Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/sgvfnzELRQ_PyRccuw2F4mglj94.roa
File: sgvfnzELRQ_PyRccuw2F4mglj94.roa (raw, json)
Hash identifier: 0sGb3I7eJDNnetGIcnHE09AwF9ZqWcHtFejwCCaBRwk=
Subject key identifier: B2:0B:DF:9F:31:0B:45:0F:CF:C9:17:1C:BB:0D:85:E2:68:25:8F:DE
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 0186786B83A26325DBDEBA60A708E526BB13
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/sgvfnzELRQ_PyRccuw2F4mglj94.roa
Signing time: Wed 22 Feb 2023 09:19:17 +0000
ROA not before: Wed 22 Feb 2023 09:19:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 83.149.64.0/18 maxlen: 18
212.7.208.0/22 maxlen: 22
37.48.64.0/18 maxlen: 18
212.32.224.0/19 maxlen: 19
185.17.184.0/22 maxlen: 22
81.171.0.0/19 maxlen: 19
178.162.164.0/22 maxlen: 22
178.162.168.0/22 maxlen: 22
212.7.192.0/20 maxlen: 20
178.162.176.0/20 maxlen: 20
89.149.192.0/20 maxlen: 20
89.149.192.0/18 maxlen: 18
94.75.192.0/18 maxlen: 18
95.168.160.0/20 maxlen: 20
82.192.64.0/19 maxlen: 19
81.17.51.0/24 maxlen: 24
81.17.50.0/24 maxlen: 24
81.17.49.0/24 maxlen: 24
81.17.47.0/24 maxlen: 24
81.17.55.0/24 maxlen: 24
81.17.54.0/24 maxlen: 24
81.17.53.0/24 maxlen: 24
81.17.52.0/24 maxlen: 24
62.212.64.0/19 maxlen: 19
5.79.64.0/18 maxlen: 18
213.227.128.0/19 maxlen: 19
85.17.0.0/16 maxlen: 16
178.162.128.0/18 maxlen: 18
95.211.0.0/16 maxlen: 16
2001:1af8::/32 maxlen: 32
2001:1af8:8000::/36 maxlen: 36
2001:1af8:8000::/40 maxlen: 40
2001:1af8:8110::/44 maxlen: 44
2001:1af8:8100::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 25 Sep 2023 14:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:6b:83:a2:63:25:db:de:ba:60:a7:08:e5:26:bb:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Feb 22 09:19:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b20bdf9f310b450fcfc9171cbb0d85e268258fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d1:ce:ae:ee:2a:21:1b:1d:f8:af:a7:86:57:
3f:09:b3:4f:06:08:9b:b0:ab:03:48:67:c3:5a:6c:
bf:97:f6:df:2f:bd:15:c6:eb:ac:d6:2e:b3:85:35:
80:15:87:cc:ea:de:c1:7f:e7:2c:32:d8:af:d8:d3:
ea:cd:50:91:ee:29:09:ea:a0:e4:99:3d:94:4d:b5:
e7:ab:eb:84:3d:3e:ea:95:84:55:e9:f9:69:c6:1c:
bc:42:ea:70:ba:d3:57:f8:24:ec:97:04:60:00:ec:
fc:8a:66:fb:c7:28:d6:84:13:4d:c8:21:ed:fb:7c:
8c:90:ab:c4:ec:30:3f:e5:d0:6f:95:73:5c:d6:07:
b8:59:69:b9:ff:25:9f:fb:d7:90:bf:09:78:08:af:
1e:06:1a:4a:d3:3e:b2:0c:cc:53:94:8f:9d:7b:68:
96:5a:9c:e6:f9:ef:bb:89:62:c1:1d:4f:f2:ec:04:
24:cf:5a:3b:0b:87:5f:8d:5d:21:13:99:9e:1a:f9:
8d:a1:2f:da:e7:4b:e3:72:9b:58:2e:21:db:e4:52:
25:c0:95:24:81:01:f2:d4:27:e1:ac:4e:da:6b:9a:
3b:ba:de:47:14:d0:00:53:34:b1:d4:44:83:63:a9:
e6:fc:e4:91:4b:64:26:52:de:f6:ad:69:3e:24:d7:
ff:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0B:DF:9F:31:0B:45:0F:CF:C9:17:1C:BB:0D:85:E2:68:25:8F:DE
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/sgvfnzELRQ_PyRccuw2F4mglj94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.79.64.0/18
37.48.64.0/18
62.212.64.0/19
81.17.47.0/24
81.17.49.0-81.17.55.255
81.171.0.0/19
82.192.64.0/19
83.149.64.0/18
85.17.0.0/16
89.149.192.0/18
94.75.192.0/18
95.168.160.0/20
95.211.0.0/16
178.162.128.0/18
185.17.184.0/22
212.7.192.0-212.7.211.255
212.32.224.0/19
213.227.128.0/19
IPv6:
2001:1af8::/32
Signature Algorithm: sha256WithRSAEncryption
77:9a:1a:48:bb:38:cc:c8:a9:5e:bd:e3:09:a4:3e:13:46:d9:
31:15:7c:92:ae:97:56:86:c1:96:10:ef:18:79:ca:4a:8b:42:
e3:d4:6d:b0:91:33:2f:8f:e0:ec:e3:cd:a7:2c:22:36:8c:2b:
a3:49:a4:88:59:3e:5a:bf:b3:eb:50:d6:89:54:a2:5b:5e:92:
34:bf:02:b8:e4:c5:04:20:83:ee:a4:68:c9:d9:80:2f:78:5d:
4f:b2:40:bb:0a:55:f3:e9:90:a3:be:8f:b9:04:50:e6:70:7e:
da:da:3d:e6:75:46:ca:1f:70:1c:4c:c7:33:d9:ba:83:f9:8a:
26:9b:a9:c2:44:81:0c:b0:58:aa:6d:21:8a:8f:36:41:72:74:
7a:e1:54:8b:68:05:5f:a9:f2:ab:9e:17:ba:fb:da:d5:2b:32:
22:a5:20:aa:d8:0f:ad:f3:95:e7:98:dd:0d:b4:7e:76:ff:e2:
8f:7e:04:c5:77:d9:10:be:17:e3:e6:82:73:0f:b0:52:ad:2e:
de:63:7a:83:71:42:6d:69:8c:99:8b:db:28:f4:35:cc:45:21:
74:17:20:24:98:f2:7b:0a:57:ab:fb:e1:52:f5:a8:35:42:80:
a1:f7:12:a3:f5:45:a3:1e:15:97:b4:8e:5e:cf:6e:cb:ae:f9:
f0:9c:18:3a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAYZ4a4OiYyXb3rpgpwjlJrsTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZDczMDRjMWI1OWRjMjI3MzFiYjUzZWZmNWE4NGVkOWEz
MDYxNGMwHhcNMjMwMjIyMDkxOTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjBiZGY5ZjMxMGI0NTBmY2ZjOTE3MWNiYjBkODVlMjY4MjU4ZmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9HOru4qIRsd+K+nhlc/CbNPBgib
sKsDSGfDWmy/l/bfL70Vxuus1i6zhTWAFYfM6t7Bf+csMtiv2NPqzVCR7ikJ6qDk
mT2UTbXnq+uEPT7qlYRV6flpxhy8QupwutNX+CTslwRgAOz8imb7xyjWhBNNyCHt
+3yMkKvE7DA/5dBvlXNc1ge4WWm5/yWf+9eQvwl4CK8eBhpK0z6yDMxTlI+de2iW
Wpzm+e+7iWLBHU/y7AQkz1o7C4dfjV0hE5meGvmNoS/a50vjcptYLiHb5FIlwJUk
gQHy1CfhrE7aa5o7ut5HFNAAUzSx1ESDY6nm/OSRS2QmUt72rWk+JNf/TwIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFLIL358xC0UPz8kXHLsNheJoJY/eMB8GA1UdIwQY
MBaAFCfXMEwbWdwicxu1Pv9ahO2aMGFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjljd1RCdFozQ0p6RzdVLV8xcUU3Wm93WVV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9jMTNlMTItZTUwZC00MzM4LThhMmYt
ZmZmYjVhNGU3NjJhLzEvc2d2Zm56RUxSUV9QeVJjY3V3MkY0bWdsajk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9jMTNlMTItZTUwZC00MzM4LThhMmYtZmZmYjVhNGU3NjJh
LzEvSjljd1RCdFozQ0p6RzdVLV8xcUU3Wm93WVV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjCBgAQCAAEwegMEBgVP
QAMEBiUwQAMEBT7UQAMEAFERLzAMAwQAURExAwQDUREwAwQFUasAAwQFUsBAAwQG
U5VAAwMAVREDBAZZlcADBAZeS8ADBARfqKADAwBf0wMEBrKigAMEArkRuDAMAwQG
1AfAAwQC1AfQAwQF1CDgAwQF1eOAMA0EAgACMAcDBQAgARr4MA0GCSqGSIb3DQEB
CwUAA4IBAQB3mhpIuzjMyKleveMJpD4TRtkxFXySrpdWhsGWEO8YecpKi0Lj1G2w
kTMvj+Ds482nLCI2jCujSaSIWT5av7PrUNaJVKJbXpI0vwK45MUEIIPupGjJ2YAv
eF1PskC7ClXz6ZCjvo+5BFDmcH7a2j3mdUbKH3AcTMcz2bqD+Yomm6nCRIEMsFiq
bSGKjzZBcnR64VSLaAVfqfKrnhe6+9rVKzIipSCq2A+t85XnmN0NtH52/+KPfgTF
d9kQvhfj5oJzD7BSrS7eY3qDcUJtaYyZi9so9DXMRSF0FyAkmPJ7Cler++FS9ag1
QoCh9xKj9UWjHhWXtI5ez27LrvnwnBg6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org