Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/riEPrEFwzmQNa9Aso4Wzy3RZo_Q.roa
File: riEPrEFwzmQNa9Aso4Wzy3RZo_Q.roa (raw, json)
Hash identifier: +rw1HZKYXXMSQCQ/VfcPqT16xYKfXl2XSUsCNacNybg=
Subject key identifier: AE:21:0F:AC:41:70:CE:64:0D:6B:D0:2C:A3:85:B3:CB:74:59:A3:F4
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018B7B0E49D284FE8FC24EE62CFDE66B76DF
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/riEPrEFwzmQNa9Aso4Wzy3RZo_Q.roa
Signing time: Sun 29 Oct 2023 10:50:15 +0000
ROA not before: Sun 29 Oct 2023 10:50:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25003
IP address blocks: 94.188.130.0/23 maxlen: 23
94.188.128.0/17 maxlen: 17
94.188.128.0/22 maxlen: 22
94.188.138.0/23 maxlen: 23
94.188.133.0/24 maxlen: 24
94.188.140.0/24 maxlen: 24
94.188.152.0/22 maxlen: 22
94.188.158.0/24 maxlen: 24
94.188.155.0/24 maxlen: 24
91.143.226.0/23 maxlen: 23
91.143.224.0/20 maxlen: 20
91.143.224.0/23 maxlen: 23
91.143.224.0/22 maxlen: 22
91.143.232.0/23 maxlen: 23
91.143.232.0/22 maxlen: 22
91.143.228.0/24 maxlen: 24
92.61.224.0/20 maxlen: 20
92.61.234.0/23 maxlen: 23
94.188.221.0/24 maxlen: 24
80.74.96.0/22 maxlen: 22
80.74.96.0/23 maxlen: 23
80.74.96.0/19 maxlen: 19
80.74.104.0/22 maxlen: 22
80.74.100.0/22 maxlen: 22
80.74.100.0/23 maxlen: 23
80.74.112.0/22 maxlen: 22
80.74.110.0/23 maxlen: 23
94.188.246.0/23 maxlen: 23
94.188.244.0/23 maxlen: 23
94.188.242.0/24 maxlen: 24
80.74.108.0/23 maxlen: 23
80.74.108.0/22 maxlen: 22
80.74.106.0/23 maxlen: 23
94.188.252.0/23 maxlen: 23
80.74.118.0/24 maxlen: 24
80.74.116.0/22 maxlen: 22
80.74.116.0/23 maxlen: 23
94.188.248.0/23 maxlen: 23
94.188.248.0/22 maxlen: 22
80.74.124.0/22 maxlen: 22
94.188.254.0/23 maxlen: 23
80.74.120.0/22 maxlen: 22
94.188.162.0/24 maxlen: 24
94.188.161.0/24 maxlen: 24
94.188.165.0/24 maxlen: 24
94.188.166.0/24 maxlen: 24
94.188.163.0/24 maxlen: 24
94.188.178.0/23 maxlen: 23
94.188.178.0/24 maxlen: 24
94.188.176.0/23 maxlen: 23
94.188.175.0/24 maxlen: 24
94.188.173.0/24 maxlen: 24
94.188.191.0/24 maxlen: 24
94.188.192.0/24 maxlen: 24
94.188.199.0/24 maxlen: 24
94.188.197.0/24 maxlen: 24
2a02:23b8::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7b:0e:49:d2:84:fe:8f:c2:4e:e6:2c:fd:e6:6b:76:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Oct 29 10:50:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae210fac4170ce640d6bd02ca385b3cb7459a3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bd:b5:37:52:54:8e:00:d7:a6:a9:fd:33:1d:
3e:a4:fe:5d:4e:85:65:2b:ce:5b:d4:3d:c8:2c:08:
af:d7:1d:e9:fa:c4:3f:3d:67:7d:20:0d:25:9b:b4:
89:60:81:70:a7:99:fb:42:ec:9c:2a:81:44:c0:2f:
ca:01:6e:01:a8:02:e0:f3:86:01:30:dd:c1:ae:09:
63:a3:79:d1:79:b6:a6:a9:0b:69:b1:4d:91:e9:d6:
b7:df:1d:e4:6d:27:3c:7d:74:69:c3:d3:90:ab:b7:
dc:d3:ae:47:a9:32:8b:77:14:ed:9a:b7:47:c4:d4:
0d:8f:c3:a0:a6:df:1f:ff:7b:b3:2e:79:12:a0:f2:
58:7b:56:ad:33:08:86:ca:e9:37:0a:e9:f8:f3:ba:
94:7b:b9:c7:f5:f1:86:6b:ef:7b:82:d0:f9:65:bb:
4e:f1:2f:06:fd:60:42:c6:ea:5b:64:66:b2:66:d2:
4b:05:1e:66:ca:bf:8d:82:4a:89:61:5b:a0:28:17:
a6:a5:02:3b:34:66:d3:46:11:91:f6:92:0d:28:85:
eb:c2:28:47:3e:e1:9e:3f:14:14:f6:66:e8:91:5a:
9b:9d:82:36:82:0f:2e:86:01:da:3d:d3:27:7e:78:
30:8a:2a:90:10:95:6d:5e:96:39:1a:06:cc:0c:09:
14:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:21:0F:AC:41:70:CE:64:0D:6B:D0:2C:A3:85:B3:CB:74:59:A3:F4
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/riEPrEFwzmQNa9Aso4Wzy3RZo_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.96.0/19
91.143.224.0/20
92.61.224.0/20
94.188.128.0/17
IPv6:
2a02:23b8::/32
Signature Algorithm: sha256WithRSAEncryption
a2:5e:08:67:0b:2b:8b:c8:b7:91:4d:32:09:a3:45:b5:8f:a0:
eb:06:12:62:d2:52:79:66:17:b0:fa:3d:c0:f3:58:9c:53:a9:
54:59:09:d7:94:f7:7a:82:90:fe:74:1a:8c:02:d3:88:ed:5d:
1c:e5:ce:86:9d:7a:33:bf:95:4a:6f:85:1d:19:c1:e6:78:84:
72:c1:c3:3b:05:35:81:4f:ae:48:d7:e3:5f:04:1b:31:c3:61:
39:1c:f0:68:e0:0e:d7:6c:36:d9:08:0e:ac:de:38:b9:46:b9:
0a:3e:3f:be:49:ef:74:84:be:ea:f8:8e:5f:a1:85:d7:ab:56:
f7:56:98:5d:94:8a:10:ed:f5:53:a9:e8:bd:0e:e3:83:8e:e9:
2b:57:71:42:33:cf:98:c6:ac:08:10:27:5c:81:cd:9e:95:ff:
51:2a:e0:f7:f2:13:ba:e8:7c:1e:c1:f5:45:3d:c2:45:e2:32:
14:da:fe:0f:1c:5e:f4:44:88:09:3a:50:25:4c:6d:9d:ba:5f:
d9:fc:86:63:f7:2a:e3:8d:09:28:99:c1:74:24:04:6e:a2:5f:
17:6e:7e:15:79:fa:d6:76:a4:73:a7:36:94:bd:9b:9d:00:91:
4a:d1:5c:5e:c6:00:ff:a3:b7:1e:a1:07:93:fb:4f:5c:05:15:
ac:a1:f3:dd
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAYt7DknShP6Pwk7mLP3ma3bfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDViYjQwMTE4MGU1NWY1YzE2NWQ0NzkwOGRmZjRmZTI5
YTBkODYwHhcNMjMxMDI5MTA1MDE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTIxMGZhYzQxNzBjZTY0MGQ2YmQwMmNhMzg1YjNjYjc0NTlhM2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi721N1JUjgDXpqn9Mx0+pP5dToVl
K85b1D3ILAiv1x3p+sQ/PWd9IA0lm7SJYIFwp5n7QuycKoFEwC/KAW4BqALg84YB
MN3Brgljo3nRebamqQtpsU2R6da33x3kbSc8fXRpw9OQq7fc065HqTKLdxTtmrdH
xNQNj8Ogpt8f/3uzLnkSoPJYe1atMwiGyuk3Cun487qUe7nH9fGGa+97gtD5ZbtO
8S8G/WBCxupbZGayZtJLBR5myr+NgkqJYVugKBempQI7NGbTRhGR9pINKIXrwihH
PuGePxQU9mbokVqbnYI2gg8uhgHaPdMnfngwiiqQEJVtXpY5GgbMDAkUvwIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFK4hD6xBcM5kDWvQLKOFs8t0WaP0MB8GA1UdIwQY
MBaAFOLVu0ARgOVfXBZdR5CN/0/img2GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEt
NDIxZTZiYzdlMmU4LzEvcmlFUHJFRnd6bVFOYTlBc280V3p5M1Jab19RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEtNDIxZTZiYzdlMmU4
LzEvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQFUEpgAwQE
W4/gAwQEXD3gAwQHXryAMA0EAgACMAcDBQAqAiO4MA0GCSqGSIb3DQEBCwUAA4IB
AQCiXghnCyuLyLeRTTIJo0W1j6DrBhJi0lJ5Zhew+j3A81icU6lUWQnXlPd6gpD+
dBqMAtOI7V0c5c6GnXozv5VKb4UdGcHmeIRywcM7BTWBT65I1+NfBBsxw2E5HPBo
4A7XbDbZCA6s3ji5RrkKPj++Se90hL7q+I5foYXXq1b3VphdlIoQ7fVTqei9DuOD
jukrV3FCM8+YxqwIECdcgc2elf9RKuD38hO66HwewfVFPcJF4jIU2v4PHF70RIgJ
OlAlTG2dul/Z/IZj9yrjjQkomcF0JARuol8Xbn4VefrWdqRzpzaUvZudAJFK0Vxe
xgD/o7ceoQeT+09cBRWsofPd
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:30 2024 by rpki-client on console-fra.rpki-client.org