Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/E0QKUkRGENACqAewsJAcm1fZeaM.roa
File: E0QKUkRGENACqAewsJAcm1fZeaM.roa (raw, json)
Hash identifier: /3EXdgoK+PLU9PibCG7fVQynWyaR3c4/FuMSsmnks/E=
Subject key identifier: 13:44:0A:52:44:46:10:D0:02:A8:07:B0:B0:90:1C:9B:57:D9:79:A3
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018BBE280DE8DECBFE9D31B95A3A8256A87A
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/E0QKUkRGENACqAewsJAcm1fZeaM.roa
Signing time: Sat 11 Nov 2023 11:32:57 +0000
ROA not before: Sat 11 Nov 2023 11:32:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 185.95.228.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.75.132.0/24 maxlen: 24
77.83.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 09:07:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:be:28:0d:e8:de:cb:fe:9d:31:b9:5a:3a:82:56:a8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Nov 11 11:32:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13440a52444610d002a807b0b0901c9b57d979a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f5:df:b8:72:aa:c7:2f:46:e3:3d:07:9b:2b:
53:05:5c:93:cc:f4:3d:2c:4c:c1:f3:d2:f9:e3:cf:
76:1c:55:5b:e7:4b:2c:2e:56:71:4e:6d:9f:a0:2d:
84:bd:bb:78:bb:e0:eb:51:e6:a4:a7:9e:5b:53:01:
47:42:2a:12:6e:66:f0:d1:5c:48:1e:e6:71:4f:d2:
aa:1e:5c:66:e2:e0:d1:d6:ac:6d:01:37:a8:6b:65:
f4:02:06:d4:39:d1:2f:93:c9:2e:84:21:e3:18:c1:
8b:42:64:c1:7d:5f:7c:3b:7b:47:75:06:5b:95:fb:
a2:6d:fc:0b:a8:f6:70:d2:6b:01:87:76:93:c0:bf:
09:85:e9:ee:70:14:25:2b:c9:ba:36:53:07:61:84:
db:26:40:52:78:71:04:08:21:1f:83:21:18:71:3c:
c6:a4:82:9c:bd:7a:e0:3b:ef:fc:9b:80:e3:1c:d1:
d5:f8:f8:48:ea:6b:ca:02:c4:d8:7e:4a:13:6a:75:
9c:4c:d5:0a:9f:a5:71:2c:52:15:03:b9:e8:37:5e:
f7:e5:61:a8:4f:4c:c1:1b:65:1c:73:28:57:e9:80:
13:7a:71:77:8c:b2:03:e5:11:10:41:f6:58:91:83:
09:37:8e:14:87:44:95:66:40:e4:53:03:e8:5f:4e:
c5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:44:0A:52:44:46:10:D0:02:A8:07:B0:B0:90:1C:9B:57:D9:79:A3
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/E0QKUkRGENACqAewsJAcm1fZeaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.246.0/24
185.75.132.0/24
185.77.138.0/23
185.95.228.0/24
185.105.47.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:9a:e8:49:89:c8:0b:b1:6a:fd:5b:e3:c8:1b:f4:05:6a:8a:
13:a2:c3:df:e7:aa:27:ac:fb:ea:3b:d5:db:37:7e:5b:a2:48:
1d:81:14:1f:c2:0d:18:f7:75:c4:ad:26:ce:6e:9a:4e:3e:dc:
15:15:7f:b2:1c:a3:2f:27:f5:34:08:09:f2:d1:20:b7:cb:f0:
a0:a9:a2:5c:6f:6f:0a:8c:f6:cb:af:63:11:a0:f2:4f:42:43:
72:c1:8b:0c:9a:3e:c6:d6:37:4a:56:61:9b:18:41:27:88:7b:
2c:dc:17:ca:8d:cd:8b:c6:aa:27:fc:60:b7:c8:94:7a:57:9a:
d7:30:b9:0c:22:9e:a6:de:0c:6a:e7:63:e7:63:5f:2d:b7:fd:
cd:d2:99:6f:44:ba:63:d0:35:bd:b6:36:27:aa:be:d4:69:39:
76:70:51:66:fc:a8:1c:96:3e:48:d9:11:88:65:30:96:56:52:
72:4c:97:e8:0b:27:26:2b:b0:5e:ce:c7:1c:80:86:c9:b3:05:
31:45:96:fc:6a:3d:de:69:d1:de:23:a5:45:95:1f:d9:bb:d4:
25:bc:fd:bf:a0:90:9e:85:35:f4:bf:98:e4:ee:df:f2:45:f7:
e0:8b:10:a6:fe:df:ec:46:55:a5:40:d4:7d:b1:e1:92:4e:47:
71:ff:a7:71
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYu+KA3o3sv+nTG5WjqCVqh6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMxMTExMTEzMjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzQ0MGE1MjQ0NDYxMGQwMDJhODA3YjBiMDkwMWM5YjU3ZDk3OWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfXfuHKqxy9G4z0HmytTBVyTzPQ9
LEzB89L54892HFVb50ssLlZxTm2foC2Evbt4u+DrUeakp55bUwFHQioSbmbw0VxI
HuZxT9KqHlxm4uDR1qxtATeoa2X0AgbUOdEvk8kuhCHjGMGLQmTBfV98O3tHdQZb
lfuibfwLqPZw0msBh3aTwL8JhenucBQlK8m6NlMHYYTbJkBSeHEECCEfgyEYcTzG
pIKcvXrgO+/8m4DjHNHV+PhI6mvKAsTYfkoTanWcTNUKn6VxLFIVA7noN1735WGo
T0zBG2UccyhX6YATenF3jLID5REQQfZYkYMJN44Uh0SVZkDkUwPoX07FlQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFBNEClJERhDQAqgHsLCQHJtX2XmjMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvRTBRS1VrUkdFTkFDcUFld3NKQWNtMWZaZWFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQATVP2AwQA
uUuEAwQBuU2KAwQAuV/kAwQAuWkvMA0GCSqGSIb3DQEBCwUAA4IBAQAcmuhJicgL
sWr9W+PIG/QFaooTosPf56onrPvqO9XbN35bokgdgRQfwg0Y93XErSbObppOPtwV
FX+yHKMvJ/U0CAny0SC3y/CgqaJcb28KjPbLr2MRoPJPQkNywYsMmj7G1jdKVmGb
GEEniHss3BfKjc2Lxqon/GC3yJR6V5rXMLkMIp6m3gxq52PnY18tt/3N0plvRLpj
0DW9tjYnqr7UaTl2cFFm/Kgclj5I2RGIZTCWVlJyTJfoCycmK7BezsccgIbJswUx
RZb8aj3eadHeI6VFlR/Zu9QlvP2/oJCehTX0v5jk7t/yRffgixCm/t/sRlWlQNR9
seGSTkdx/6dx
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org