Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KPLEjcaLLm0w7rgno_hwmhsjWGM.roa
File: KPLEjcaLLm0w7rgno_hwmhsjWGM.roa (raw, json)
Hash identifier: RasJdRI/Uifw7vNzzFc1LRcdblxo6/mj2qVWtztVWOs=
Subject key identifier: 28:F2:C4:8D:C6:8B:2E:6D:30:EE:B8:27:A3:F8:70:9A:1B:23:58:63
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01891F70C21DD29B45E32C644074B6A082FF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KPLEjcaLLm0w7rgno_hwmhsjWGM.roa
Signing time: Tue 04 Jul 2023 05:47:10 +0000
ROA not before: Tue 04 Jul 2023 05:47:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1f:70:c2:1d:d2:9b:45:e3:2c:64:40:74:b6:a0:82:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 4 05:47:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28f2c48dc68b2e6d30eeb827a3f8709a1b235863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:24:64:ad:91:fa:cc:4a:aa:37:c8:6a:cf:e0:
6b:78:64:16:c2:2c:5e:87:5c:ae:fb:2e:d0:7e:4c:
20:df:46:aa:dc:e5:f4:b7:3b:bd:21:16:10:e4:dd:
d9:77:d9:af:fa:1d:6a:9d:8e:9e:43:41:ab:7f:1a:
f8:17:39:18:bd:e9:2b:0f:cb:a9:56:e9:0a:79:11:
41:67:4e:d0:b1:6a:ec:61:f5:4f:8c:b6:0f:50:03:
2d:cb:3e:60:a5:4d:9f:66:5c:36:08:b7:64:45:a9:
19:d9:7e:2f:1a:87:76:4d:09:e0:85:c3:f6:4c:f5:
a8:7b:cf:c9:e6:08:21:83:98:ff:d6:e2:b6:ea:1f:
45:e9:e2:90:fb:13:89:a3:9d:ba:b2:71:f7:e3:5b:
0f:bf:3e:ff:2b:d7:b5:89:d9:ba:c5:17:7d:c4:a3:
ae:fa:87:f7:ef:6a:83:53:92:8f:a8:c7:c2:3e:8c:
4b:4d:0d:a8:1e:c0:32:89:e6:b6:85:ca:e3:8d:19:
93:09:a2:41:90:47:68:2b:86:61:5f:39:3e:d7:9b:
80:71:00:f5:72:ef:27:91:e7:db:a3:8d:7c:08:62:
6b:fd:be:b4:39:93:fe:ec:aa:69:57:3f:16:50:b3:
b3:12:a2:7b:d8:bb:0a:98:37:fe:47:86:1c:0e:32:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F2:C4:8D:C6:8B:2E:6D:30:EE:B8:27:A3:F8:70:9A:1B:23:58:63
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/KPLEjcaLLm0w7rgno_hwmhsjWGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
92:99:30:2c:c6:6b:4e:8f:e8:ee:a8:cf:e7:bb:c9:b9:6d:99:
e3:84:f0:0f:9c:fb:7e:26:c2:53:a7:39:f4:8e:72:2e:c8:66:
c7:b5:37:63:3b:ae:e2:8b:c9:1d:86:b6:54:05:f9:12:4b:bd:
34:a8:cd:18:4b:e0:d8:62:e4:82:e5:10:51:fb:a7:0d:76:0e:
73:d3:95:c4:47:cc:df:a8:ca:21:1b:9d:38:3c:57:80:5d:ea:
e1:f9:7d:85:0c:14:45:a2:30:cc:a8:30:c0:04:56:b0:cf:ff:
1d:4d:21:2d:54:61:be:d4:53:5c:ba:89:c2:1b:e8:3c:0a:2d:
a6:08:52:70:48:87:53:85:27:86:e0:d1:d8:56:d9:ee:42:4e:
15:58:b5:22:fa:9d:92:bb:bf:ae:a6:9f:55:b3:cd:65:20:92:
94:8e:44:a0:53:74:38:9b:6e:3a:87:a7:65:3f:27:96:bb:28:
60:a5:05:da:d8:78:0c:f5:4b:7a:3c:11:be:aa:62:b8:87:50:
35:3c:52:9d:47:69:72:45:15:06:f7:c0:a8:76:42:72:89:06:
9a:14:ff:e0:03:17:ca:f5:8d:2f:15:6d:50:2b:76:e1:f3:f2:
ad:8b:b2:58:d3:57:d3:83:13:15:6a:d7:db:b6:5d:70:e0:f5:
70:d8:c8:c7
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgISAYkfcMId0ptF4yxkQHS2oIL/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNzA0MDU0NzEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGYyYzQ4ZGM2OGIyZTZkMzBlZWI4MjdhM2Y4NzA5YTFiMjM1ODYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgyRkrZH6zEqqN8hqz+BreGQWwixe
h1yu+y7Qfkwg30aq3OX0tzu9IRYQ5N3Zd9mv+h1qnY6eQ0Grfxr4FzkYvekrD8up
VukKeRFBZ07QsWrsYfVPjLYPUAMtyz5gpU2fZlw2CLdkRakZ2X4vGod2TQnghcP2
TPWoe8/J5gghg5j/1uK26h9F6eKQ+xOJo526snH341sPvz7/K9e1idm6xRd9xKOu
+of372qDU5KPqMfCPoxLTQ2oHsAyiea2hcrjjRmTCaJBkEdoK4ZhXzk+15uAcQD1
cu8nkefbo418CGJr/b60OZP+7KppVz8WULOzEqJ72LsKmDf+R4YcDjJ8GwIDAQAB
o4IDPTCCAzkwHQYDVR0OBBYEFCjyxI3Giy5tMO64J6P4cJobI1hjMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvS1BMRWpjYUxMbTB3N3Jnbm9faHdtaHNqV0dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBUQYIKwYBBQUHAQcBAf8EggFAMIIBPDBWBAIAATBQAwQA
Hyq3AwQCLYO4AwQCLYiIAwQCLZR0AwQBTVEyAwQAVcrLAwQAXrF6AwQAueh1AwQC
ue68MAwDBADBo1UDBADBo1YDBADCMlwDBADCMl4wgeEEAgACMIHaMBADBwAqBMzA
//8DBQEqBMzAMA4DBQAqBMzDAwUDKgTMwAMFAyoJBMAwDgMFByoMO4ADBQAqDDuG
AwcAKg6XwAFwAwcEKg6XwAHQAwcEKg6XwAJgAwYAKg6XwQIDBwQqDpfDARADBwQq
DpfEAQADBwQqDpfEASADBwAqDrEHCfIDBwAqDrEHEWUDBwAqDrEHF4YDBwMqDrEH
IcADBwAqD+QEAQIDBwAqEC8AAY0DBwAqEC8AAY8DBwAqEC8AAZMDBwQqEMxAAlAD
BwQqEMxFATADBwQqEMzABCAwDQYJKoZIhvcNAQELBQADggEBAJKZMCzGa06P6O6o
z+e7ybltmeOE8A+c+34mwlOnOfSOci7IZse1N2M7ruKLyR2GtlQF+RJLvTSozRhL
4Nhi5ILlEFH7pw12DnPTlcRHzN+oyiEbnTg8V4Bd6uH5fYUMFEWiMMyoMMAEVrDP
/x1NIS1UYb7UU1y6icIb6DwKLaYIUnBIh1OFJ4bg0dhW2e5CThVYtSL6nZK7v66m
n1WzzWUgkpSORKBTdDibbjqHp2U/J5a7KGClBdrYeAz1S3o8Eb6qYriHUDU8Up1H
aXJFFQb3wKh2QnKJBpoU/+ADF8r1jS8VbVArduHz8q2LsljTV9ODExVq19u2XXDg
9XDYyMc=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:58 2023 by rpki-client on console-ams.rpki-client.org