Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/vlIs2azbi7NK1egLRmldqz8nI90.roa
File: vlIs2azbi7NK1egLRmldqz8nI90.roa (raw, json)
Hash identifier: HtBGltYcJCqHrbbhM5hsgVLlG2V4Y/T/zKqp5OITb+g=
Subject key identifier: BE:52:2C:D9:AC:DB:8B:B3:4A:D5:E8:0B:46:69:5D:AB:3F:27:23:DD
Certificate issuer: /CN=dd82de4f1304339fde527ba06033ca9e511171bd
Certificate serial: 01856D3877552BA4537DA7E53ABFAD8E2915
Authority key identifier: DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/vlIs2azbi7NK1egLRmldqz8nI90.roa
Signing time: Sun 01 Jan 2023 12:04:55 +0000
ROA not before: Sun 01 Jan 2023 12:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48551
IP address blocks: 195.114.4.0/24 maxlen: 24
195.114.5.0/24 maxlen: 24
195.114.9.0/24 maxlen: 24
195.114.8.0/24 maxlen: 24
45.159.196.0/24 maxlen: 24
45.159.197.0/24 maxlen: 24
45.159.199.0/24 maxlen: 24
45.159.198.0/24 maxlen: 24
185.236.37.0/24 maxlen: 24
185.236.36.0/24 maxlen: 24
185.236.39.0/24 maxlen: 24
157.119.190.0/24 maxlen: 24
157.119.190.0/23 maxlen: 23
157.119.191.0/24 maxlen: 24
157.119.188.0/24 maxlen: 24
45.94.252.0/24 maxlen: 24
103.216.63.0/24 maxlen: 24
103.216.62.0/24 maxlen: 24
103.216.60.0/24 maxlen: 24
103.216.61.0/24 maxlen: 24
45.94.255.0/24 maxlen: 24
45.94.254.0/24 maxlen: 24
185.86.182.0/24 maxlen: 24
185.86.181.0/24 maxlen: 24
185.86.180.0/24 maxlen: 24
2a0d:9500::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:77:55:2b:a4:53:7d:a7:e5:3a:bf:ad:8e:29:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd82de4f1304339fde527ba06033ca9e511171bd
Validity
Not Before: Jan 1 12:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be522cd9acdb8bb34ad5e80b46695dab3f2723dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:6a:01:29:07:09:65:b4:9f:26:2b:73:cf:
f9:46:04:c9:9a:8a:09:3f:5a:c7:fd:e2:a8:47:8b:
12:9f:9f:61:67:c0:d3:78:eb:f3:85:dd:49:bb:b2:
b8:a6:73:77:ef:08:39:b8:95:48:ff:7c:30:40:45:
0f:70:8d:27:27:09:db:2d:bc:a7:39:d1:e3:9e:3c:
82:ed:73:c1:84:32:21:83:b2:a4:e2:b4:8e:92:91:
55:20:8f:e6:bd:d4:15:f3:b2:23:21:3c:10:ae:78:
34:3e:8b:80:ad:14:f4:05:5c:87:62:a9:8b:4c:4a:
0d:bc:4a:8f:ae:75:bb:57:fa:65:87:b6:3c:e4:79:
32:83:17:70:e9:6f:98:03:c9:a8:57:3d:d8:32:e1:
b2:7c:3d:f2:90:4c:d3:fa:72:dd:4e:9d:9e:3c:e1:
a1:d1:94:6b:88:e9:d2:2f:9d:31:d5:e9:a8:fd:b0:
89:ac:b9:b1:3e:d6:b2:bb:76:79:a9:40:f0:42:c7:
dc:ec:78:1a:5b:4d:4c:e0:0e:10:c7:5d:71:1a:70:
85:c4:3a:91:8a:6e:86:9d:bc:db:1d:23:65:a6:c1:
27:b1:d6:c0:42:70:27:89:61:4b:82:36:d9:a0:dd:
ff:77:4e:a2:75:f2:23:0a:9d:ea:4e:2d:48:e7:a4:
6a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:52:2C:D9:AC:DB:8B:B3:4A:D5:E8:0B:46:69:5D:AB:3F:27:23:DD
X509v3 Authority Key Identifier:
keyid:DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/vlIs2azbi7NK1egLRmldqz8nI90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/3YLeTxMEM5_eUnugYDPKnlERcb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.252.0/24
45.94.254.0/23
45.159.196.0/22
103.216.60.0/22
157.119.188.0/24
157.119.190.0/23
185.86.180.0-185.86.182.255
185.236.36.0/23
185.236.39.0/24
195.114.4.0/23
195.114.8.0/23
IPv6:
2a0d:9500::/29
Signature Algorithm: sha256WithRSAEncryption
52:e8:2c:6e:b7:c2:da:6a:80:39:8d:76:42:3d:f1:90:63:3f:
70:3a:db:05:a0:2f:37:6c:96:e1:28:5c:91:e5:71:b4:90:fd:
07:9d:03:e5:51:96:d7:78:1c:a7:a7:cb:21:25:db:9e:72:c2:
04:21:05:6f:db:31:16:9c:ff:c2:95:31:b4:95:77:4c:5d:08:
8e:a2:ea:59:2e:dd:53:4b:ad:13:cb:9b:00:dd:f7:b3:2d:4e:
0c:ca:a7:7f:b7:9d:0a:66:67:e4:c0:e6:76:14:cf:d6:c0:cb:
5f:9c:4c:85:67:14:c4:1f:f2:3f:f7:c3:63:b3:a4:d8:94:b6:
e9:d4:af:4f:e7:21:24:c4:65:79:22:c3:23:dc:7f:7a:0d:c0:
51:fb:79:90:af:09:4c:50:b8:9e:2f:03:db:98:30:47:98:cf:
b9:d7:91:42:33:a2:95:ed:e2:3e:ae:4e:73:f5:e2:b8:a3:ba:
bc:65:0c:5d:10:29:15:9c:de:8f:51:5b:c8:63:26:2c:6f:89:
59:26:02:ed:cf:4c:f3:bc:a4:d2:a2:c5:ec:c0:d8:04:ab:46:
c9:b2:85:cf:e1:3d:34:63:4d:34:11:2f:b5:3b:aa:c3:e2:0a:
86:b7:75:c1:36:2b:40:48:dc:eb:15:0e:93:47:75:b5:31:89:
9b:c4:9f:3f
-----BEGIN CERTIFICATE-----
MIIFUDCCBDigAwIBAgISAYVtOHdVK6RTfaflOr+tjikVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODJkZTRmMTMwNDMzOWZkZTUyN2JhMDYwMzNjYTllNTEx
MTcxYmQwHhcNMjMwMTAxMTIwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTUyMmNkOWFjZGI4YmIzNGFkNWU4MGI0NjY5NWRhYjNmMjcyM2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtw1qASkHCWW0nyYrc8/5RgTJmooJ
P1rH/eKoR4sSn59hZ8DTeOvzhd1Ju7K4pnN37wg5uJVI/3wwQEUPcI0nJwnbLbyn
OdHjnjyC7XPBhDIhg7Kk4rSOkpFVII/mvdQV87IjITwQrng0PouArRT0BVyHYqmL
TEoNvEqPrnW7V/plh7Y85Hkygxdw6W+YA8moVz3YMuGyfD3ykEzT+nLdTp2ePOGh
0ZRriOnSL50x1emo/bCJrLmxPtayu3Z5qUDwQsfc7HgaW01M4A4Qx11xGnCFxDqR
im6GnbzbHSNlpsEnsdbAQnAniWFLgjbZoN3/d06idfIjCp3qTi1I56RqZwIDAQAB
o4ICXDCCAlgwHQYDVR0OBBYEFL5SLNms24uzStXoC0ZpXas/JyPdMB8GA1UdIwQY
MBaAFN2C3k8TBDOf3lJ7oGAzyp5REXG9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lMZVR4TUVNNV9lVW51Z1lEUEtubEVSY2IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9mOGJiMWItZDZmZC00OWExLTk2NTMt
ZmYxNTdiZWYwNjIxLzEvdmxJczJhemJpN05LMWVnTFJtbGRxejhuSTkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9mOGJiMWItZDZmZC00OWExLTk2NTMtZmYxNTdiZWYwNjIx
LzEvM1lMZVR4TUVNNV9lVW51Z1lEUEtubEVSY2IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHIGCCsGAQUFBwEHAQH/BGMwYTBQBAIAATBKAwQALV78AwQB
LV7+AwQCLZ/EAwQCZ9g8AwQAnXe8AwQBnXe+MAwDBAK5VrQDBAC5VrYDBAG57CQD
BAC57CcDBAHDcgQDBAHDcggwDQQCAAIwBwMFAyoNlQAwDQYJKoZIhvcNAQELBQAD
ggEBAFLoLG63wtpqgDmNdkI98ZBjP3A62wWgLzdsluEoXJHlcbSQ/QedA+VRltd4
HKenyyEl255ywgQhBW/bMRac/8KVMbSVd0xdCI6i6lku3VNLrRPLmwDd97MtTgzK
p3+3nQpmZ+TA5nYUz9bAy1+cTIVnFMQf8j/3w2OzpNiUtunUr0/nISTEZXkiwyPc
f3oNwFH7eZCvCUxQuJ4vA9uYMEeYz7nXkUIzopXt4j6uTnP14rijurxlDF0QKRWc
3o9RW8hjJixviVkmAu3PTPO8pNKixezA2ASrRsmyhc/hPTRjTTQRL7U7qsPiCoa3
dcE2K0BI3OsVDpNHdbUxiZvEnz8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:27 2023 by rpki-client on console-fra.rpki-client.org