Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/uP4A0MiYDM0cEPZIjLCkCkjlJwg.roa
File: uP4A0MiYDM0cEPZIjLCkCkjlJwg.roa (raw, json)
Hash identifier: DjHqbjaeS9Xa1AWh0L4kBnzlj8XmaOZE8IYHvk1lnns=
Subject key identifier: B8:FE:00:D0:C8:98:0C:CD:1C:10:F6:48:8C:B0:A4:0A:48:E5:27:08
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 0186311AD82166D781323C717329B5DAEE12
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/uP4A0MiYDM0cEPZIjLCkCkjlJwg.roa
Signing time: Wed 08 Feb 2023 12:58:08 +0000
ROA not before: Wed 08 Feb 2023 12:58:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 93.122.84.0/22 maxlen: 22
93.122.80.0/22 maxlen: 22
93.122.88.0/22 maxlen: 22
93.122.92.0/22 maxlen: 22
93.122.28.0/22 maxlen: 22
93.122.32.0/22 maxlen: 22
93.122.36.0/22 maxlen: 22
93.122.44.0/22 maxlen: 22
93.122.40.0/22 maxlen: 22
93.122.48.0/22 maxlen: 22
93.122.52.0/22 maxlen: 22
93.122.56.0/22 maxlen: 22
93.122.60.0/22 maxlen: 22
93.122.64.0/22 maxlen: 22
93.122.68.0/22 maxlen: 22
93.122.72.0/21 maxlen: 21
93.122.16.0/22 maxlen: 22
93.122.20.0/22 maxlen: 22
93.122.24.0/22 maxlen: 22
78.140.64.0/24 maxlen: 24
78.140.64.0/21 maxlen: 21
78.140.67.0/24 maxlen: 24
78.140.66.0/24 maxlen: 24
78.140.68.0/24 maxlen: 24
78.140.65.0/24 maxlen: 24
78.140.64.0/18 maxlen: 18
78.140.72.0/22 maxlen: 22
78.140.72.0/24 maxlen: 24
78.140.76.0/24 maxlen: 24
78.140.76.0/22 maxlen: 22
78.140.81.0/24 maxlen: 24
78.140.80.0/23 maxlen: 23
78.140.80.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:1a:d8:21:66:d7:81:32:3c:71:73:29:b5:da:ee:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Feb 8 12:58:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8fe00d0c8980ccd1c10f6488cb0a40a48e52708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:38:2f:b5:61:0d:0d:be:5a:f9:c7:d1:ae:d3:
49:a3:71:d4:9e:8d:84:2b:85:ff:41:1b:e7:25:f9:
87:df:1c:1a:04:42:a3:ea:3f:5f:5f:36:3e:09:94:
e8:7b:86:75:f1:0a:3e:3d:9b:93:39:4c:69:84:1b:
ba:81:f5:6c:db:85:a6:ad:92:97:cd:39:57:9f:4f:
a2:f1:eb:2b:8b:51:71:bd:9f:35:b3:b5:a5:0e:d2:
19:bd:d5:4f:fb:9a:f6:7e:74:ed:ea:e3:68:2d:02:
c6:3e:e0:af:70:b9:83:b2:7b:3f:54:06:3f:07:94:
86:7e:cc:19:99:04:57:d6:74:4c:9d:c0:b7:00:0a:
d5:d9:37:e3:6c:1f:b9:4a:00:d7:9c:58:0f:32:8f:
13:8d:fd:bf:2b:46:a5:84:9d:61:c3:5a:f8:3b:82:
00:d8:81:c2:e0:5e:2e:fa:ef:74:48:18:16:e7:a8:
8d:13:77:64:a3:e3:c2:cb:ba:3a:24:f9:a8:e8:89:
4e:98:24:eb:2e:56:3d:be:d5:93:9d:8b:50:a8:f3:
af:47:54:c0:36:26:86:ed:82:9c:b3:0f:25:7c:33:
da:de:99:95:49:6b:55:d8:d6:05:4d:77:2a:a7:46:
f6:52:ae:5e:2a:83:12:b5:7b:63:a1:e7:c4:88:eb:
88:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FE:00:D0:C8:98:0C:CD:1C:10:F6:48:8C:B0:A4:0A:48:E5:27:08
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/uP4A0MiYDM0cEPZIjLCkCkjlJwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
93.122.16.0-93.122.95.255
Signature Algorithm: sha256WithRSAEncryption
5f:3c:84:34:90:bd:06:86:0f:4c:50:00:be:07:a2:75:00:1a:
bd:1f:4e:0a:15:67:e4:dd:0f:3c:08:fe:c7:99:b1:f2:10:c3:
70:35:57:28:36:bc:84:43:74:a4:88:a9:88:1a:a3:e8:14:4c:
ce:d9:54:aa:53:c2:58:9d:6f:19:0a:21:10:6f:51:29:a1:e4:
fd:12:a3:d1:e8:1b:c8:8e:59:7c:3d:34:c7:0e:71:cb:e8:ba:
e7:e3:56:d6:b0:14:2b:2c:fe:26:08:67:0c:04:06:36:e7:75:
89:3c:67:25:7a:94:9b:0a:bc:d4:0f:85:44:2c:dc:d2:eb:77:
a5:8a:91:57:0b:fe:80:ae:90:e6:07:24:41:bb:f7:10:6b:ea:
06:09:c3:23:04:c4:8e:bd:49:0f:ec:ef:70:d1:ab:0e:83:6d:
de:ee:3c:7c:24:5d:5a:c8:a3:3e:3f:06:f1:21:9c:7b:fa:c0:
eb:64:fe:d5:60:20:f3:bf:ce:78:79:ae:78:ae:f3:4e:75:70:
91:c8:3a:1e:cf:54:5f:c3:23:bf:27:7b:23:8f:73:8f:d8:f9:
d9:15:5f:ae:d6:3c:0a:39:4a:f4:8d:27:7e:14:22:dc:e0:ac:
64:2a:1f:6f:c7:de:8f:85:23:d0:91:87:8e:d7:98:0e:99:5f:
41:16:ef:6c
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYYxGtghZteBMjxxcym12u4SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMjMwNDQyZmVhZTlmYzI2YjhiZDg4N2ZhYTBlZDAyNzU4
MjdhNTgwHhcNMjMwMjA4MTI1ODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGZlMDBkMGM4OTgwY2NkMWMxMGY2NDg4Y2IwYTQwYTQ4ZTUyNzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDgvtWENDb5a+cfRrtNJo3HUno2E
K4X/QRvnJfmH3xwaBEKj6j9fXzY+CZToe4Z18Qo+PZuTOUxphBu6gfVs24WmrZKX
zTlXn0+i8esri1FxvZ81s7WlDtIZvdVP+5r2fnTt6uNoLQLGPuCvcLmDsns/VAY/
B5SGfswZmQRX1nRMncC3AArV2TfjbB+5SgDXnFgPMo8Tjf2/K0alhJ1hw1r4O4IA
2IHC4F4u+u90SBgW56iNE3dko+PCy7o6JPmo6IlOmCTrLlY9vtWTnYtQqPOvR1TA
NiaG7YKcsw8lfDPa3pmVSWtV2NYFTXcqp0b2Uq5eKoMStXtjoefEiOuIjwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFLj+ANDImAzNHBD2SIywpApI5ScIMB8GA1UdIwQY
MBaAFDsjBEL+rp/Ca4vYh/qg7QJ1gnpYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3lNRVF2NnVuOEpyaTlpSC1xRHRBbldDZWxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYTEwOTQtOWI3MC00MjUxLWI2OGYt
NzI2NzA3Mzc2MWQ0LzEvdVA0QTBNaVlETTBjRVBaSWpMQ2tDa2psSndnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8zYTEwOTQtOWI3MC00MjUxLWI2OGYtNzI2NzA3Mzc2MWQ0
LzEvT3lNRVF2NnVuOEpyaTlpSC1xRHRBbldDZWxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQGToxAMAwD
BARdehADBAVdekAwDQYJKoZIhvcNAQELBQADggEBAF88hDSQvQaGD0xQAL4HonUA
Gr0fTgoVZ+TdDzwI/seZsfIQw3A1Vyg2vIRDdKSIqYgao+gUTM7ZVKpTwlidbxkK
IRBvUSmh5P0So9HoG8iOWXw9NMcOccvouufjVtawFCss/iYIZwwEBjbndYk8ZyV6
lJsKvNQPhUQs3NLrd6WKkVcL/oCukOYHJEG79xBr6gYJwyMExI69SQ/s73DRqw6D
bd7uPHwkXVrIoz4/BvEhnHv6wOtk/tVgIPO/znh5rniu8051cJHIOh7PVF/DI78n
eyOPc4/Y+dkVX67WPAo5SvSNJ34UItzgrGQqH2/H3o+FI9CRh47XmA6ZX0EW72w=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org