Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/fuWvkWU4vB1BTlKM3mgF5LCXwDI.roa
File: fuWvkWU4vB1BTlKM3mgF5LCXwDI.roa (raw, json)
Hash identifier: sVJpbX8qpwIveLTJ7nxhPd7jf0yJHJYAQl7ukaULIfo=
Subject key identifier: 7E:E5:AF:91:65:38:BC:1D:41:4E:52:8C:DE:68:05:E4:B0:97:C0:32
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0186EFA758B6EB0F41DF65A00FDFC87D6A0E
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/fuWvkWU4vB1BTlKM3mgF5LCXwDI.roa
Signing time: Fri 17 Mar 2023 12:59:27 +0000
ROA not before: Fri 17 Mar 2023 12:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62005
IP address blocks: 185.123.53.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:e::/48 maxlen: 48
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Apr 2023 07:59:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:a7:58:b6:eb:0f:41:df:65:a0:0f:df:c8:7d:6a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Mar 17 12:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ee5af916538bc1d414e528cde6805e4b097c032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ad:37:db:4b:bc:d7:78:8c:61:74:93:73:21:
54:01:4d:31:5a:87:ee:2c:1f:76:06:e3:e8:e0:2c:
0b:ce:9b:d8:85:25:76:5f:42:c5:b0:ee:fc:03:2f:
06:b6:74:34:9f:ac:08:e6:57:e3:3e:98:e5:64:fd:
2a:fd:7d:07:36:13:04:14:ce:c2:93:80:e1:76:42:
1d:26:2f:7d:1d:8f:f7:0d:0a:51:0e:a7:82:5c:53:
d9:9a:ae:72:3e:ea:26:d6:13:a6:ba:41:ee:4f:bd:
b3:3e:a2:7b:05:26:9d:4e:19:7d:a6:f7:90:c9:47:
e4:89:88:7a:e7:b6:e2:4c:11:4b:2d:1e:53:31:3a:
bd:a0:c9:f3:54:dd:73:48:03:18:db:8b:b2:4d:04:
ae:1c:b8:ca:9e:09:97:62:81:eb:14:8a:18:77:51:
34:0f:5f:9a:3b:80:5c:c3:a8:6e:cf:ea:22:e8:af:
8b:32:33:5a:4f:a4:28:91:c6:ce:a9:54:36:cb:ba:
35:d1:ca:65:75:ea:33:7a:3f:3c:73:86:4b:b7:e0:
d7:16:40:1f:dc:eb:27:da:10:69:c5:d2:59:d5:09:
78:9d:b1:66:2b:e6:81:71:1d:ea:f2:12:83:23:d3:
93:e9:56:70:fe:be:16:f9:8f:f2:b2:ad:52:37:dc:
04:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E5:AF:91:65:38:BC:1D:41:4E:52:8C:DE:68:05:E4:B0:97:C0:32
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/fuWvkWU4vB1BTlKM3mgF5LCXwDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.234.0/24
185.123.53.0/24
193.109.120.0/24
194.61.121.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:3:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:5::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::/48
2a10:1fc0:e::/48
2a10:1fc0:10::/48
Signature Algorithm: sha256WithRSAEncryption
b8:1a:1c:13:55:77:a6:c7:9c:25:28:db:2a:ed:d2:4e:48:f9:
c4:a5:6e:43:a1:07:e4:2b:d1:31:e8:a4:6c:77:a6:74:21:1a:
2b:10:8a:75:60:91:39:ec:1e:01:ec:ae:46:f1:85:5d:94:ea:
24:bc:31:2e:51:e0:01:31:d7:a4:33:73:4a:ab:05:c0:aa:1c:
f8:31:5e:c7:41:dc:75:63:b9:91:b7:e8:81:58:38:d5:0b:b7:
3a:f3:14:7c:32:f1:c1:35:84:c5:a7:0b:dc:75:63:ae:ca:b0:
2a:72:4d:a1:36:d5:c6:ce:dd:8f:03:e7:e1:a6:ed:df:a7:ea:
5c:57:81:2c:c3:a1:91:67:4f:f3:3a:5b:3b:9f:04:7b:ea:05:
ed:ef:0d:ed:35:c5:07:e9:20:e9:f2:2a:92:b9:99:a4:b3:c5:
90:10:57:bc:cb:c0:00:e6:23:8c:57:4f:a9:b0:8e:dd:de:29:
85:cd:83:e0:e2:b9:78:8b:8e:2b:57:8d:98:3b:ab:a1:88:e4:
b7:5a:c1:6f:4b:57:92:82:12:d7:c7:1d:f5:5a:88:57:1c:59:
47:c3:1b:fd:87:d3:30:02:e2:d8:40:8d:ec:2a:d5:dd:0b:12:
b9:1f:03:ac:af:c5:00:58:fc:b9:de:33:b8:7e:c6:07:09:4e:
6d:b4:ce:2c
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYbvp1i26w9B32WgD9/IfWoOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NzMyMGQwMzA5MzAxNzhlNmY3Y2VlZjkxZDJhYjg3ODRk
M2RjMTYwHhcNMjMwMzE3MTI1OTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZWU1YWY5MTY1MzhiYzFkNDE0ZTUyOGNkZTY4MDVlNGIwOTdjMDMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyq0320u813iMYXSTcyFUAU0xWofu
LB92BuPo4CwLzpvYhSV2X0LFsO78Ay8GtnQ0n6wI5lfjPpjlZP0q/X0HNhMEFM7C
k4DhdkIdJi99HY/3DQpRDqeCXFPZmq5yPuom1hOmukHuT72zPqJ7BSadThl9pveQ
yUfkiYh657biTBFLLR5TMTq9oMnzVN1zSAMY24uyTQSuHLjKngmXYoHrFIoYd1E0
D1+aO4Bcw6huz+oi6K+LMjNaT6QokcbOqVQ2y7o10cpldeozej88c4ZLt+DXFkAf
3Osn2hBpxdJZ1Ql4nbFmK+aBcR3q8hKDI9OT6VZw/r4W+Y/ysq1SN9wE0QIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFH7lr5FlOLwdQU5SjN5oBeSwl8AyMB8GA1UdIwQY
MBaAFJRzINAwkwF45vfO75HSq4eE09wWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEt
OGFjNGEyMTkzOGI0LzEvZnVXdmtXVTR2QjFCVGxLTTNtZ0Y1TENYd0RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEtOGFjNGEyMTkzOGI0
LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwHgQCAAEwGAMEAFvr6gME
ALl7NQMEAMFteAMEAMI9eTBSBAIAAjBMMBIDBwAqEB/AAAEDBwIqEB/AAAAwEgMH
ACoQH8AABQMHACoQH8AABgMHACoQH8AACAMHACoQH8AACwMHACoQH8AADgMHACoQ
H8AAEDANBgkqhkiG9w0BAQsFAAOCAQEAuBocE1V3psecJSjbKu3STkj5xKVuQ6EH
5CvRMeikbHemdCEaKxCKdWCROeweAeyuRvGFXZTqJLwxLlHgATHXpDNzSqsFwKoc
+DFex0HcdWO5kbfogVg41Qu3OvMUfDLxwTWExacL3HVjrsqwKnJNoTbVxs7djwPn
4abt36fqXFeBLMOhkWdP8zpbO58Ee+oF7e8N7TXFB+kg6fIqkrmZpLPFkBBXvMvA
AOYjjFdPqbCO3d4phc2D4OK5eIuOK1eNmDuroYjkt1rBb0tXkoIS18cd9VqIVxxZ
R8Mb/YfTMALi2ECN7CrV3QsSuR8DrK/FAFj8ud4zuH7GBwlObbTOLA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:23 2024 by rpki-client on console-fra.rpki-client.org