Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/4yXd8XUDlrDCULidpTwX63aAQSY.roa
File: 4yXd8XUDlrDCULidpTwX63aAQSY.roa (raw, json)
Hash identifier: HpN/P8lsCY6f1S/aC0iPlGxtTU3PFi+/47SxwbPUKGk=
Subject key identifier: E3:25:DD:F1:75:03:96:B0:C2:50:B8:9D:A5:3C:17:EB:76:80:41:26
Certificate issuer: /CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Certificate serial: 0185729EE4D0E2D91D3A343C77697D7ED099
Authority key identifier: 50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/4yXd8XUDlrDCULidpTwX63aAQSY.roa
Signing time: Mon 02 Jan 2023 13:14:53 +0000
ROA not before: Mon 02 Jan 2023 13:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8561
IP address blocks: 195.253.66.0/24 maxlen: 24
195.253.74.0/24 maxlen: 24
195.253.88.0/21 maxlen: 24
195.253.96.0/19 maxlen: 24
185.119.136.0/22 maxlen: 24
194.77.54.0/23 maxlen: 23
195.253.64.0/24 maxlen: 24
2a01:5b0:d::/48 maxlen: 48
2a01:5b0:3::/48 maxlen: 48
2a01:5b0:8::/46 maxlen: 48
2a01:5b0:10::/45 maxlen: 48
2a01:5b0:20::/43 maxlen: 48
2a01:5b0:6::/48 maxlen: 48
2a01:5b0:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Feb 2023 11:28:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:e4:d0:e2:d9:1d:3a:34:3c:77:69:7d:7e:d0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c1e426f58e42ae30e56cdb7ff4d8f9ddd85b30
Validity
Not Before: Jan 2 13:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e325ddf1750396b0c250b89da53c17eb76804126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:47:51:cb:5a:a2:b8:15:af:20:11:4c:b4:fc:
52:28:f2:dc:33:fa:78:13:f4:74:c2:77:22:7e:b6:
f3:99:d3:3b:23:0d:78:d2:91:bd:9f:94:c6:e6:8a:
d0:7f:db:66:18:47:43:45:d1:08:f8:aa:8d:2d:54:
25:2a:91:1a:97:2b:59:2d:63:70:a8:5d:af:a2:53:
69:11:a7:f5:d7:e9:8e:6b:3c:71:03:9c:33:cc:96:
81:70:e4:91:6a:6e:c8:4e:f6:13:15:66:c0:06:5e:
52:88:92:6a:78:ae:8b:34:6c:4a:c6:15:ee:4e:c3:
d5:6c:4f:5d:9d:a0:61:fc:b2:39:53:81:00:eb:33:
70:bc:db:ab:f6:20:82:4b:87:81:a6:91:1f:57:87:
26:ca:96:80:6a:68:52:d3:5d:a8:a3:28:55:c7:4a:
de:73:27:18:aa:f3:31:3f:e2:93:69:59:dd:ef:de:
5f:91:68:d6:dd:61:9c:90:0c:5a:e0:af:06:75:68:
c4:d9:cd:20:b3:94:4e:d5:26:33:c8:32:75:74:20:
5a:e9:cc:cd:a1:2c:c4:fb:6a:f1:78:13:fd:cc:9f:
54:a8:58:7e:3d:a5:0f:c2:d4:52:c5:f4:ef:5b:b5:
a1:da:2a:17:24:97:84:b8:92:f8:37:58:39:6a:8c:
32:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:25:DD:F1:75:03:96:B0:C2:50:B8:9D:A5:3C:17:EB:76:80:41:26
X509v3 Authority Key Identifier:
keyid:50:C1:E4:26:F5:8E:42:AE:30:E5:6C:DB:7F:F4:D8:F9:DD:D8:5B:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/4yXd8XUDlrDCULidpTwX63aAQSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/9c6dad-377a-444e-b0dc-063ce6cf460d/1/UMHkJvWOQq4w5Wzbf_TY-d3YWzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.136.0/22
194.77.54.0/23
195.253.64.0/24
195.253.66.0/24
195.253.74.0/24
195.253.88.0-195.253.127.255
IPv6:
2a01:5b0:3::-2a01:5b0:4:ffff:ffff:ffff:ffff:ffff
2a01:5b0:6::/48
2a01:5b0:8::/46
2a01:5b0:d::/48
2a01:5b0:10::/45
2a01:5b0:20::/43
Signature Algorithm: sha256WithRSAEncryption
51:f7:57:ac:3e:60:1b:18:47:95:e4:4d:8a:99:7f:82:51:b7:
92:35:77:8b:77:2a:36:3b:5a:fd:77:ae:94:11:25:eb:ad:f2:
6b:ea:58:c0:90:e5:8d:ed:48:d8:6e:c8:26:c6:7f:f4:2e:2f:
be:1d:c0:74:e0:1c:e1:24:51:6c:22:f4:51:85:e9:4e:d1:db:
83:50:47:25:67:76:62:a7:cd:aa:3b:d4:2e:aa:09:10:0f:ab:
f2:34:aa:80:34:41:96:05:e2:df:20:33:f9:4c:65:83:81:79:
9e:33:ac:fe:7b:84:a5:f1:78:cb:05:26:a3:55:54:7e:d5:36:
dc:96:45:3f:62:d9:10:a0:fa:c3:0f:ef:13:ee:11:1f:1f:3f:
e7:0c:aa:8e:2e:23:8d:68:01:98:d1:7a:49:03:05:58:67:33:
1b:29:9a:51:a5:b4:2b:c5:f5:1f:42:5f:83:09:1f:9d:7d:bf:
2a:10:2f:71:82:5f:f6:16:20:13:4b:dc:73:a4:96:26:d4:1e:
3f:6b:9c:34:59:f1:85:a7:25:bd:ce:82:6f:68:af:d9:d0:70:
12:46:b8:c4:13:c9:b2:92:49:44:11:18:82:a5:17:88:70:02:
0c:cd:69:1c:a0:0d:44:34:b9:5f:e0:31:53:5d:c0:bc:e4:75:
78:57:89:52
-----BEGIN CERTIFICATE-----
MIIFbTCCBFWgAwIBAgISAYVynuTQ4tkdOjQ8d2l9ftCZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwYzFlNDI2ZjU4ZTQyYWUzMGU1NmNkYjdmZjRkOGY5ZGRk
ODViMzAwHhcNMjMwMTAyMTMxNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzI1ZGRmMTc1MDM5NmIwYzI1MGI4OWRhNTNjMTdlYjc2ODA0MTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhUdRy1qiuBWvIBFMtPxSKPLcM/p4
E/R0wncifrbzmdM7Iw140pG9n5TG5orQf9tmGEdDRdEI+KqNLVQlKpEalytZLWNw
qF2volNpEaf11+mOazxxA5wzzJaBcOSRam7ITvYTFWbABl5SiJJqeK6LNGxKxhXu
TsPVbE9dnaBh/LI5U4EA6zNwvNur9iCCS4eBppEfV4cmypaAamhS012ooyhVx0re
cycYqvMxP+KTaVnd795fkWjW3WGckAxa4K8GdWjE2c0gs5RO1SYzyDJ1dCBa6czN
oSzE+2rxeBP9zJ9UqFh+PaUPwtRSxfTvW7Wh2ioXJJeEuJL4N1g5aowyOwIDAQAB
o4ICeTCCAnUwHQYDVR0OBBYEFOMl3fF1A5awwlC4naU8F+t2gEEmMB8GA1UdIwQY
MBaAFFDB5Cb1jkKuMOVs23/02Pnd2FswMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU1Ia0p2V09RcTR3NVd6YmZfVFktZDNZV3pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi85YzZkYWQtMzc3YS00NDRlLWIwZGMt
MDYzY2U2Y2Y0NjBkLzEvNHlYZDhYVURsckRDVUxpZHBUd1g2M2FBUVNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi85YzZkYWQtMzc3YS00NDRlLWIwZGMtMDYzY2U2Y2Y0NjBk
LzEvVU1Ia0p2V09RcTR3NVd6YmZfVFktZDNZV3pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGOBggrBgEFBQcBBwEB/wR/MH0wMgQCAAEwLAMEArl3iAME
AcJNNgMEAMP9QAMEAMP9QgMEAMP9SjAMAwQDw/1YAwQHw/0AMEcEAgACMEEwEgMH
ACoBBbAAAwMHACoBBbAABAMHACoBBbAABgMHAioBBbAACAMHACoBBbAADQMHAyoB
BbAAEAMHBSoBBbAAIDANBgkqhkiG9w0BAQsFAAOCAQEAUfdXrD5gGxhHleRNipl/
glG3kjV3i3cqNjta/XeulBEl663ya+pYwJDlje1I2G7IJsZ/9C4vvh3AdOAc4SRR
bCL0UYXpTtHbg1BHJWd2YqfNqjvULqoJEA+r8jSqgDRBlgXi3yAz+Uxlg4F5njOs
/nuEpfF4ywUmo1VUftU23JZFP2LZEKD6ww/vE+4RHx8/5wyqji4jjWgBmNF6SQMF
WGczGymaUaW0K8X1H0JfgwkfnX2/KhAvcYJf9hYgE0vcc6SWJtQeP2ucNFnxhacl
vc6Cb2iv2dBwEka4xBPJspJJRBEYgqUXiHACDM1pHKANRDS5X+AxU13AvOR1eFeJ
Ug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:09 2024 by rpki-client on console-fra.rpki-client.org