Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/m6JgHtzgaxW5Vhw90U2dypk5Dm0.roa
File: m6JgHtzgaxW5Vhw90U2dypk5Dm0.roa (raw, json)
Hash identifier: dSK0HVBzg0LiucdYvmp0VH5B95tLtSOFxY7sKjL0qPA=
Subject key identifier: 9B:A2:60:1E:DC:E0:6B:15:B9:56:1C:3D:D1:4D:9D:CA:99:39:0E:6D
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 0186A8E9D03235513A233B9FA909B5E00B3C
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/m6JgHtzgaxW5Vhw90U2dypk5Dm0.roa
Signing time: Fri 03 Mar 2023 19:19:00 +0000
ROA not before: Fri 03 Mar 2023 19:19:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39150
IP address blocks: 95.85.83.0/24 maxlen: 24
95.85.83.128/25 maxlen: 25
95.85.83.0/25 maxlen: 25
91.196.139.0/24 maxlen: 24
91.196.138.0/24 maxlen: 24
91.196.137.0/24 maxlen: 24
91.196.136.0/24 maxlen: 24
109.196.133.0/24 maxlen: 24
93.179.121.0/24 maxlen: 24
195.182.8.0/24 maxlen: 24
93.179.69.0/24 maxlen: 24
93.179.68.0/23 maxlen: 23
93.179.66.0/24 maxlen: 24
95.181.213.0/24 maxlen: 24
95.181.212.0/23 maxlen: 23
2a04:8680::/32 maxlen: 32
2a09:d5c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a8:e9:d0:32:35:51:3a:23:3b:9f:a9:09:b5:e0:0b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Mar 3 19:19:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ba2601edce06b15b9561c3dd14d9dca99390e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:07:c0:60:52:64:63:33:32:a5:43:c2:83:a1:
15:61:4a:f8:48:4d:aa:e5:e8:93:ec:66:a6:83:72:
32:6d:ac:e4:a4:37:ad:fd:83:4c:29:d5:a7:f9:1a:
14:36:7f:e3:2f:d6:03:39:fe:ec:9e:90:a5:89:17:
1c:43:32:b7:a6:b5:13:1f:6c:c7:f5:f8:7d:21:1d:
22:85:ef:5f:cc:0a:e6:08:72:9c:1a:1c:36:d4:24:
de:ea:34:44:86:33:51:15:3b:6c:93:73:30:32:43:
00:cb:ab:f8:20:3a:33:54:e5:d8:16:06:90:ac:df:
09:78:b5:59:84:1f:b8:12:60:bf:be:7c:2b:ac:81:
fd:1c:99:2d:a7:cf:b3:23:88:44:ed:68:77:55:18:
63:4d:bf:22:d5:f9:c4:4b:ac:44:5b:d5:ea:89:96:
de:af:ba:6c:d9:16:be:c3:34:e7:a4:39:49:8f:42:
e8:27:44:2f:68:dd:06:3f:63:a8:e2:bc:2c:2a:0d:
23:38:a8:80:7d:f4:ad:03:82:d7:a7:23:06:c2:46:
26:7e:93:24:4e:99:fc:86:40:13:d5:3b:e9:5a:ff:
44:e7:0a:c3:33:33:47:84:61:08:2d:bf:cc:6c:9e:
19:4f:aa:ac:27:2e:0c:6c:a2:8c:fb:a6:96:e9:10:
26:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A2:60:1E:DC:E0:6B:15:B9:56:1C:3D:D1:4D:9D:CA:99:39:0E:6D
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/m6JgHtzgaxW5Vhw90U2dypk5Dm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.136.0/22
93.179.66.0/24
93.179.68.0/23
93.179.121.0/24
95.85.83.0/24
95.181.212.0/23
109.196.133.0/24
195.182.8.0/24
IPv6:
2a04:8680::/32
2a09:d5c0::/32
Signature Algorithm: sha256WithRSAEncryption
a8:8f:02:4f:34:b8:ba:3c:8a:83:79:22:f8:c2:f5:f1:25:d4:
6c:14:4d:8b:e8:78:51:17:35:0a:11:7a:63:6b:25:e7:26:78:
24:65:6c:30:73:d3:cb:80:fd:3f:35:c6:c0:a2:96:38:e1:9f:
f2:3a:87:d2:26:3b:59:c1:0f:0f:c6:8e:27:7b:8d:66:e2:4a:
ef:3b:1a:e2:d7:c7:64:66:ee:98:b8:a1:31:20:e5:d3:2e:ed:
58:55:c1:43:85:c2:87:67:e5:4c:63:1a:f9:d6:fc:c7:cc:2f:
1e:a3:ac:91:63:8a:7b:18:20:1b:f3:f4:d0:32:38:e4:8e:12:
dd:a0:22:23:92:92:96:bd:62:9b:d2:60:8d:32:91:c6:65:23:
75:b5:28:60:5d:fb:b4:89:ac:1f:85:af:f0:69:68:b8:61:25:
5c:7f:76:30:2a:8e:66:c5:c6:03:64:86:58:e5:45:9f:0d:f0:
b4:3c:ab:b2:de:5f:04:3f:93:2c:1c:1d:48:f3:22:88:ad:80:
99:6e:e2:35:4d:c8:03:31:6a:57:12:14:0c:6b:08:7e:0a:e7:
52:a9:6c:57:73:ba:3a:3f:87:54:2b:cb:6f:b0:7e:14:bd:bb:
92:ac:0e:19:d3:31:3d:5b:15:82:f5:33:6f:b8:1c:b7:8e:f3:
2f:bf:f7:a3
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgISAYao6dAyNVE6IzufqQm14As8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMzhlZjQxYjJjMDEwNWE5MWNjYmI5Yzg5MzM3ZmFlYjEy
OWZmODQwHhcNMjMwMzAzMTkxOTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmEyNjAxZWRjZTA2YjE1Yjk1NjFjM2RkMTRkOWRjYTk5MzkwZTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAggfAYFJkYzMypUPCg6EVYUr4SE2q
5eiT7Gamg3IybazkpDet/YNMKdWn+RoUNn/jL9YDOf7snpCliRccQzK3prUTH2zH
9fh9IR0ihe9fzArmCHKcGhw21CTe6jREhjNRFTtsk3MwMkMAy6v4IDozVOXYFgaQ
rN8JeLVZhB+4EmC/vnwrrIH9HJktp8+zI4hE7Wh3VRhjTb8i1fnES6xEW9XqiZbe
r7ps2Ra+wzTnpDlJj0LoJ0QvaN0GP2Oo4rwsKg0jOKiAffStA4LXpyMGwkYmfpMk
Tpn8hkAT1TvpWv9E5wrDMzNHhGEILb/MbJ4ZT6qsJy4MbKKM+6aW6RAmxwIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFJuiYB7c4GsVuVYcPdFNncqZOQ5tMB8GA1UdIwQY
MBaAFIM470GywBBakcy7nIkzf66xKf+EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3pqdlFiTEFFRnFSekx1Y2lUTl9yckVwXzRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80MGQ5OTYtYTJjZC00MWYxLWE3Mzgt
MjhmYzc3OTY3NzYzLzEvbTZKZ0h0emdheFc1Vmh3OTBVMmR5cGs1RG0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS80MGQ5OTYtYTJjZC00MWYxLWE3MzgtMjhmYzc3OTY3NzYz
LzEvZ3pqdlFiTEFFRnFSekx1Y2lUTl9yckVwXzRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjA2BAIAATAwAwQCW8SIAwQA
XbNCAwQBXbNEAwQAXbN5AwQAX1VTAwQBX7XUAwQAbcSFAwQAw7YIMBQEAgACMA4D
BQAqBIaAAwUAKgnVwDANBgkqhkiG9w0BAQsFAAOCAQEAqI8CTzS4ujyKg3ki+ML1
8SXUbBRNi+h4URc1ChF6Y2sl5yZ4JGVsMHPTy4D9PzXGwKKWOOGf8jqH0iY7WcEP
D8aOJ3uNZuJK7zsa4tfHZGbumLihMSDl0y7tWFXBQ4XCh2flTGMa+db8x8wvHqOs
kWOKexggG/P00DI45I4S3aAiI5KSlr1im9JgjTKRxmUjdbUoYF37tImsH4Wv8Glo
uGElXH92MCqOZsXGA2SGWOVFnw3wtDyrst5fBD+TLBwdSPMiiK2AmW7iNU3IAzFq
VxIUDGsIfgrnUqlsV3O6Oj+HVCvLb7B+FL27kqwOGdMxPVsVgvUzb7gct47zL7/3
ow==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-fra.rpki-client.org