Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/d1DSw452bxGo4U92FhL3dlYURVI.roa
File: d1DSw452bxGo4U92FhL3dlYURVI.roa (raw, json)
Hash identifier: LdN6TIFqMAFNASWXWvnso7F4KJEcXQUFo75aNo/ZbdA=
Subject key identifier: 77:50:D2:C3:8E:76:6F:11:A8:E1:4F:76:16:12:F7:76:56:14:45:52
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01889752E467820A7819F5B9A2294CE7446C
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/d1DSw452bxGo4U92FhL3dlYURVI.roa
Signing time: Wed 07 Jun 2023 19:26:11 +0000
ROA not before: Wed 07 Jun 2023 19:26:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 185.112.56.0/23 maxlen: 24
185.95.102.0/23 maxlen: 24
185.95.100.0/23 maxlen: 24
193.221.215.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.174.0/23 maxlen: 24
185.81.173.0/24 maxlen: 24
185.81.186.0/23 maxlen: 24
185.81.184.0/23 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.68.245.0/24 maxlen: 24
185.96.83.0/24 maxlen: 24
185.96.80.0/24 maxlen: 24
185.185.147.0/24 maxlen: 24
185.79.51.0/24 maxlen: 24
185.96.36.0/24 maxlen: 24
185.104.151.0/24 maxlen: 24
185.79.79.0/24 maxlen: 24
185.89.108.0/22 maxlen: 24
89.19.57.0/24 maxlen: 24
89.19.58.0/24 maxlen: 24
185.175.225.0/24 maxlen: 24
185.175.224.0/24 maxlen: 24
89.19.59.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
185.81.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:97:52:e4:67:82:0a:78:19:f5:b9:a2:29:4c:e7:44:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jun 7 19:26:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7750d2c38e766f11a8e14f761612f77656144552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b7:ad:ce:b0:9e:8d:d1:76:90:44:4a:cf:fa:
42:0e:43:10:d1:6f:a4:06:4a:ce:83:19:25:8f:be:
2b:21:0d:6b:dd:5f:d7:09:9b:c2:5d:d4:e4:8d:9f:
8e:2b:6d:7e:65:3c:5e:33:c6:55:b5:5a:7f:21:b3:
ad:2f:8d:a1:c3:b5:57:9a:8a:92:50:2c:d9:2d:9a:
31:20:d4:05:0a:12:81:a4:65:95:5d:be:8f:7a:2d:
e8:fb:c6:89:58:2b:61:9c:d7:6c:a0:df:9b:36:d7:
ff:2f:99:b2:a4:5a:12:fe:ce:cf:24:38:d7:05:c7:
99:55:40:b5:1f:6f:e0:bc:09:9c:06:89:a2:65:96:
26:45:37:d5:78:25:15:f9:b2:e1:64:27:8d:80:b5:
56:d7:1a:9f:03:d0:55:f6:2b:60:88:c0:63:9b:ff:
ef:4b:11:a3:80:1a:0a:39:dc:0b:49:47:e3:57:c4:
be:90:28:b3:a8:4d:5a:20:68:e2:d9:64:1f:a3:44:
d8:60:8e:1e:30:a5:c1:7f:51:72:0c:a4:fa:03:fd:
d7:42:e6:33:fc:17:22:37:d9:d6:8e:d8:7f:29:f3:
59:c0:12:34:bb:4b:06:62:97:ff:bc:8a:14:c7:c2:
32:ac:88:11:2a:56:c8:5f:35:67:6b:fb:4a:b8:98:
fe:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:50:D2:C3:8E:76:6F:11:A8:E1:4F:76:16:12:F7:76:56:14:45:52
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/d1DSw452bxGo4U92FhL3dlYURVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.57.0-89.19.59.255
185.68.245.0/24
185.79.51.0/24
185.79.79.0/24
185.81.172.0/22
185.81.184.0/22
185.89.108.0/22
185.95.100.0/22
185.96.36.0/24
185.96.80.0/24
185.96.83.0/24
185.97.1.0/24
185.97.3.0/24
185.104.151.0/24
185.112.56.0/23
185.175.224.0/23
185.185.147.0/24
193.221.215.0/24
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
45:81:48:17:32:64:e7:09:d3:a2:a9:9a:2e:a6:66:e5:96:d0:
d2:5e:47:9e:e0:a8:9b:2c:48:57:89:62:7e:5a:7a:b9:51:08:
4a:a1:4d:87:ac:1a:a9:b5:1f:4c:56:76:db:bc:a3:b9:81:65:
99:66:f4:ed:cd:45:b3:0a:81:d1:0a:0c:c6:c4:de:f2:51:83:
94:de:79:3a:ee:e0:95:c3:7a:c4:2e:1a:0f:63:8b:8f:18:21:
85:38:3c:66:61:4c:7a:0a:d9:1e:0e:61:1a:bb:96:6a:de:cd:
4a:f5:12:bf:27:ad:fd:45:46:1f:23:c6:99:c1:76:59:d5:f7:
36:55:42:37:ae:69:dc:0f:d0:90:5f:d9:66:7d:6c:bd:4d:8a:
f4:f7:9c:63:9c:12:35:e1:1a:99:fd:f2:e5:78:ab:c7:a8:72:
48:7e:0c:72:fa:c6:44:67:9f:d6:60:79:8f:44:d8:3c:5e:06:
98:c5:d9:d0:90:4d:77:ac:44:0e:91:cf:f1:5f:2b:f4:90:f5:
4b:9f:d0:7b:7b:1a:57:d7:89:96:35:0d:bc:d4:f6:bc:49:96:
21:dd:2c:d4:d9:d0:12:95:80:a6:9c:1e:19:b0:1a:fc:fa:2f:
b3:48:c3:0e:f4:89:01:fc:32:f8:22:59:b9:25:16:1a:54:09:
fe:ba:36:94
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAYiXUuRnggp4GfW5oilM50RsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMwNjA3MTkyNjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzUwZDJjMzhlNzY2ZjExYThlMTRmNzYxNjEyZjc3NjU2MTQ0NTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7etzrCejdF2kERKz/pCDkMQ0W+k
BkrOgxklj74rIQ1r3V/XCZvCXdTkjZ+OK21+ZTxeM8ZVtVp/IbOtL42hw7VXmoqS
UCzZLZoxINQFChKBpGWVXb6Pei3o+8aJWCthnNdsoN+bNtf/L5mypFoS/s7PJDjX
BceZVUC1H2/gvAmcBomiZZYmRTfVeCUV+bLhZCeNgLVW1xqfA9BV9itgiMBjm//v
SxGjgBoKOdwLSUfjV8S+kCizqE1aIGji2WQfo0TYYI4eMKXBf1FyDKT6A/3XQuYz
/BciN9nWjth/KfNZwBI0u0sGYpf/vIoUx8IyrIgRKlbIXzVna/tKuJj+IQIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFHdQ0sOOdm8RqOFPdhYS93ZWFEVSMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvZDFEU3c0NTJieEdvNFU5MkZoTDNkbFlVUlZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwejAMAwQA
WRM5AwQCWRM4AwQAuUT1AwQAuU8zAwQAuU9PAwQCuVGsAwQCuVG4AwQCuVlsAwQC
uV9kAwQAuWAkAwQAuWBQAwQAuWBTAwQAuWEBAwQAuWEDAwQAuWiXAwQBuXA4AwQB
ua/gAwQAubmTAwQAwd3XAwQA1arfMA0GCSqGSIb3DQEBCwUAA4IBAQBFgUgXMmTn
CdOiqZoupmblltDSXkee4KibLEhXiWJ+Wnq5UQhKoU2HrBqptR9MVnbbvKO5gWWZ
ZvTtzUWzCoHRCgzGxN7yUYOU3nk67uCVw3rELhoPY4uPGCGFODxmYUx6CtkeDmEa
u5Zq3s1K9RK/J639RUYfI8aZwXZZ1fc2VUI3rmncD9CQX9lmfWy9TYr095xjnBI1
4RqZ/fLleKvHqHJIfgxy+sZEZ5/WYHmPRNg8XgaYxdnQkE13rEQOkc/xXyv0kPVL
n9B7expX14mWNQ281Pa8SZYh3SzU2dASlYCmnB4ZsBr8+i+zSMMO9IkB/DL4Ilm5
JRYaVAn+ujaU
Generated at Sun Jul 23 18:09:30 2023 by rpki-client on console-ams.rpki-client.org