Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y4MM5jsYz0YcWfMRhM2qmlCBJis.roa
File: Y4MM5jsYz0YcWfMRhM2qmlCBJis.roa (raw, json)
Hash identifier: jfgBWhK6FuI9E38vsi16Q98JsvWlOZn0Hgypa9lqmVI=
Subject key identifier: 63:83:0C:E6:3B:18:CF:46:1C:59:F3:11:84:CD:AA:9A:50:81:26:2B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0188E255DB3D6EA4ED9478480E08845F67D9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y4MM5jsYz0YcWfMRhM2qmlCBJis.roa
Signing time: Thu 22 Jun 2023 09:00:57 +0000
ROA not before: Thu 22 Jun 2023 09:00:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:55:db:3d:6e:a4:ed:94:78:48:0e:08:84:5f:67:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 22 09:00:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63830ce63b18cf461c59f31184cdaa9a5081262b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:69:9e:98:32:4f:af:1a:f4:bf:c1:7a:d0:d2:
90:e3:e4:72:e2:0e:68:64:d4:b5:64:f4:dd:dd:fe:
e6:29:d7:5b:cc:76:72:02:e1:24:91:58:53:f0:67:
ca:ad:b5:da:d8:56:ce:e2:a4:a5:35:1e:75:eb:ef:
5b:bc:cf:bb:7e:83:c6:0c:f1:87:4d:bc:2b:80:25:
e1:b6:cd:b8:98:39:34:db:cc:0f:bb:58:81:2d:20:
65:e8:67:1a:fb:ca:8b:a1:01:d5:80:82:8e:fb:01:
71:6a:cb:f8:95:1d:42:9c:cd:44:7a:22:82:4a:8e:
15:66:fb:2b:ad:76:d9:d3:5b:9b:86:9f:0c:93:ee:
d6:ab:0e:89:47:48:e6:25:d3:04:43:25:0d:66:d5:
cc:fd:9e:7b:79:33:ae:c4:0a:53:77:6c:73:05:9d:
71:6b:6d:5d:9a:f0:75:ff:60:75:cd:e2:bd:ff:5a:
5f:15:ae:ef:6c:d9:7b:a5:56:f9:2d:c9:da:52:38:
48:d9:9f:1e:7e:6d:06:a4:aa:0f:ea:da:c5:42:d9:
bd:0f:a0:1e:0b:aa:97:83:db:51:fc:47:95:1a:7a:
ba:e5:38:fc:ae:b6:65:b0:8d:84:ca:7e:5c:9f:b7:
9d:e7:e7:b2:fa:12:a5:14:b5:d7:65:8a:89:b8:18:
89:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:83:0C:E6:3B:18:CF:46:1C:59:F3:11:84:CD:AA:9A:50:81:26:2B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y4MM5jsYz0YcWfMRhM2qmlCBJis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.184.0/22
45.136.136.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc1::/32
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
8c:2e:9e:1d:2b:40:34:79:d5:82:06:dd:70:08:00:58:f5:4a:
bc:9b:b3:18:2c:c1:4c:9d:08:16:5c:e0:54:68:bd:6d:2c:34:
91:6e:a7:19:3f:25:fc:d4:8a:44:25:05:62:40:5c:63:b2:51:
b1:e5:eb:de:71:fa:4c:0d:b3:70:93:f8:ad:6c:a7:7a:7f:07:
b6:50:79:23:09:24:30:0a:05:ae:7e:e5:57:6c:96:6d:0e:59:
04:01:f9:62:f3:69:5a:e4:0d:c1:c2:f7:4a:24:b7:15:0c:0a:
9c:db:03:eb:55:93:f5:cb:1f:8e:93:f3:a6:7f:7c:a1:4c:ff:
de:37:5c:81:70:3e:7b:33:39:34:4f:b5:ae:7b:2a:76:34:e8:
8d:66:2a:a9:82:d6:88:8a:fa:2e:a2:c9:51:0c:e6:d4:1a:e0:
57:58:e9:44:f8:98:8a:6d:e2:0b:d6:10:b0:7c:6c:f2:8b:49:
53:20:49:07:41:5c:63:3e:19:1d:cd:e3:cc:e7:67:24:c5:dc:
e5:9b:69:70:92:bc:41:a0:f8:0d:b5:4c:5b:4c:c1:50:21:b6:
f6:4e:c8:be:34:1f:ad:4d:85:45:79:a1:fa:d5:99:e8:1a:b0:
bf:fd:7b:d3:ff:8f:2a:67:88:29:08:49:77:b9:01:32:4f:ca:
c8:ab:d2:39
-----BEGIN CERTIFICATE-----
MIIGJjCCBQ6gAwIBAgISAYjiVds9bqTtlHhIDgiEX2fZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNjIyMDkwMDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzgzMGNlNjNiMThjZjQ2MWM1OWYzMTE4NGNkYWE5YTUwODEyNjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWmemDJPrxr0v8F60NKQ4+Ry4g5o
ZNS1ZPTd3f7mKddbzHZyAuEkkVhT8GfKrbXa2FbO4qSlNR516+9bvM+7foPGDPGH
TbwrgCXhts24mDk028wPu1iBLSBl6Gca+8qLoQHVgIKO+wFxasv4lR1CnM1EeiKC
So4VZvsrrXbZ01ubhp8Mk+7Wqw6JR0jmJdMEQyUNZtXM/Z57eTOuxApTd2xzBZ1x
a21dmvB1/2B1zeK9/1pfFa7vbNl7pVb5LcnaUjhI2Z8efm0GpKoP6trFQtm9D6Ae
C6qXg9tR/EeVGnq65Tj8rrZlsI2Eyn5cn7ed5+ey+hKlFLXXZYqJuBiJ2QIDAQAB
o4IDMjCCAy4wHQYDVR0OBBYEFGODDOY7GM9GHFnzEYTNqppQgSYrMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvWTRNTTVqc1l6MFljV2ZNUmhNMnFtbENCSmlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBRgYIKwYBBQUHAQcBAf8EggE1MIIBMTBWBAIAATBQAwQA
Hyq3AwQCLYO4AwQCLYiIAwQBTVEyAwQAVcrLAwQAXrF6AwQCixxgAwQAueh1AwQC
ue68MAwDBADBo1UDBADBo1YDBADCMlwDBADCMl4wgdYEAgACMIHPAwUAKgTMwTAO
AwUAKgTMwwMFAyoEzMADBQMqCQTAMA4DBQcqDDuAAwUAKgw7hgMHACoOl8ABcAMH
BCoOl8AB0AMHBCoOl8ACYAMGACoOl8ECAwcEKg6XwwEQAwcEKg6XxAEAAwcEKg6X
xAEgAwcAKg6xBwnyAwcAKg6xBxFlAwcAKg6xBxeGAwcDKg6xByHAAwcAKg/kBAEC
AwcAKhAvAAGNAwcAKhAvAAGPAwcAKhAvAAGTAwcEKhDMQAJQAwcEKhDMRQEwAwcE
KhDMwAQgMA0GCSqGSIb3DQEBCwUAA4IBAQCMLp4dK0A0edWCBt1wCABY9Uq8m7MY
LMFMnQgWXOBUaL1tLDSRbqcZPyX81IpEJQViQFxjslGx5evecfpMDbNwk/itbKd6
fwe2UHkjCSQwCgWufuVXbJZtDlkEAfli82la5A3BwvdKJLcVDAqc2wPrVZP1yx+O
k/Omf3yhTP/eN1yBcD57Mzk0T7Wueyp2NOiNZiqpgtaIivouoslRDObUGuBXWOlE
+JiKbeIL1hCwfGzyi0lTIEkHQVxjPhkdzePM52ckxdzlm2lwkrxBoPgNtUxbTMFQ
Ibb2Tsi+NB+tTYVFeaH61ZnoGrC//XvT/48qZ4gpCEl3uQEyT8rIq9I5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:00 2023 by rpki-client on console-ams.rpki-client.org