Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/v-q9jlQWpm7n2xvxI5w9mHO8zt4.roa
File: v-q9jlQWpm7n2xvxI5w9mHO8zt4.roa (raw, json)
Hash identifier: +ZLFEe93vemq3oUQVj2aZwNpafLT1GIAO5xc5K0oPMQ=
Subject key identifier: BF:EA:BD:8E:54:16:A6:6E:E7:DB:1B:F1:23:9C:3D:98:73:BC:CE:DE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B70E9DD325430A9C8FEBCF26EA33ADD8D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/v-q9jlQWpm7n2xvxI5w9mHO8zt4.roa
Signing time: Fri 27 Oct 2023 11:34:16 +0000
ROA not before: Fri 27 Oct 2023 11:34:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
93.88.200.0/21 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
109.61.104.0/21 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:2220::/45 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a0e:b107:2228::/45 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:e9:dd:32:54:30:a9:c8:fe:bc:f2:6e:a3:3a:dd:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 27 11:34:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfeabd8e5416a66ee7db1bf1239c3d9873bccede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6c:ea:7e:da:fd:9f:03:21:e8:b7:19:d2:05:
e7:cb:49:d8:50:53:a3:b0:20:f9:35:df:96:c4:4c:
dc:eb:8e:64:d1:f7:d6:54:65:bd:df:72:5e:32:2e:
d4:fc:92:49:7d:d1:e7:9c:22:77:77:52:62:91:c9:
a2:97:84:51:3e:d0:e6:e4:40:2c:8c:f3:c5:e9:e6:
10:7c:2d:a1:b1:88:80:16:96:22:0f:6d:34:f7:e6:
d8:78:6a:2d:d7:45:55:47:7f:de:af:13:1d:dc:f4:
1c:5f:a7:f0:08:45:bb:65:90:9a:9f:82:f8:11:3e:
49:f2:19:74:7c:06:7c:40:f6:ea:0e:67:ea:b9:17:
9b:a2:03:3e:8e:eb:68:58:d9:b4:af:96:ba:43:3a:
f7:34:45:bf:ee:d0:35:a9:4e:a3:7c:c2:1e:71:4c:
e8:42:e2:95:bf:2f:07:42:89:4c:ff:da:62:5d:ad:
88:9d:3e:66:c2:8b:1f:0d:d8:3e:36:d4:e8:fc:83:
3b:3c:ad:0e:1d:e1:13:d4:48:48:32:14:39:ef:30:
46:96:41:32:c9:f4:1b:df:0c:da:ee:c0:60:40:20:
e0:8a:78:06:70:b0:5d:c1:e7:ca:c7:8b:e8:22:d3:
92:c8:58:02:ec:4e:bf:05:06:21:cf:c9:4b:be:76:
f0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:EA:BD:8E:54:16:A6:6E:E7:DB:1B:F1:23:9C:3D:98:73:BC:CE:DE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/v-q9jlQWpm7n2xvxI5w9mHO8zt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
93.88.200.0/21
94.177.122.0/24
109.61.104.0/21
139.28.96.0/22
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0e:b107:2220::/44
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
41:c4:62:83:21:3d:a8:1b:54:07:c8:04:ad:c5:e1:1e:9a:ba:
6e:6c:81:68:bf:e0:bf:27:0c:17:48:0c:2d:de:37:d4:10:8c:
06:a7:de:75:45:51:0a:ba:85:73:9f:30:43:a7:79:e9:d3:81:
e4:17:53:c1:59:ea:d8:cb:9d:11:bd:3b:74:44:5c:fc:5e:9e:
24:26:aa:e9:95:08:6e:92:ec:a6:19:2d:e4:bb:08:18:3c:39:
a5:dc:63:17:04:6b:66:8b:98:31:c2:de:2a:5f:3c:94:e3:73:
db:46:02:70:80:22:b9:fe:02:b2:fd:1e:5b:5b:61:6c:ad:a5:
6c:46:fc:2c:c0:5a:ad:2d:25:47:11:a4:3e:cc:49:33:07:49:
b5:ea:62:c2:a8:e6:d2:a6:5e:7d:21:49:34:c6:cc:c0:9e:cd:
f9:2e:c3:75:84:27:b4:b4:ed:7d:7c:1d:e7:1e:75:23:79:62:
8b:0b:d5:12:31:80:f7:e8:98:02:96:71:d0:ee:bc:a2:53:29:
58:59:ac:f1:a4:91:d3:b7:6d:f9:f4:d3:54:4c:b1:c5:d5:3b:
f6:8f:10:e8:a4:a0:c8:f2:93:e4:17:30:a6:3f:80:28:fa:46:
75:51:77:6f:aa:ca:75:a6:19:16:db:59:81:1b:76:d1:a9:90:
ce:a2:d5:fe
-----BEGIN CERTIFICATE-----
MIIGUjCCBTqgAwIBAgISAYtw6d0yVDCpyP688m6jOt2NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMDI3MTEzNDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmVhYmQ4ZTU0MTZhNjZlZTdkYjFiZjEyMzljM2Q5ODczYmNjZWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWzqftr9nwMh6LcZ0gXny0nYUFOj
sCD5Nd+WxEzc645k0ffWVGW933JeMi7U/JJJfdHnnCJ3d1Jikcmil4RRPtDm5EAs
jPPF6eYQfC2hsYiAFpYiD2009+bYeGot10VVR3/erxMd3PQcX6fwCEW7ZZCan4L4
ET5J8hl0fAZ8QPbqDmfquRebogM+jutoWNm0r5a6Qzr3NEW/7tA1qU6jfMIecUzo
QuKVvy8HQolM/9piXa2InT5mwosfDdg+NtTo/IM7PK0OHeET1EhIMhQ57zBGlkEy
yfQb3wza7sBgQCDgingGcLBdwefKx4voItOSyFgC7E6/BQYhz8lLvnbwkwIDAQAB
o4IDXjCCA1owHQYDVR0OBBYEFL/qvY5UFqZu59sb8SOcPZhzvM7eMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvdi1xOWpsUVdwbTduMnh2eEk1dzltSE84enQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBcgYIKwYBBQUHAQcBAf8EggFhMIIBXTBuBAIAATBoAwQA
Hyq3AwQCLQxEAwQCLYO4AwQCLYiIAwQCLZR0AwQBTVEyAwQAVcrLAwQDXVjIAwQA
XrF6AwQDbT1oAwQCixxgAwQAueh1MAwDBADBo1UDBADBo1YDBADCMlwDBADCMl4D
BADCMm8wgeoEAgACMIHjMBADBwAqBMzA//8DBQEqBMzAMA4DBQAqBMzDAwUDKgTM
wAMFAyoJBMAwDgMFByoMO4ADBQAqDDuGAwcAKg6XwAFwAwcEKg6XwAHQAwcEKg6X
wAJgAwYAKg6XwQIDBwQqDpfDARADBwQqDpfEAQADBwQqDpfEASADBwAqDrEHCfID
BwAqDrEHEWUDBwAqDrEHF4YDBwMqDrEHIcADBwQqDrEHIiADBwAqD+QEAQIDBwAq
EC8AAY0DBwAqEC8AAY8DBwAqEC8AAZMDBwQqEMxAAlADBwQqEMxFATADBwQqEMzA
BCAwDQYJKoZIhvcNAQELBQADggEBAEHEYoMhPagbVAfIBK3F4R6aum5sgWi/4L8n
DBdIDC3eN9QQjAan3nVFUQq6hXOfMEOneenTgeQXU8FZ6tjLnRG9O3REXPxeniQm
qumVCG6S7KYZLeS7CBg8OaXcYxcEa2aLmDHC3ipfPJTjc9tGAnCAIrn+ArL9Hltb
YWytpWxG/CzAWq0tJUcRpD7MSTMHSbXqYsKo5tKmXn0hSTTGzMCezfkuw3WEJ7S0
7X18HecedSN5YosL1RIxgPfomAKWcdDuvKJTKVhZrPGkkdO3bfn001RMscXVO/aP
EOikoMjyk+QXMKY/gCj6RnVRd2+qynWmGRbbWYEbdtGpkM6i1f4=
-----END CERTIFICATE-----
Generated at Tue Nov 7 21:00:21 2023 by rpki-client on console-ams.rpki-client.org