Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/wSgB098TxVMoRfqEW1Zjj9qollA.roa
File: wSgB098TxVMoRfqEW1Zjj9qollA.roa (raw, json)
Hash identifier: HSIwX4knwYOJLIAuBcw+wdTCIkdEmZ1SuUsDf1o6UyQ=
Subject key identifier: C1:28:01:D3:DF:13:C5:53:28:45:FA:84:5B:56:63:8F:DA:A8:96:50
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 018705EE5CD7B9207722555662247F71F57A
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/wSgB098TxVMoRfqEW1Zjj9qollA.roa
Signing time: Tue 21 Mar 2023 20:48:40 +0000
ROA not before: Tue 21 Mar 2023 20:48:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 195.149.87.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 Mar 2023 10:46:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:ee:5c:d7:b9:20:77:22:55:56:62:24:7f:71:f5:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Mar 21 20:48:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c12801d3df13c5532845fa845b56638fdaa89650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:51:d3:05:b2:30:ac:36:5b:db:ae:c1:16:44:
8b:1d:cf:a6:72:39:52:1f:45:fe:1c:da:ca:67:a5:
75:0b:38:18:78:48:a2:63:57:a0:c3:1b:ab:cb:2e:
ae:a9:9b:82:c4:c3:d6:b7:eb:da:17:ee:2b:84:68:
f3:6e:85:75:56:2d:e5:db:69:0c:a0:2a:19:f7:c4:
13:0f:24:eb:8d:6c:6d:05:23:fe:e7:98:e9:19:d7:
23:4a:2d:ba:81:29:d9:53:18:a0:20:11:ab:4f:75:
9f:f7:80:8b:cf:9a:9e:15:82:a7:b1:7a:40:07:1a:
58:28:a9:99:45:03:60:8d:df:8a:81:f8:ac:c8:24:
72:2c:ab:1d:8e:96:3f:3b:a0:44:8d:14:f0:4d:5b:
2f:0c:37:66:11:0b:ba:92:55:ea:f7:57:f7:3f:25:
54:4f:9a:5a:48:66:81:52:8e:33:73:bb:41:fa:5c:
35:26:4d:7c:54:3d:fe:96:75:af:a8:c7:c3:97:26:
14:0e:2a:1a:24:3b:59:1e:2c:54:ee:ec:ea:c3:7d:
ec:d2:b6:8d:49:65:37:2b:0e:35:eb:c7:84:03:48:
18:d2:d8:ac:d2:a8:c7:17:b2:45:10:9f:b8:34:4e:
4f:10:3f:f3:3f:e8:6a:47:5c:9e:16:35:b2:42:8b:
f1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:28:01:D3:DF:13:C5:53:28:45:FA:84:5B:56:63:8F:DA:A8:96:50
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/wSgB098TxVMoRfqEW1Zjj9qollA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.119.194.0/24
80.92.205.0/24
185.250.151.0/24
195.149.87.0/24
IPv6:
2a09:7c41::-2a09:7c42:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
62:62:45:cf:b8:d3:76:42:3b:9e:55:a8:58:22:21:1e:85:ae:
37:c3:14:a8:f2:15:15:5f:d7:62:9f:37:b4:a9:e1:bd:7d:90:
ce:41:e3:fc:49:39:2d:54:e5:95:2d:72:be:54:74:4b:f1:12:
4f:98:8b:6e:46:e0:f8:c0:ae:68:43:2a:7e:8b:f7:eb:7f:a5:
12:0f:1a:0a:79:c1:e9:a9:2d:87:f6:2b:9a:1b:74:f7:e0:1a:
f6:88:6a:b7:6d:c2:71:80:51:e5:0c:6d:d7:88:28:37:85:60:
02:6f:9e:9f:dd:ed:86:51:29:4a:9e:44:31:b6:09:fd:56:91:
6e:46:97:31:50:72:15:5d:25:65:1a:98:fb:71:3f:6b:6b:b9:
a4:40:a2:a5:8c:cf:15:47:ff:67:91:13:4a:62:3a:6c:1f:ae:
77:3f:dd:3b:84:d0:96:20:bf:8b:3c:22:d1:51:be:d2:57:8a:
38:08:6f:03:10:d1:2c:c7:f5:d7:80:87:14:ed:29:65:53:87:
1b:99:93:c2:88:1d:49:f7:02:76:da:3a:82:1c:fe:44:89:02:
91:1b:e3:45:24:51:6f:a5:a4:44:45:80:89:10:ca:1a:71:6b:
d2:a8:bc:d0:de:94:65:9d:7c:bd:65:0c:ce:f5:36:08:d0:fd:
c2:ba:ea:1d
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYcF7lzXuSB3IlVWYiR/cfV6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiODMwNjMwZjIzYjA3MGEyYjdiZGY1MjlmNzM5NDhjOTdl
YWNkNDAwHhcNMjMwMzIxMjA0ODQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTI4MDFkM2RmMTNjNTUzMjg0NWZhODQ1YjU2NjM4ZmRhYTg5NjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1HTBbIwrDZb267BFkSLHc+mcjlS
H0X+HNrKZ6V1CzgYeEiiY1egwxuryy6uqZuCxMPWt+vaF+4rhGjzboV1Vi3l22kM
oCoZ98QTDyTrjWxtBSP+55jpGdcjSi26gSnZUxigIBGrT3Wf94CLz5qeFYKnsXpA
BxpYKKmZRQNgjd+KgfisyCRyLKsdjpY/O6BEjRTwTVsvDDdmEQu6klXq91f3PyVU
T5paSGaBUo4zc7tB+lw1Jk18VD3+lnWvqMfDlyYUDioaJDtZHixU7uzqw33s0raN
SWU3Kw4168eEA0gY0tis0qjHF7JFEJ+4NE5PED/zP+hqR1yeFjWyQovxwwIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFMEoAdPfE8VTKEX6hFtWY4/aqJZQMB8GA1UdIwQY
MBaAFLuDBjDyOwcKK3vfUp9zlIyX6s1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMt
MTE5ZWZjYmIyMDIzLzEvd1NnQjA5OFR4Vk1vUmZxRVcxWmpqOXFvbGxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS9mNzZlMjAtNTg1OS00MTVkLTg2YjMtMTE5ZWZjYmIyMDIz
LzEvdTRNR01QSTdCd29yZTk5U24zT1VqSmZxelVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAeBAIAATAYAwQASnfCAwQA
UFzNAwQAufqXAwQAw5VXMBYEAgACMBAwDgMFACoJfEEDBQAqCXxCMA0GCSqGSIb3
DQEBCwUAA4IBAQBiYkXPuNN2QjueVahYIiEeha43wxSo8hUVX9dinze0qeG9fZDO
QeP8STktVOWVLXK+VHRL8RJPmItuRuD4wK5oQyp+i/frf6USDxoKecHpqS2H9iua
G3T34Br2iGq3bcJxgFHlDG3XiCg3hWACb56f3e2GUSlKnkQxtgn9VpFuRpcxUHIV
XSVlGpj7cT9ra7mkQKKljM8VR/9nkRNKYjpsH653P907hNCWIL+LPCLRUb7SV4o4
CG8DENEsx/XXgIcU7SllU4cbmZPCiB1J9wJ22jqCHP5EiQKRG+NFJFFvpaRERYCJ
EMoacWvSqLzQ3pRlnXy9ZQzO9TYI0P3Cuuod
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:28 2024 by rpki-client on console-ams.rpki-client.org