Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/16RLVLxI3uV-saQXoThmqEWEj0c.roa
File: 16RLVLxI3uV-saQXoThmqEWEj0c.roa (raw, json)
Hash identifier: lCMfuj+c94xgs+e7WnFw3c0HnnjGToVvjfsDVIfZ45E=
Subject key identifier: D7:A4:4B:54:BC:48:DE:E5:7E:B1:A4:17:A1:38:66:A8:45:84:8F:47
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018A8EDECF558BBF1473E65CE3730AD9E22D
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/16RLVLxI3uV-saQXoThmqEWEj0c.roa
Signing time: Wed 13 Sep 2023 14:08:01 +0000
ROA not before: Wed 13 Sep 2023 14:08:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3316
IP address blocks: 194.85.105.0/24 maxlen: 24
194.85.106.0/24 maxlen: 24
194.85.117.0/24 maxlen: 24
194.85.118.0/24 maxlen: 24
194.85.31.0/24 maxlen: 24
195.208.22.0/23 maxlen: 23
86.62.49.0/24 maxlen: 24
193.232.85.0/24 maxlen: 24
194.85.119.0/24 maxlen: 24
212.193.118.0/24 maxlen: 24
194.190.138.0/24 maxlen: 24
195.209.16.0/24 maxlen: 24
194.190.134.0/24 maxlen: 24
194.190.141.0/24 maxlen: 24
194.190.142.0/24 maxlen: 24
194.190.145.0/24 maxlen: 24
194.190.148.0/24 maxlen: 24
193.232.131.0/24 maxlen: 24
195.209.4.0/24 maxlen: 24
195.209.8.0/24 maxlen: 24
194.190.132.0/24 maxlen: 24
194.190.132.0/22 maxlen: 22
195.209.146.0/24 maxlen: 24
194.226.29.0/24 maxlen: 24
194.226.44.0/24 maxlen: 24
194.226.46.0/23 maxlen: 23
195.19.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:de:cf:55:8b:bf:14:73:e6:5c:e3:73:0a:d9:e2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Sep 13 14:08:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7a44b54bc48dee57eb1a417a13866a845848f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1c:6e:f1:89:80:4c:d2:88:b3:c1:bc:fe:d3:
61:51:60:a0:f8:9c:85:2d:a2:49:60:f7:a5:39:4e:
98:ab:9e:70:17:95:ab:bf:d6:d3:0f:9f:93:5e:21:
5a:a2:f4:40:8f:dc:ed:15:fb:75:d7:79:c2:84:77:
3a:6c:2c:e4:da:bc:b9:a1:4d:3c:63:b5:b0:0c:06:
95:c7:c3:4c:96:7a:2a:cc:8c:95:fa:d3:0b:cf:09:
bc:e6:91:d1:e1:b3:8b:f1:39:b2:87:07:0c:f7:58:
4a:e0:84:95:1d:48:7e:0e:bb:be:ac:d7:e2:1e:2d:
93:7d:6c:6b:ad:fc:36:52:a5:18:40:01:57:dd:ef:
45:cc:01:97:04:57:db:98:c9:43:e3:74:43:8b:bb:
26:17:e7:72:56:42:e2:6c:1f:8c:f9:13:70:22:b3:
3b:81:cc:70:f7:46:76:b0:b2:6e:35:03:4b:24:77:
e3:5b:52:b8:a6:75:37:15:ae:b2:47:ea:4a:f7:47:
7f:45:3f:af:cb:b6:6f:ed:4c:6d:80:40:32:a4:cb:
ba:e7:f3:d8:5f:97:f4:7f:0f:99:a8:98:93:b4:60:
47:f1:30:75:c2:a1:8e:16:e3:33:6b:0c:ac:75:02:
1e:86:ad:41:82:06:aa:7b:b2:3b:2e:05:c1:d4:12:
eb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A4:4B:54:BC:48:DE:E5:7E:B1:A4:17:A1:38:66:A8:45:84:8F:47
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/16RLVLxI3uV-saQXoThmqEWEj0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.49.0/24
193.232.85.0/24
193.232.131.0/24
194.85.31.0/24
194.85.105.0-194.85.106.255
194.85.117.0-194.85.119.255
194.190.132.0/22
194.190.138.0/24
194.190.141.0-194.190.142.255
194.190.145.0/24
194.190.148.0/24
194.226.29.0/24
194.226.44.0/24
194.226.46.0/23
195.19.26.0/24
195.208.22.0/23
195.209.4.0/24
195.209.8.0/24
195.209.16.0/24
195.209.146.0/24
212.193.118.0/24
Signature Algorithm: sha256WithRSAEncryption
61:19:a3:07:1f:e8:85:8c:cd:bf:3f:20:2b:36:0f:a4:19:e0:
86:dc:8e:66:44:2e:bd:bc:9b:67:19:47:95:1a:ff:c1:0c:61:
23:95:05:cb:e2:90:fb:2f:07:ed:21:7e:d4:3b:ae:42:66:78:
e1:fd:59:43:40:d6:69:0a:07:40:2b:23:fc:0b:bd:e7:dd:af:
95:90:8d:ff:26:3b:4a:5f:73:92:0d:99:03:0f:2a:15:8d:a9:
11:e4:bd:24:ba:ed:10:73:e6:53:3e:4b:49:ab:b1:e2:cd:1f:
cb:3e:ae:76:90:3f:cc:c3:c0:73:68:fe:47:f3:0c:61:f6:04:
ad:c3:d1:19:5b:2f:bb:1b:87:bc:d1:de:a1:ba:22:4b:28:05:
ae:59:14:f0:36:30:6d:e8:d6:67:b7:cc:3c:65:18:cf:73:b0:
a2:cb:7d:c5:b5:93:05:63:e9:9a:e2:f6:04:69:6c:e7:b6:71:
68:fa:cc:81:43:57:9d:0f:a0:85:4a:20:4d:1f:d6:08:53:33:
9c:e0:d9:7e:98:95:54:0c:40:1b:a0:fe:e2:8b:e3:2c:89:d7:
7f:78:2f:12:93:cf:c3:0c:86:8f:01:1f:01:dc:44:0d:30:04:
9b:22:b5:05:e4:8c:4f:82:27:51:7b:76:9a:7b:26:ff:ff:f4:
11:30:67:9d
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgISAYqO3s9Vi78Uc+Zc43MK2eItMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2
OTdhMDMwHhcNMjMwOTEzMTQwODAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkN2E0NGI1NGJjNDhkZWU1N2ViMWE0MTdhMTM4NjZhODQ1ODQ4ZjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhRxu8YmATNKIs8G8/tNhUWCg+JyF
LaJJYPelOU6Yq55wF5Wrv9bTD5+TXiFaovRAj9ztFft113nChHc6bCzk2ry5oU08
Y7WwDAaVx8NMlnoqzIyV+tMLzwm85pHR4bOL8TmyhwcM91hK4ISVHUh+Dru+rNfi
Hi2TfWxrrfw2UqUYQAFX3e9FzAGXBFfbmMlD43RDi7smF+dyVkLibB+M+RNwIrM7
gcxw90Z2sLJuNQNLJHfjW1K4pnU3Fa6yR+pK90d/RT+vy7Zv7UxtgEAypMu65/PY
X5f0fw+ZqJiTtGBH8TB1wqGOFuMzawysdQIehq1Bggaqe7I7LgXB1BLrvwIDAQAB
o4ICnjCCApowHQYDVR0OBBYEFNekS1S8SN7lfrGkF6E4ZqhFhI9HMB8GA1UdIwQY
MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt
Njg4ZDMzM2VkOWQ1LzEvMTZSTFZMeEkzdVYtc2FRWG9UaG1xRVdFajBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1
LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBABW
PjEDBADB6FUDBADB6IMDBADCVR8wDAMEAMJVaQMEAMJVajAMAwQAwlV1AwQDwlVw
AwQCwr6EAwQAwr6KMAwDBADCvo0DBADCvo4DBADCvpEDBADCvpQDBADC4h0DBADC
4iwDBAHC4i4DBADDExoDBAHD0BYDBADD0QQDBADD0QgDBADD0RADBADD0ZIDBADU
wXYwDQYJKoZIhvcNAQELBQADggEBAGEZowcf6IWMzb8/ICs2D6QZ4IbcjmZELr28
m2cZR5Ua/8EMYSOVBcvikPsvB+0hftQ7rkJmeOH9WUNA1mkKB0ArI/wLvefdr5WQ
jf8mO0pfc5INmQMPKhWNqRHkvSS67RBz5lM+S0mrseLNH8s+rnaQP8zDwHNo/kfz
DGH2BK3D0RlbL7sbh7zR3qG6IksoBa5ZFPA2MG3o1me3zDxlGM9zsKLLfcW1kwVj
6Zri9gRpbOe2cWj6zIFDV50PoIVKIE0f1ghTM5zg2X6YlVQMQBug/uKL4yyJ1394
LxKTz8MMho8BHwHcRA0wBJsitQXkjE+CJ1F7dpp7Jv//9BEwZ50=
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:05 2024 by rpki-client on console-ams.rpki-client.org