Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n9opEIF40XF6Zc04o1iGdDYRHmQ.roa
File: n9opEIF40XF6Zc04o1iGdDYRHmQ.roa (raw, json)
Hash identifier: L9tLFFzre4cg/v7+a1s4xpZ9YmJRWLDjCMEIueiApJM=
Subject key identifier: 9F:DA:29:10:81:78:D1:71:7A:65:CD:38:A3:58:86:74:36:11:1E:64
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BDC6534ACCD1044D3AF5264F7F4445E66
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n9opEIF40XF6Zc04o1iGdDYRHmQ.roa
Signing time: Fri 17 Nov 2023 08:28:21 +0000
ROA not before: Fri 17 Nov 2023 08:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
194.50.111.0/24 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:65:34:ac:cd:10:44:d3:af:52:64:f7:f4:44:5e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 17 08:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fda29108178d1717a65cd38a358867436111e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:22:7a:e7:4a:a8:96:55:46:f9:a9:38:bf:fe:
aa:95:f4:0e:70:90:91:17:42:2a:0d:68:59:41:2a:
ff:6f:27:41:9e:b5:77:32:be:39:a2:16:11:20:09:
a9:04:94:5f:4b:78:30:c2:99:8b:3f:dc:c4:45:26:
a3:c9:0a:eb:e7:91:dc:64:f0:d8:ff:8b:c7:2e:29:
bf:57:59:b5:10:c2:61:ea:e2:87:88:ac:85:23:e2:
7f:80:b1:9e:49:c7:53:d4:e3:97:22:d7:33:c8:77:
ed:42:19:06:38:bf:65:b0:b6:fb:db:31:a8:7a:42:
6a:cb:1e:49:06:de:23:d9:46:a3:b4:a8:c4:37:cb:
f7:0c:c2:04:30:c2:d4:dd:ce:bb:ad:f9:e7:bc:14:
b5:ff:7c:a8:eb:12:31:2b:7b:55:39:7b:55:33:c1:
a5:95:fe:65:8f:c5:88:53:62:d8:c8:36:5b:fe:84:
5a:ba:4a:5d:b6:2b:a6:31:d6:f0:a0:02:7c:bc:e6:
9e:15:69:63:5d:14:48:18:f4:3b:f2:03:da:47:f7:
c7:c0:90:cd:39:24:b2:fe:dc:99:23:20:92:82:60:
55:88:85:97:02:2a:c5:99:c9:85:31:10:31:c5:83:
6d:09:1e:12:1a:21:ad:65:7f:b6:f6:e9:94:11:d0:
47:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DA:29:10:81:78:D1:71:7A:65:CD:38:A3:58:86:74:36:11:1E:64
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/n9opEIF40XF6Zc04o1iGdDYRHmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
194.50.111.0/24
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
36:71:c2:d1:6a:54:94:8c:19:12:95:c5:a1:fe:c2:7d:42:aa:
e4:1b:f4:85:09:5b:ca:80:d9:5a:52:b3:a6:85:59:69:d2:29:
96:5f:66:ed:6f:e3:d6:91:4a:04:74:5a:e8:bd:82:1a:f1:88:
b5:20:83:2e:b7:a7:27:e6:a4:04:06:3b:91:1c:26:0b:cf:67:
95:a0:bf:9c:8f:d0:09:78:3e:62:ca:52:bd:a7:d3:75:a1:eb:
ab:74:79:53:08:d5:e7:8c:f4:43:15:23:aa:91:82:73:14:ca:
42:de:ac:08:bd:b5:fb:1d:d4:bc:03:75:48:a1:09:a6:a7:ad:
4b:f1:2f:2c:b9:84:a1:70:29:eb:f4:58:a6:76:2e:d5:40:1f:
48:4a:c2:3a:7b:de:6c:ad:ec:6d:a2:73:25:2a:cf:0c:38:90:
0a:bb:d6:45:04:a4:61:ee:a1:32:51:23:bc:0a:7a:eb:44:ae:
70:9c:ad:e9:92:54:61:c8:20:f6:4b:3b:58:78:c6:0a:0a:80:
6f:78:ee:3c:0d:87:d5:03:ab:1f:fe:e3:e5:56:06:9c:c6:4f:
64:30:da:83:a5:fe:a9:91:ed:72:47:7f:63:81:02:94:03:5e:
18:62:18:34:77:ae:30:f5:84:ed:cf:b9:cc:6f:8c:63:53:1c:
9f:ac:cb:10
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgISAYvcZTSszRBE069SZPf0RF5mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMTE3MDgyODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmRhMjkxMDgxNzhkMTcxN2E2NWNkMzhhMzU4ODY3NDM2MTExZTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiJ650qollVG+ak4v/6qlfQOcJCR
F0IqDWhZQSr/bydBnrV3Mr45ohYRIAmpBJRfS3gwwpmLP9zERSajyQrr55HcZPDY
/4vHLim/V1m1EMJh6uKHiKyFI+J/gLGeScdT1OOXItczyHftQhkGOL9lsLb72zGo
ekJqyx5JBt4j2UajtKjEN8v3DMIEMMLU3c67rfnnvBS1/3yo6xIxK3tVOXtVM8Gl
lf5lj8WIU2LYyDZb/oRaukpdtiumMdbwoAJ8vOaeFWljXRRIGPQ78gPaR/fHwJDN
OSSy/tyZIyCSgmBViIWXAirFmcmFMRAxxYNtCR4SGiGtZX+29umUEdBHWQIDAQAB
o4ICojCCAp4wHQYDVR0OBBYEFJ/aKRCBeNFxemXNOKNYhnQ2ER5kMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvbjlvcEVJRjQwWEY2WmMwNG8xaUdkRFlSSG1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDASBAIAATAMAwQCLZR0
AwQAwjJvMIGNBAIAAjCBhgMGACoMO4f/AwcAKg6XwAdQAwcAKg6XwAdvMBIDBwAq
DpfAB5EDBwAqDpfAB5IDBgIqDpfErAMHACoOsQcJ9AMHACoOsQcJ9gMHACoOsQcN
8gMHACoOsQcYcAMHACoOsQcbngMHACoOsQcniwMHBCoQzMABEAMHACoQzMPMzgMG
AioQzMeQMA0GCSqGSIb3DQEBCwUAA4IBAQA2ccLRalSUjBkSlcWh/sJ9QqrkG/SF
CVvKgNlaUrOmhVlp0imWX2btb+PWkUoEdFrovYIa8Yi1IIMut6cn5qQEBjuRHCYL
z2eVoL+cj9AJeD5iylK9p9N1oeurdHlTCNXnjPRDFSOqkYJzFMpC3qwIvbX7HdS8
A3VIoQmmp61L8S8suYShcCnr9Fimdi7VQB9ISsI6e95srextonMlKs8MOJAKu9ZF
BKRh7qEyUSO8CnrrRK5wnK3pklRhyCD2SztYeMYKCoBveO48DYfVA6sf/uPlVgac
xk9kMNqDpf6pke1yR39jgQKUA14YYhg0d64w9YTtz7nMb4xjUxyfrMsQ
-----END CERTIFICATE-----
Generated at Mon Nov 20 10:47:55 2023 by rpki-client on console-ams.rpki-client.org