Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/B6nUcSjIZkflmDpWKCyVbN8pcQA.roa
File: B6nUcSjIZkflmDpWKCyVbN8pcQA.roa (raw, json)
Hash identifier: QVDJV+ucbpOcDX9Oi9DLvshNNUP66D/MGW9V8LNwDRI=
Subject key identifier: 07:A9:D4:71:28:C8:66:47:E5:98:3A:56:28:2C:95:6C:DF:29:71:00
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01897270900047FA6CF24FA8A58A0859453E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/B6nUcSjIZkflmDpWKCyVbN8pcQA.roa
Signing time: Thu 20 Jul 2023 08:35:26 +0000
ROA not before: Thu 20 Jul 2023 08:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 212.192.56.0/22 maxlen: 24
212.192.63.0/24 maxlen: 24
212.192.60.0/24 maxlen: 24
212.192.61.0/24 maxlen: 24
195.19.172.0/22 maxlen: 24
195.19.168.0/22 maxlen: 24
195.208.80.0/22 maxlen: 24
195.208.88.0/22 maxlen: 24
195.208.86.0/23 maxlen: 24
195.208.92.0/22 maxlen: 24
193.232.204.0/23 maxlen: 24
62.76.164.0/24 maxlen: 24
212.193.184.0/22 maxlen: 24
212.193.188.0/22 maxlen: 24
212.192.195.0/24 maxlen: 24
212.192.196.0/22 maxlen: 24
193.232.88.0/22 maxlen: 24
193.232.220.0/23 maxlen: 24
193.232.222.0/24 maxlen: 24
194.190.210.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 06:34:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:70:90:00:47:fa:6c:f2:4f:a8:a5:8a:08:59:45:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jul 20 08:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07a9d47128c86647e5983a56282c956cdf297100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8e:1c:58:dd:ad:41:4f:0e:e4:af:4a:1c:3e:
2f:c9:6b:9e:43:27:b2:b1:ab:f1:78:4e:68:42:9a:
b3:33:3e:3d:ba:05:0b:cf:d0:5d:6a:8c:fd:44:10:
6f:d7:cb:c5:d5:89:ba:6a:cb:91:00:f7:eb:b7:06:
1f:0c:1e:bb:51:77:64:1d:4d:a1:94:3f:85:db:0d:
64:1c:b7:22:2c:a5:8d:75:71:91:bd:7a:8d:90:87:
3f:2f:16:bf:0e:e4:58:87:42:8b:ad:2e:f0:32:90:
c8:32:13:28:9b:af:4e:79:62:f6:9e:25:d5:56:d0:
ba:ec:b4:54:17:25:22:43:2d:6b:10:98:3d:0d:58:
60:62:b9:73:a6:60:2e:27:41:5e:9d:2f:8a:12:95:
e1:b2:0f:b5:37:f3:26:cc:41:9d:73:9e:b0:9b:f4:
55:b8:b4:f7:8c:7e:87:a2:b1:0b:b6:37:69:98:6d:
9a:a7:76:59:8f:bb:54:33:e6:af:8e:59:11:72:17:
bf:6e:8f:04:e5:d9:f4:37:80:42:be:d0:9c:04:f5:
52:c3:fb:7c:c9:06:88:99:96:15:4b:2d:25:8e:94:
8a:2b:81:73:be:e3:d2:4f:fc:d5:43:73:f1:94:95:
05:fc:c8:d2:65:14:00:4b:05:41:11:01:10:bc:bb:
bc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A9:D4:71:28:C8:66:47:E5:98:3A:56:28:2C:95:6C:DF:29:71:00
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/B6nUcSjIZkflmDpWKCyVbN8pcQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.164.0/24
193.232.88.0/22
193.232.204.0/23
193.232.220.0-193.232.222.255
194.190.210.0/23
195.19.168.0/21
195.208.80.0/22
195.208.86.0-195.208.95.255
212.192.56.0-212.192.61.255
212.192.63.0/24
212.192.195.0-212.192.199.255
212.193.184.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:cb:65:92:99:5a:ea:95:e7:79:77:f0:58:5e:5c:84:ef:50:
1d:2a:d2:82:e3:21:d0:ab:7d:dd:5f:0a:b5:12:04:92:0e:1f:
36:4c:19:48:9c:b3:5d:bd:22:58:4b:b7:52:50:2b:50:3a:3d:
de:20:07:91:aa:92:60:d9:88:0d:36:08:d0:e3:32:d2:d0:e9:
5f:7f:da:40:e2:8c:66:94:93:e8:a1:1a:ba:49:4b:76:3d:c1:
e7:1e:8a:2a:5b:c3:00:5c:3d:c5:b9:ee:d0:ca:ba:91:27:fd:
21:f9:d9:30:b3:07:9a:35:80:9b:af:86:fd:af:da:f6:ef:a1:
4f:42:b9:47:86:fb:86:18:70:10:29:2c:60:a9:05:68:a8:e1:
c2:6a:ee:ca:47:a9:6e:2e:b7:4d:96:fb:8a:04:08:d5:d6:53:
a5:19:c0:3c:9e:68:c8:65:05:b7:77:ec:ba:ed:26:a0:d0:44:
f1:12:de:4b:2a:cd:d1:2b:2a:d5:7a:ba:8b:76:73:67:ae:9e:
15:1b:1f:53:c0:54:88:15:b6:57:c5:f0:36:74:c5:a2:fe:98:
70:f3:67:b8:1e:35:47:2d:96:fd:7d:20:c7:ef:61:b9:36:18:
54:fa:56:59:63:c7:3a:05:8d:37:b9:83:0e:10:82:b2:00:9b:
8d:5f:a7:74
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgISAYlycJAAR/ps8k+opYoIWUU+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjMwNzIwMDgzNTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2E5ZDQ3MTI4Yzg2NjQ3ZTU5ODNhNTYyODJjOTU2Y2RmMjk3MTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA444cWN2tQU8O5K9KHD4vyWueQyey
savxeE5oQpqzMz49ugULz9Bdaoz9RBBv18vF1Ym6asuRAPfrtwYfDB67UXdkHU2h
lD+F2w1kHLciLKWNdXGRvXqNkIc/Lxa/DuRYh0KLrS7wMpDIMhMom69OeWL2niXV
VtC67LRUFyUiQy1rEJg9DVhgYrlzpmAuJ0FenS+KEpXhsg+1N/MmzEGdc56wm/RV
uLT3jH6HorELtjdpmG2ap3ZZj7tUM+avjlkRche/bo8E5dn0N4BCvtCcBPVSw/t8
yQaImZYVSy0ljpSKK4FzvuPST/zVQ3PxlJUF/MjSZRQASwVBEQEQvLu8zwIDAQAB
o4ICbDCCAmgwHQYDVR0OBBYEFAep1HEoyGZH5Zg6VigslWzfKXEAMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvQjZuVWNTaklaa2ZsbURwV0tDeVZiTjhwY1FBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGBBggrBgEFBQcBBwEB/wRyMHAwbgQCAAEwaAMEAD5MpAME
AsHoWAMEAcHozDAMAwQCwejcAwQAwejeAwQBwr7SAwQDwxOoAwQCw9BQMAwDBAHD
0FYDBAXD0EAwDAMEA9TAOAMEAdTAPAMEANTAPzAMAwQA1MDDAwQD1MDAAwQD1MG4
MA0GCSqGSIb3DQEBCwUAA4IBAQCby2WSmVrqled5d/BYXlyE71AdKtKC4yHQq33d
Xwq1EgSSDh82TBlInLNdvSJYS7dSUCtQOj3eIAeRqpJg2YgNNgjQ4zLS0Olff9pA
4oxmlJPooRq6SUt2PcHnHooqW8MAXD3Fue7QyrqRJ/0h+dkwsweaNYCbr4b9r9r2
76FPQrlHhvuGGHAQKSxgqQVoqOHCau7KR6luLrdNlvuKBAjV1lOlGcA8nmjIZQW3
d+y67Sag0ETxEt5LKs3RKyrVerqLdnNnrp4VGx9TwFSIFbZXxfA2dMWi/phw82e4
HjVHLZb9fSDH72G5NhhU+lZZY8c6BY03uYMOEIKyAJuNX6d0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org