Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/foUU77XzIDFoCP_Ue53Hu9G97M0.roa
File: foUU77XzIDFoCP_Ue53Hu9G97M0.roa (raw, json)
Hash identifier: 5xDbJndmJ+B8yxX4whVJLMNLoTrJ17zmqMKhrvTE+TM=
Subject key identifier: 7E:85:14:EF:B5:F3:20:31:68:08:FF:D4:7B:9D:C7:BB:D1:BD:EC:CD
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 018AA79C073FC44F8BA4CD946E47BB485111
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/foUU77XzIDFoCP_Ue53Hu9G97M0.roa
Signing time: Mon 18 Sep 2023 09:25:35 +0000
ROA not before: Mon 18 Sep 2023 09:25:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 83.144.64.0/19 maxlen: 19
83.144.64.0/18 maxlen: 18
31.178.0.0/16 maxlen: 16
83.144.96.0/19 maxlen: 19
31.178.0.0/15 maxlen: 15
91.150.192.0/20 maxlen: 20
91.150.192.0/19 maxlen: 19
91.150.208.0/20 maxlen: 20
188.93.164.0/22 maxlen: 22
188.93.160.0/21 maxlen: 21
188.93.160.0/22 maxlen: 22
84.10.0.0/17 maxlen: 17
213.134.160.0/20 maxlen: 20
213.134.160.0/19 maxlen: 19
84.10.0.0/16 maxlen: 16
213.134.176.0/20 maxlen: 20
95.158.64.0/18 maxlen: 18
85.222.64.0/18 maxlen: 18
85.222.0.0/18 maxlen: 18
85.222.0.0/17 maxlen: 17
81.18.192.0/20 maxlen: 20
81.18.192.0/21 maxlen: 21
194.187.40.0/22 maxlen: 22
81.18.200.0/21 maxlen: 21
81.18.208.0/21 maxlen: 21
81.18.208.0/20 maxlen: 20
81.18.216.0/21 maxlen: 21
212.76.32.0/20 maxlen: 20
212.76.32.0/19 maxlen: 19
212.76.48.0/20 maxlen: 20
31.187.0.0/18 maxlen: 18
31.187.0.0/19 maxlen: 19
31.187.32.0/19 maxlen: 19
178.73.32.0/19 maxlen: 19
178.73.0.0/18 maxlen: 18
178.73.0.0/19 maxlen: 19
94.75.64.0/19 maxlen: 19
195.34.208.0/22 maxlen: 22
94.75.64.0/18 maxlen: 18
89.72.0.0/13 maxlen: 13
31.186.192.0/19 maxlen: 19
87.207.0.0/16 maxlen: 16
92.244.32.0/20 maxlen: 20
92.244.32.0/19 maxlen: 19
92.244.48.0/20 maxlen: 20
94.75.96.0/19 maxlen: 19
94.172.0.0/17 maxlen: 17
77.236.0.0/20 maxlen: 20
77.236.0.0/19 maxlen: 19
89.64.0.0/13 maxlen: 13
94.172.0.0/16 maxlen: 16
77.236.16.0/20 maxlen: 20
84.10.128.0/17 maxlen: 17
94.172.128.0/17 maxlen: 17
89.64.0.0/12 maxlen: 12
193.47.158.0/23 maxlen: 23
193.47.160.0/24 maxlen: 24
31.179.0.0/16 maxlen: 16
83.175.176.0/20 maxlen: 20
83.175.176.0/21 maxlen: 21
83.175.184.0/21 maxlen: 21
87.206.0.0/16 maxlen: 16
87.206.0.0/15 maxlen: 15
2001:4050::/32 maxlen: 32
2001:4050::/33 maxlen: 33
2001:4050:8000::/33 maxlen: 33
2a02:a300::/28 maxlen: 28
2a02:a310::/28 maxlen: 28
2a02:a300::/27 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:9c:07:3f:c4:4f:8b:a4:cd:94:6e:47:bb:48:51:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Sep 18 09:25:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e8514efb5f320316808ffd47b9dc7bbd1bdeccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:79:0d:8e:14:fa:59:2b:3c:03:66:4b:5c:4d:
9d:45:11:d8:2c:8b:68:c9:b1:f5:c8:3d:3f:d9:0c:
16:42:0c:a1:9e:ff:11:3e:8a:d0:8b:98:b6:10:fd:
05:7f:85:5a:06:c3:4f:a7:cf:da:2a:e8:ef:cf:39:
f6:3b:dd:cb:c8:6e:69:b6:24:64:97:3b:7c:2f:3d:
f4:c9:88:86:3a:73:1d:4e:54:a6:b4:a6:32:74:5c:
88:44:87:fb:71:3d:0c:60:25:92:64:31:4b:b7:07:
53:65:cd:1e:24:47:4e:85:7b:5d:6f:09:13:43:b8:
9f:9b:7e:9e:0f:cd:c8:8d:f3:da:70:73:0e:48:02:
0e:cf:7e:5d:7f:e9:61:3d:bf:2e:fc:2d:7e:ab:31:
09:95:70:0a:3a:30:44:5b:cf:b1:ce:50:58:7c:c7:
16:3d:11:d9:07:23:17:2d:8e:d4:b8:23:a1:0c:c2:
06:13:84:30:83:53:ad:25:2b:22:e9:d7:ca:81:4c:
59:21:15:f6:ad:75:62:c1:40:5c:3d:14:af:08:6a:
06:15:c1:07:bd:31:02:b0:21:63:82:d6:ba:89:4a:
c7:26:f9:1c:8a:66:6e:90:e6:11:13:d4:f6:ff:61:
ed:41:32:e5:9a:d2:bf:07:b9:d4:b0:3d:ca:4c:a9:
dc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:14:EF:B5:F3:20:31:68:08:FF:D4:7B:9D:C7:BB:D1:BD:EC:CD
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/foUU77XzIDFoCP_Ue53Hu9G97M0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.178.0.0/15
31.186.192.0/19
31.187.0.0/18
77.236.0.0/19
81.18.192.0/19
83.144.64.0/18
83.175.176.0/20
84.10.0.0/16
85.222.0.0/17
87.206.0.0/15
89.64.0.0/12
91.150.192.0/19
92.244.32.0/19
94.75.64.0/18
94.172.0.0/16
95.158.64.0/18
178.73.0.0/18
188.93.160.0/21
193.47.158.0-193.47.160.255
194.187.40.0/22
195.34.208.0/22
212.76.32.0/19
213.134.160.0/19
IPv6:
2001:4050::/32
2a02:a300::/27
Signature Algorithm: sha256WithRSAEncryption
73:03:23:e0:db:7e:98:54:92:95:be:0e:aa:06:19:5a:fc:e7:
85:62:93:69:a6:e9:8f:89:0c:20:08:9b:a3:89:41:87:c5:3c:
b4:51:91:9a:c3:4d:3f:84:db:5b:87:f0:af:bb:1a:dd:4d:b9:
e3:9f:38:72:8f:5c:d2:c2:a0:23:3d:b2:16:8c:92:6f:78:e2:
90:04:5b:b2:a2:35:e1:73:46:1d:0b:88:8d:2d:23:8e:9f:cf:
98:0a:a2:8f:9e:02:45:06:a7:04:1d:64:9b:92:3b:ae:bd:ac:
83:97:31:84:5e:95:eb:f9:3d:65:a5:e9:67:45:da:4d:e1:63:
3a:6a:a0:80:03:6b:6f:a0:9c:59:46:21:6e:69:66:b4:04:30:
b8:fa:a5:ff:ac:04:0b:3b:3d:25:ef:16:f6:e2:e1:6a:12:c8:
9e:9e:93:99:c6:7c:13:c4:f8:e9:a7:7e:18:5d:f1:63:77:85:
5f:2e:f7:78:be:82:83:ba:c2:0a:66:42:6b:7a:a3:85:cc:f1:
d1:48:5b:47:dd:f2:4c:13:cf:11:e2:98:88:55:b2:42:e2:0d:
65:4d:61:03:27:b1:bd:58:8a:47:d0:cd:80:0e:d9:ca:a1:da:
d5:49:13:77:47:40:12:6b:5a:75:8b:28:53:88:a6:5b:2f:b5:
c5:99:62:55
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAYqnnAc/xE+LpM2Ubke7SFERMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MTQ3YzhiM2YzNzg1MGU5ZjkwNzQ5OTM4NDVjNGUwNjlm
OGVmZTIwHhcNMjMwOTE4MDkyNTM1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTg1MTRlZmI1ZjMyMDMxNjgwOGZmZDQ3YjlkYzdiYmQxYmRlY2NkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3kNjhT6WSs8A2ZLXE2dRRHYLIto
ybH1yD0/2QwWQgyhnv8RPorQi5i2EP0Ff4VaBsNPp8/aKujvzzn2O93LyG5ptiRk
lzt8Lz30yYiGOnMdTlSmtKYydFyIRIf7cT0MYCWSZDFLtwdTZc0eJEdOhXtdbwkT
Q7ifm36eD83IjfPacHMOSAIOz35df+lhPb8u/C1+qzEJlXAKOjBEW8+xzlBYfMcW
PRHZByMXLY7UuCOhDMIGE4Qwg1OtJSsi6dfKgUxZIRX2rXViwUBcPRSvCGoGFcEH
vTECsCFjgta6iUrHJvkcimZukOYRE9T2/2HtQTLlmtK/B7nUsD3KTKnc/wIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFH6FFO+18yAxaAj/1Hudx7vRvezNMB8GA1UdIwQY
MBaAFCQUfIs/N4UOn5B0mThFxOBp+O/iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEt
YjM1MzViNGNhNTBmLzEvZm9VVTc3WHpJREZvQ1BfVWU1M0h1OUc5N00wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEtYjM1MzViNGNhNTBm
LzEvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHABggrBgEFBQcBBwEB/wSBsDCBrTCBlAQCAAEwgY0DAwEf
sgMEBR+6wAMEBh+7AAMEBU3sAAMEBVESwAMEBlOQQAMEBFOvsAMDAFQKAwQHVd4A
AwMBV84DAwRZQAMEBVuWwAMEBVz0IAMEBl5LQAMDAF6sAwQGX55AAwQGskkAAwQD
vF2gMAwDBAHBL54DBADBL6ADBALCuygDBALDItADBAXUTCADBAXVhqAwFAQCAAIw
DgMFACABQFADBQUqAqMAMA0GCSqGSIb3DQEBCwUAA4IBAQBzAyPg236YVJKVvg6q
Bhla/OeFYpNppumPiQwgCJujiUGHxTy0UZGaw00/hNtbh/CvuxrdTbnjnzhyj1zS
wqAjPbIWjJJveOKQBFuyojXhc0YdC4iNLSOOn8+YCqKPngJFBqcEHWSbkjuuvayD
lzGEXpXr+T1lpelnRdpN4WM6aqCAA2tvoJxZRiFuaWa0BDC4+qX/rAQLOz0l7xb2
4uFqEsienpOZxnwTxPjpp34YXfFjd4VfLvd4voKDusIKZkJreqOFzPHRSFtH3fJM
E88R4piIVbJC4g1lTWEDJ7G9WIpH0M2ADtnKodrVSRN3R0ASa1p1iyhTiKZbL7XF
mWJV
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:59 2024 by rpki-client on console-fra.rpki-client.org