Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/seYrJ7t1FL1kDZ9-YUjSG44V2LI.roa
File: seYrJ7t1FL1kDZ9-YUjSG44V2LI.roa (raw, json)
Hash identifier: GySWqyEZAx88sX+ptgcbxb9Bf29ljE/R6+6tw8swvQ4=
Subject key identifier: B1:E6:2B:27:BB:75:14:BD:64:0D:9F:7E:61:48:D2:1B:8E:15:D8:B2
Certificate issuer: /CN=ffbcae2b290c801d57d09d025a9348e16706f182
Certificate serial: 01856E01F7B43957F478DA0120ED5506080A
Authority key identifier: FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/seYrJ7t1FL1kDZ9-YUjSG44V2LI.roa
Signing time: Sun 01 Jan 2023 15:45:00 +0000
ROA not before: Sun 01 Jan 2023 15:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198537
IP address blocks: 45.159.238.0/24 maxlen: 24
45.159.239.0/24 maxlen: 24
45.159.237.0/24 maxlen: 24
45.159.238.0/23 maxlen: 23
45.159.236.0/24 maxlen: 24
45.159.236.0/22 maxlen: 22
45.159.236.0/23 maxlen: 23
185.146.54.0/23 maxlen: 23
185.146.55.0/24 maxlen: 24
185.146.53.0/24 maxlen: 24
185.146.54.0/24 maxlen: 24
185.146.52.0/24 maxlen: 24
185.146.52.0/22 maxlen: 22
185.146.52.0/23 maxlen: 23
91.236.35.0/24 maxlen: 24
91.236.32.0/22 maxlen: 22
91.236.32.0/23 maxlen: 23
91.236.33.0/24 maxlen: 24
91.236.34.0/24 maxlen: 24
91.236.34.0/23 maxlen: 23
91.236.32.0/24 maxlen: 24
77.83.42.0/24 maxlen: 24
77.83.43.0/24 maxlen: 24
77.83.40.0/23 maxlen: 23
77.83.40.0/22 maxlen: 22
77.83.40.0/24 maxlen: 24
77.83.41.0/24 maxlen: 24
77.83.42.0/23 maxlen: 23
37.221.102.0/23 maxlen: 23
37.221.102.0/24 maxlen: 24
37.221.103.0/24 maxlen: 24
37.221.100.0/24 maxlen: 24
37.221.101.0/24 maxlen: 24
37.221.100.0/23 maxlen: 23
37.221.100.0/22 maxlen: 22
194.53.1.0/24 maxlen: 24
194.53.2.0/24 maxlen: 24
2a07:4bc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 13 Feb 2023 09:09:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:f7:b4:39:57:f4:78:da:01:20:ed:55:06:08:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbcae2b290c801d57d09d025a9348e16706f182
Validity
Not Before: Jan 1 15:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e62b27bb7514bd640d9f7e6148d21b8e15d8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e1:e8:20:48:00:b9:6b:ce:ad:b1:a3:08:d9:
08:b1:a9:50:32:70:95:2c:75:14:2f:22:53:04:b6:
e5:28:62:64:73:b3:36:83:4f:54:ac:9c:47:0d:6e:
44:cf:e5:82:76:e8:a8:c3:48:fd:9b:61:47:d7:7e:
a0:83:eb:cd:a9:89:2c:55:d3:2f:d0:b2:7b:b8:1e:
08:fa:e2:e9:e2:e0:02:76:38:d0:c2:29:16:9b:3c:
fe:2e:fe:49:f7:b3:0f:0b:e5:7c:22:0d:91:3a:b9:
ad:f9:f1:2f:33:23:7a:3a:e2:73:ec:dc:9d:ec:98:
9c:6d:57:c8:0d:38:58:8e:bb:50:bf:1f:fd:c9:7f:
ec:86:91:87:f6:9c:f5:2c:44:cf:87:79:6a:ef:87:
eb:fd:bf:e9:71:6c:9a:9e:ff:fd:d6:8e:76:2f:d2:
60:cd:ef:c5:61:84:57:77:6c:45:da:a8:c3:12:f0:
15:fa:0c:c3:1d:a1:87:8d:8b:21:86:35:e8:0a:3e:
b0:23:f3:09:9c:86:a5:17:24:46:3b:8c:1f:6c:a3:
47:14:8f:a7:3a:69:8a:a1:a4:cf:76:b9:d1:70:7e:
f7:81:4e:cb:51:34:49:55:79:76:74:6a:3f:2a:ec:
dc:ff:e8:f2:f9:12:2e:fc:93:2e:44:01:84:bf:24:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E6:2B:27:BB:75:14:BD:64:0D:9F:7E:61:48:D2:1B:8E:15:D8:B2
X509v3 Authority Key Identifier:
keyid:FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/seYrJ7t1FL1kDZ9-YUjSG44V2LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/_7yuKykMgB1X0J0CWpNI4WcG8YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.100.0/22
45.159.236.0/22
77.83.40.0/22
91.236.32.0/22
185.146.52.0/22
194.53.1.0-194.53.2.255
IPv6:
2a07:4bc0::/29
Signature Algorithm: sha256WithRSAEncryption
04:de:5f:e6:5b:23:e8:7d:31:2e:4b:6e:67:31:f4:50:bc:b7:
dc:93:74:e6:7b:e7:65:3c:20:18:f8:96:81:19:d0:e1:2e:b7:
0b:2d:ee:bc:4e:1e:04:1e:85:b8:b0:a2:0d:b3:e0:73:1d:c9:
52:59:93:f3:36:6c:09:dd:9c:48:9a:3d:82:6e:0f:80:23:86:
97:56:42:0c:d5:48:34:45:b1:f4:fb:48:3e:24:12:a5:1a:53:
df:e8:f3:3b:3e:67:a9:bb:2c:f1:25:eb:9e:6b:a0:75:19:35:
5a:d0:b9:aa:56:d0:69:d6:7c:fb:85:03:d3:2f:b6:e2:62:dd:
6a:e6:fa:3b:58:c8:9e:4b:98:ea:66:1d:07:5d:c4:e3:cc:03:
65:68:57:30:2b:ce:e4:16:47:ca:29:8e:a1:a1:ca:a3:18:f5:
72:31:51:9a:a9:de:24:e0:59:a0:e4:8d:41:13:cb:2c:7f:65:
da:68:68:66:9e:2d:82:44:69:08:e3:ed:5e:57:c8:25:54:1a:
63:a1:ac:fd:24:c6:38:9a:7e:8e:99:8e:73:ec:aa:7e:30:a9:
54:21:3f:f5:91:00:b6:fe:59:c1:a9:f2:4c:e7:8d:b6:fe:cc:
68:ca:3e:06:fc:aa:09:bf:4c:0e:fa:50:b1:81:1a:c8:35:2f:
bb:e9:92:2a
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgISAYVuAfe0OVf0eNoBIO1VBggKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmYmNhZTJiMjkwYzgwMWQ1N2QwOWQwMjVhOTM0OGUxNjcw
NmYxODIwHhcNMjMwMTAxMTU0NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWU2MmIyN2JiNzUxNGJkNjQwZDlmN2U2MTQ4ZDIxYjhlMTVkOGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgOHoIEgAuWvOrbGjCNkIsalQMnCV
LHUULyJTBLblKGJkc7M2g09UrJxHDW5Ez+WCduiow0j9m2FH136gg+vNqYksVdMv
0LJ7uB4I+uLp4uACdjjQwikWmzz+Lv5J97MPC+V8Ig2ROrmt+fEvMyN6OuJz7Nyd
7JicbVfIDThYjrtQvx/9yX/shpGH9pz1LETPh3lq74fr/b/pcWyanv/91o52L9Jg
ze/FYYRXd2xF2qjDEvAV+gzDHaGHjYshhjXoCj6wI/MJnIalFyRGO4wfbKNHFI+n
OmmKoaTPdrnRcH73gU7LUTRJVXl2dGo/Kuzc/+jy+RIu/JMuRAGEvyQFeQIDAQAB
o4ICPjCCAjowHQYDVR0OBBYEFLHmKye7dRS9ZA2ffmFI0huOFdiyMB8GA1UdIwQY
MBaAFP+8rispDIAdV9CdAlqTSOFnBvGCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzd5dUt5a01nQjFYMEowQ1dwTkk0V2NHOFlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81OWJjZDEtMWUwYi00ODVkLTk1MTAt
MDk2YWY0NzhmMDRiLzEvc2VZcko3dDFGTDFrRFo5LVlValNHNDRWMkxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81OWJjZDEtMWUwYi00ODVkLTk1MTAtMDk2YWY0NzhmMDRi
LzEvXzd5dUt5a01nQjFYMEowQ1dwTkk0V2NHOFlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsAwQCJd1kAwQC
LZ/sAwQCTVMoAwQCW+wgAwQCuZI0MAwDBADCNQEDBADCNQIwDQQCAAIwBwMFAyoH
S8AwDQYJKoZIhvcNAQELBQADggEBAATeX+ZbI+h9MS5Lbmcx9FC8t9yTdOZ752U8
IBj4loEZ0OEutwst7rxOHgQehbiwog2z4HMdyVJZk/M2bAndnEiaPYJuD4AjhpdW
QgzVSDRFsfT7SD4kEqUaU9/o8zs+Z6m7LPEl655roHUZNVrQuapW0GnWfPuFA9Mv
tuJi3Wrm+jtYyJ5LmOpmHQddxOPMA2VoVzArzuQWR8opjqGhyqMY9XIxUZqp3iTg
WaDkjUETyyx/ZdpoaGaeLYJEaQjj7V5XyCVUGmOhrP0kxjiafo6ZjnPsqn4wqVQh
P/WRALb+WcGp8kznjbb+zGjKPgb8qgm/TA76ULGBGsg1L7vpkio=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:43 2024 by rpki-client on console-fra.rpki-client.org