Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/L9j2MnbJskIx176Z2Rksu2lqeDc.roa
File: L9j2MnbJskIx176Z2Rksu2lqeDc.roa (raw, json)
Hash identifier: L/PpkpLRlL92ky258g+vXfO/I1OeUCSorEuOJah0gT8=
Subject key identifier: 2F:D8:F6:32:76:C9:B2:42:31:D7:BE:99:D9:19:2C:BB:69:6A:78:37
Certificate issuer: /CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Certificate serial: 01899B8365B3CC1DE7E344D7A4BCDD3FE206
Authority key identifier: 58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/L9j2MnbJskIx176Z2Rksu2lqeDc.roa
Signing time: Fri 28 Jul 2023 08:00:26 +0000
ROA not before: Fri 28 Jul 2023 08:00:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 185.111.120.0/22 maxlen: 24
185.2.24.0/22 maxlen: 24
80.247.160.0/20 maxlen: 24
193.239.89.0/24 maxlen: 24
193.239.88.0/22 maxlen: 24
185.139.148.0/22 maxlen: 24
85.255.208.0/20 maxlen: 24
81.26.208.0/20 maxlen: 24
87.237.96.0/23 maxlen: 24
94.126.64.0/21 maxlen: 24
87.237.100.0/23 maxlen: 24
62.148.160.0/19 maxlen: 24
81.93.48.0/20 maxlen: 24
2a02:728::/32 maxlen: 48
2a06:5dc0::/29 maxlen: 48
2001:16e8::/32 maxlen: 48
2a00:f80::/32 maxlen: 48
2a02:4640::/32 maxlen: 48
2a02:4640:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 01 Aug 2023 13:54:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:83:65:b3:cc:1d:e7:e3:44:d7:a4:bc:dd:3f:e2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58667131d760b5db1de98ea20c0f82fc01c9f1d9
Validity
Not Before: Jul 28 08:00:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fd8f63276c9b24231d7be99d9192cbb696a7837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b1:6e:61:12:c6:cf:95:bf:46:98:d8:61:3a:
5f:c7:f2:51:6e:35:b6:68:9d:43:48:d8:86:cd:6b:
05:a5:43:f4:6e:13:ac:d4:91:04:ca:f9:fe:d0:7f:
71:d0:28:20:8b:64:7c:d9:33:70:b6:3d:70:d4:d0:
08:08:b4:9f:43:aa:03:58:33:c6:32:88:c4:14:6b:
c4:61:17:57:3d:65:3b:b6:e3:08:b3:9d:65:9e:c9:
be:ea:f3:eb:a8:41:23:b3:dd:dd:d3:c2:53:ee:5e:
d7:c9:3e:b7:05:83:02:66:38:cc:53:1b:f3:db:db:
3a:68:ea:f1:a8:0d:98:38:7e:02:69:c6:f4:0c:04:
9c:db:2e:09:4e:a5:22:a5:a6:9a:ae:91:af:df:66:
99:14:c2:ce:9c:8b:fa:2b:aa:4f:77:b6:7e:a9:c4:
ae:49:95:49:08:1c:e7:dd:78:10:bb:74:d9:dd:70:
96:df:a7:40:a2:6e:d1:0c:29:52:b7:81:20:16:c9:
24:0d:7c:fc:cc:5e:7e:f0:9e:66:82:5c:88:42:fa:
69:14:42:b5:41:c3:d6:0e:3f:7c:3a:0b:63:49:48:
8c:b1:4c:77:74:f8:7f:1c:5a:82:7b:a7:02:bb:1b:
3d:36:12:e5:ab:69:ea:bc:27:8b:1c:f1:3b:8c:bd:
35:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D8:F6:32:76:C9:B2:42:31:D7:BE:99:D9:19:2C:BB:69:6A:78:37
X509v3 Authority Key Identifier:
keyid:58:66:71:31:D7:60:B5:DB:1D:E9:8E:A2:0C:0F:82:FC:01:C9:F1:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/L9j2MnbJskIx176Z2Rksu2lqeDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/4a80e6-1d04-4647-a8d4-2481106f8b25/1/WGZxMddgtdsd6Y6iDA-C_AHJ8dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.148.160.0/19
80.247.160.0/20
81.26.208.0/20
81.93.48.0/20
85.255.208.0/20
87.237.96.0/23
87.237.100.0/23
94.126.64.0/21
185.2.24.0/22
185.111.120.0/22
185.139.148.0/22
193.239.88.0/22
IPv6:
2001:16e8::/32
2a00:f80::/32
2a02:728::/32
2a02:4640::/32
2a06:5dc0::/29
Signature Algorithm: sha256WithRSAEncryption
04:a5:14:e1:96:53:db:dc:41:6e:bd:a1:3a:c9:50:bf:3a:f8:
18:aa:30:66:9a:81:99:a7:18:19:7e:1e:46:1e:76:8c:ca:f6:
43:50:ae:47:a6:9e:49:0e:e2:1d:84:d6:4a:88:2f:20:fb:4d:
7b:22:18:f6:f7:13:4d:cd:a0:87:e1:60:ed:7f:f1:25:91:8f:
5b:f2:b9:b0:eb:fc:cd:27:05:47:97:77:31:ab:78:21:6c:61:
74:0c:c6:5d:99:2f:a7:af:13:8d:b0:72:4c:85:32:99:ab:2b:
21:d9:da:33:fd:e8:f1:ed:aa:0a:0e:5c:7c:57:ca:fd:4a:b3:
24:e5:6f:c2:d3:7b:74:82:f1:92:b0:6d:3c:60:2f:3c:92:bc:
aa:ef:3b:30:78:94:3c:2e:0c:8d:b1:0a:8e:5d:9f:e1:00:3e:
6a:b9:aa:7f:52:04:af:ed:39:b6:03:6a:4c:5e:21:5c:dd:60:
e7:f4:fc:fe:d4:12:30:7d:c4:b4:04:89:66:62:6d:c3:7b:19:
29:7f:1c:97:d9:58:d5:f7:9c:03:5f:7e:23:fb:99:8e:6b:ad:
ff:d5:72:1d:7a:a9:01:f1:c1:6c:ef:dd:43:7d:bb:4f:81:36:
a7:ba:f1:a7:35:5d:d9:a4:80:1f:5b:13:a6:95:f2:a5:93:80:
fd:cc:93:fe
-----BEGIN CERTIFICATE-----
MIIFazCCBFOgAwIBAgISAYmbg2WzzB3n40TXpLzdP+IGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NjY3MTMxZDc2MGI1ZGIxZGU5OGVhMjBjMGY4MmZjMDFj
OWYxZDkwHhcNMjMwNzI4MDgwMDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmQ4ZjYzMjc2YzliMjQyMzFkN2JlOTlkOTE5MmNiYjY5NmE3ODM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLFuYRLGz5W/RpjYYTpfx/JRbjW2
aJ1DSNiGzWsFpUP0bhOs1JEEyvn+0H9x0Cggi2R82TNwtj1w1NAICLSfQ6oDWDPG
MojEFGvEYRdXPWU7tuMIs51lnsm+6vPrqEEjs93d08JT7l7XyT63BYMCZjjMUxvz
29s6aOrxqA2YOH4Cacb0DASc2y4JTqUipaaarpGv32aZFMLOnIv6K6pPd7Z+qcSu
SZVJCBzn3XgQu3TZ3XCW36dAom7RDClSt4EgFskkDXz8zF5+8J5mglyIQvppFEK1
QcPWDj98OgtjSUiMsUx3dPh/HFqCe6cCuxs9NhLlq2nqvCeLHPE7jL01KQIDAQAB
o4ICdzCCAnMwHQYDVR0OBBYEFC/Y9jJ2ybJCMde+mdkZLLtpang3MB8GA1UdIwQY
MBaAFFhmcTHXYLXbHemOogwPgvwByfHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0daeE1kZGd0ZHNkNlk2aURBLUNfQUhKOGRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS80YTgwZTYtMWQwNC00NjQ3LWE4ZDQt
MjQ4MTEwNmY4YjI1LzEvTDlqMk1uYkpza0l4MTc2WjJSa3N1MmxxZURjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS80YTgwZTYtMWQwNC00NjQ3LWE4ZDQtMjQ4MTEwNmY4YjI1
LzEvV0daeE1kZGd0ZHNkNlk2aURBLUNfQUhKOGRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGMBggrBgEFBQcBBwEB/wR9MHswTgQCAAEwSAMEBT6UoAME
BFD3oAMEBFEa0AMEBFFdMAMEBFX/0AMEAVftYAMEAVftZAMEA15+QAMEArkCGAME
ArlveAMEArmLlAMEAsHvWDApBAIAAjAjAwUAIAEW6AMFACoAD4ADBQAqAgcoAwUA
KgJGQAMFAyoGXcAwDQYJKoZIhvcNAQELBQADggEBAASlFOGWU9vcQW69oTrJUL86
+BiqMGaagZmnGBl+HkYedozK9kNQrkemnkkO4h2E1kqILyD7TXsiGPb3E03NoIfh
YO1/8SWRj1vyubDr/M0nBUeXdzGreCFsYXQMxl2ZL6evE42wckyFMpmrKyHZ2jP9
6PHtqgoOXHxXyv1KsyTlb8LTe3SC8ZKwbTxgLzySvKrvOzB4lDwuDI2xCo5dn+EA
Pmq5qn9SBK/tObYDakxeIVzdYOf0/P7UEjB9xLQEiWZibcN7GSl/HJfZWNX3nANf
fiP7mY5rrf/Vch16qQHxwWzv3UN9u0+BNqe68ac1XdmkgB9bE6aV8qWTgP3Mk/4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:11 2024 by rpki-client on console-fra.rpki-client.org