf8UaooU7CoyhKkrpiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDB4bkJ1UDc2OV94UnFpaFRzS2pLRXFTdW1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9hMGM0NDQtOTc5Ni00ZjA2LTgzZjIt
YWE3ODhhNDIwYWVjLzEvWTVfbDZXZmluanowS2I5cVJKaDA4M1RFWlVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9hMGM0NDQtOTc5Ni00ZjA2LTgzZjItYWE3ODhhNDIwYWVj
LzEvcDB4bkJ1UDc2OV94UnFpaFRzS2pLRXFTdW1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDBZBAIAATBTAwQBUFbAAwQA
UFbEAwQBUFbGMAsDBAFR3foDAwFR3AMEAlLD4DAMAwQEwr8QAwQBwr8UMAwDBAPC
vxgDBADCvxoDBADUO7gDBADUO7oDBAHUO7wwDwQCAAIwCQMHACoBAqggATANBgkq
hkiG9w0BAQsFAAOCAQEAxT9J/MZ9p8DEpgZUVumOAD78oWtO0Xwl18djMzBVwCcy
wCApw5nyHSGswnXxtIr2Ux+e6MIflCc6Mss4ShZTG9Aq46E8UI8i8o8JRGsHYWxE
lW3MM23ughd8PE1B/q2E7lqyv571UUx7ye33qoYDbX1iCIyYQ2vJd16MUlFvbg42
jd1gRf0swZ+uKx0PIq3Xg1W6QyxzDF11JS+9Wmv/gFd1s874IobkoE5efJhh7Rym
6Rtf/ag0Ern44gPVgkzSvLENwst67ON0QUcE2/PjhiVpy8zhSvGA8Kddg9BF3MAO
Br9hNDdpNsiRUlAwggLtUauz3gqlU9XlJi6h7sAc3g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:48 2023 by rpki-client on console-ams.rpki-client.org