Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Vmw9_GAGUdAKxSpl65pggOQ9oGc.roa
File: Vmw9_GAGUdAKxSpl65pggOQ9oGc.roa (raw, json)
Hash identifier: 9HZsFFrvVqwvSwRnprAlspGmTWzngPBk468xQCqVwEg=
Subject key identifier: 56:6C:3D:FC:60:06:51:D0:0A:C5:2A:65:EB:9A:60:80:E4:3D:A0:67
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 0186EA466641FDD45ED36EBC88B32733616B
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Vmw9_GAGUdAKxSpl65pggOQ9oGc.roa
Signing time: Thu 16 Mar 2023 11:55:27 +0000
ROA not before: Thu 16 Mar 2023 11:55:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 91.92.216.0/23 maxlen: 32
91.92.218.0/24 maxlen: 32
91.92.22.0/23 maxlen: 32
188.212.136.0/21 maxlen: 32
93.113.52.0/23 maxlen: 32
185.66.136.0/22 maxlen: 32
180.149.16.0/20 maxlen: 32
94.139.224.0/20 maxlen: 32
119.12.192.0/21 maxlen: 32
188.240.48.0/23 maxlen: 32
180.235.160.0/20 maxlen: 32
91.92.138.0/24 maxlen: 32
180.149.0.0/20 maxlen: 32
110.238.192.0/19 maxlen: 32
77.81.92.0/22 maxlen: 32
176.223.182.0/23 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Mar 2023 08:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:46:66:41:fd:d4:5e:d3:6e:bc:88:b3:27:33:61:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Mar 16 11:55:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=566c3dfc600651d00ac52a65eb9a6080e43da067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a6:47:54:a5:17:99:ba:33:76:2e:c1:8a:35:
62:e0:8a:9e:22:90:2f:1f:05:31:dc:9d:fb:eb:50:
f5:85:95:e8:97:ab:de:fa:3a:f2:96:bf:b3:1c:c3:
aa:4e:b8:c2:d8:b5:b0:74:65:e3:f2:03:62:6e:84:
39:11:78:fa:61:50:07:32:08:8a:83:c8:0e:7f:68:
d1:b1:dc:fb:3d:7a:7d:e2:ef:7c:59:b6:64:0c:1f:
85:09:af:24:68:1c:8b:36:69:cc:a2:de:90:58:f3:
0a:7c:66:d1:80:be:af:45:0e:25:77:02:18:35:ad:
60:80:72:4c:42:89:66:95:7a:7c:1b:e6:95:09:d9:
2e:57:dd:9f:a2:b0:8b:60:1a:1c:06:72:a6:7f:9d:
b1:00:aa:82:6c:3a:66:52:c3:ce:d9:76:8f:49:69:
af:c6:89:08:69:b8:e9:aa:20:d6:2b:a8:51:84:f6:
3e:41:d7:92:38:ab:66:73:ac:8b:e3:71:52:62:ce:
08:96:33:c5:15:2f:c2:7e:db:4c:fb:48:35:ca:56:
0d:dc:c3:84:5c:ff:b9:d5:ca:26:17:0d:d9:ee:08:
d4:11:1c:f8:ef:f7:dc:50:90:48:9a:32:d6:c4:7f:
3f:68:4d:a4:20:45:7a:af:dc:ce:64:d6:95:99:ab:
3b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6C:3D:FC:60:06:51:D0:0A:C5:2A:65:EB:9A:60:80:E4:3D:A0:67
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/Vmw9_GAGUdAKxSpl65pggOQ9oGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.92.0/22
91.92.22.0/23
91.92.138.0/24
91.92.216.0-91.92.218.255
93.113.52.0/23
94.139.224.0/20
110.238.192.0/19
119.12.192.0/21
176.223.182.0/23
180.149.0.0/19
180.235.160.0/20
185.66.136.0/22
188.212.136.0/21
188.240.48.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:d6:4c:c3:e1:9c:1a:67:c0:77:1d:0c:40:0b:8b:e2:07:5f:
c3:6e:fa:8a:f0:dc:d8:29:b0:ff:8f:3b:18:63:73:0b:ac:02:
ac:dc:7d:df:1b:a9:2f:56:50:28:f9:27:11:f6:0f:7e:81:4a:
fa:18:5a:dd:49:62:73:e0:60:f8:50:d3:4f:ac:35:74:4d:21:
a4:9e:8a:20:ea:09:85:7a:6f:22:04:e5:b1:9c:7b:f4:b0:15:
1d:23:8c:b2:cf:6d:7c:47:90:f3:e2:00:59:39:10:ea:dd:26:
fe:0e:34:13:8f:05:7e:1b:7f:3b:d5:c0:99:37:36:22:3b:e8:
0e:7d:6b:aa:1b:ad:c0:a5:04:f1:e3:c0:e9:ce:26:56:2e:16:
7a:83:f9:d0:dd:2e:e7:8b:6b:4f:85:51:b0:b2:e8:e1:ad:73:
69:63:db:32:32:0e:df:9e:2f:bb:b6:71:38:2d:5a:3d:3d:7d:
18:5c:d9:34:25:b8:2f:97:bc:02:a9:64:34:4b:d3:bb:ff:59:
d3:cf:44:d9:3b:f5:93:ca:5c:4b:71:8b:7f:91:dc:11:f4:db:
14:d1:00:b8:82:1d:f6:fd:1a:a5:7e:09:db:19:f1:f4:58:6b:
d5:fe:e9:41:b7:bd:8c:54:01:ac:8e:79:b4:65:d3:5c:5d:83:
08:f7:55:e2
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAYbqRmZB/dRe0268iLMnM2FrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NGRiOGIwOTgzYWNmOTdhMzI1NTE1MmMyZWE1OTJhZGFl
NzczNWIwHhcNMjMwMzE2MTE1NTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjZjM2RmYzYwMDY1MWQwMGFjNTJhNjVlYjlhNjA4MGU0M2RhMDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6ZHVKUXmbozdi7BijVi4IqeIpAv
HwUx3J3761D1hZXol6ve+jrylr+zHMOqTrjC2LWwdGXj8gNiboQ5EXj6YVAHMgiK
g8gOf2jRsdz7PXp94u98WbZkDB+FCa8kaByLNmnMot6QWPMKfGbRgL6vRQ4ldwIY
Na1ggHJMQolmlXp8G+aVCdkuV92forCLYBocBnKmf52xAKqCbDpmUsPO2XaPSWmv
xokIabjpqiDWK6hRhPY+QdeSOKtmc6yL43FSYs4IljPFFS/CfttM+0g1ylYN3MOE
XP+51comFw3Z7gjUERz47/fcUJBImjLWxH8/aE2kIEV6r9zOZNaVmas7eQIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFFZsPfxgBlHQCsUqZeuaYIDkPaBnMB8GA1UdIwQY
MBaAFMRNuLCYOs+XoyVRUsLqWSra53NbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEUyNHNKZzZ6NWVqSlZGU3d1cFpLdHJuYzFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC80Mzc4OTctYWY1OC00OTU5LThlNzYt
ZWVkZDk0ZWMxMjhjLzEvVm13OV9HQUdVZEFLeFNwbDY1cGdnT1E5b0djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC80Mzc4OTctYWY1OC00OTU5LThlNzYtZWVkZDk0ZWMxMjhj
LzEveEUyNHNKZzZ6NWVqSlZGU3d1cFpLdHJuYzFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcAwQCTVFcAwQB
W1wWAwQAW1yKMAwDBANbXNgDBABbXNoDBAFdcTQDBARei+ADBAVu7sADBAN3DMAD
BAGw37YDBAW0lQADBAS066ADBAK5QogDBAO81IgDBAG88DAwDQYJKoZIhvcNAQEL
BQADggEBALfWTMPhnBpnwHcdDEALi+IHX8Nu+orw3NgpsP+POxhjcwusAqzcfd8b
qS9WUCj5JxH2D36BSvoYWt1JYnPgYPhQ00+sNXRNIaSeiiDqCYV6byIE5bGce/Sw
FR0jjLLPbXxHkPPiAFk5EOrdJv4ONBOPBX4bfzvVwJk3NiI76A59a6obrcClBPHj
wOnOJlYuFnqD+dDdLueLa0+FUbCy6OGtc2lj2zIyDt+eL7u2cTgtWj09fRhc2TQl
uC+XvAKpZDRL07v/WdPPRNk79ZPKXEtxi3+R3BH02xTRALiCHfb9GqV+CdsZ8fRY
a9X+6UG3vYxUAayOebRl01xdgwj3VeI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:46 2024 by rpki-client on console-fra.rpki-client.org