Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/LrESM9Qb1r4WXvySqUoXAA-G95E.roa
File: LrESM9Qb1r4WXvySqUoXAA-G95E.roa (raw, json)
Hash identifier: /ccjdoxOCFMLZ+g1QzQeS7B3tR+XTvR6+Spx+IZXHh4=
Subject key identifier: 2E:B1:12:33:D4:1B:D6:BE:16:5E:FC:92:A9:4A:17:00:0F:86:F7:91
Certificate issuer: /CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Certificate serial: 0186FFF626B595FC6B4958A8F2F008DE80FF
Authority key identifier: B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/LrESM9Qb1r4WXvySqUoXAA-G95E.roa
Signing time: Mon 20 Mar 2023 16:59:27 +0000
ROA not before: Mon 20 Mar 2023 16:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15547
IP address blocks: 81.88.176.0/20 maxlen: 20
81.88.176.0/21 maxlen: 21
194.12.16.0/20 maxlen: 20
213.230.56.0/21 maxlen: 21
213.230.52.0/22 maxlen: 22
86.111.128.0/20 maxlen: 20
185.50.220.0/22 maxlen: 22
92.62.176.0/20 maxlen: 20
185.17.176.0/22 maxlen: 22
31.31.48.0/20 maxlen: 20
213.221.128.0/19 maxlen: 19
195.162.160.0/22 maxlen: 22
195.162.164.0/23 maxlen: 23
77.242.160.0/20 maxlen: 20
185.44.196.0/22 maxlen: 22
195.162.168.0/21 maxlen: 21
195.162.167.0/24 maxlen: 24
195.162.176.0/20 maxlen: 20
178.237.80.0/20 maxlen: 20
185.17.108.0/22 maxlen: 22
217.79.192.0/20 maxlen: 20
2a03:4380::/32 maxlen: 32
2a02:26a0::/29 maxlen: 29
2001:14a8::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 Mar 2023 09:12:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:f6:26:b5:95:fc:6b:49:58:a8:f2:f0:08:de:80:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e67fcb0bdc6001d8cf7073c649eb9819fc5eb8
Validity
Not Before: Mar 20 16:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eb11233d41bd6be165efc92a94a17000f86f791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a7:db:5d:ff:3b:d7:fd:91:92:e2:b9:c6:0f:
b1:c9:80:ef:b8:db:28:4a:9d:62:25:dd:db:a4:26:
df:67:6c:99:c6:f5:fb:80:ec:26:01:ba:56:ca:03:
20:61:12:90:10:e2:f5:cf:ed:91:62:51:60:15:eb:
ca:89:52:58:8b:84:b4:97:25:f3:3d:a9:74:91:a4:
5a:29:9e:93:0e:1a:04:ab:a1:ff:8b:5d:43:4d:17:
d4:5a:d6:da:16:65:a1:e9:12:5b:63:37:40:48:b1:
da:b8:05:e6:61:29:0e:46:d4:9a:f8:53:c7:ce:ce:
3f:24:14:3d:5c:9f:9e:d3:f8:9c:e8:4a:a0:c2:38:
88:cb:25:b2:d7:60:c5:89:d2:b4:8b:aa:e9:21:39:
97:5d:a6:ca:dc:e0:47:d7:47:8d:c5:41:31:5b:ed:
a9:f2:6e:0a:63:80:3d:b4:93:83:e7:ba:52:82:16:
e6:d5:b6:4f:2c:23:89:ed:5c:f2:71:53:3b:b4:07:
cb:a9:6f:14:67:fe:bb:50:79:53:9e:37:36:a6:54:
ad:11:15:4b:e6:e1:d9:21:2c:f4:d6:8c:e8:5f:d2:
c5:89:02:96:82:ae:7c:4d:8d:de:54:38:05:b8:9a:
6c:23:16:f7:1a:85:d9:a5:d8:16:d4:80:ce:a4:a3:
f6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B1:12:33:D4:1B:D6:BE:16:5E:FC:92:A9:4A:17:00:0F:86:F7:91
X509v3 Authority Key Identifier:
keyid:B9:E6:7F:CB:0B:DC:60:01:D8:CF:70:73:C6:49:EB:98:19:FC:5E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/LrESM9Qb1r4WXvySqUoXAA-G95E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/0dbe56-3daa-4a64-925a-fa71ae05dc3f/1/ueZ_ywvcYAHYz3BzxknrmBn8Xrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.48.0/20
77.242.160.0/20
81.88.176.0/20
86.111.128.0/20
92.62.176.0/20
178.237.80.0/20
185.17.108.0/22
185.17.176.0/22
185.44.196.0/22
185.50.220.0/22
194.12.16.0/20
195.162.160.0-195.162.165.255
195.162.167.0-195.162.191.255
213.221.128.0/19
213.230.52.0-213.230.63.255
217.79.192.0/20
IPv6:
2001:14a8::/32
2a02:26a0::/29
2a03:4380::/32
Signature Algorithm: sha256WithRSAEncryption
2b:18:18:79:02:b6:8e:64:69:7d:df:b4:3f:96:59:f0:51:3a:
32:bd:bf:26:d2:c0:07:b6:ca:e2:a5:64:50:6a:3a:bc:cc:e3:
8a:40:57:ae:da:09:3d:4f:0b:4c:da:f2:27:6f:ca:c3:5c:84:
c4:b8:bc:3c:f9:e5:71:7b:1d:da:36:cd:fb:da:fb:92:ae:1b:
08:63:41:4b:12:6b:f3:e3:8d:98:02:42:00:54:70:45:c8:73:
94:40:91:b6:59:6e:40:d0:cf:bb:e5:c7:91:46:cf:b6:3c:54:
ff:ff:e9:26:c1:5c:4d:f1:8d:9a:5d:fb:92:c4:4b:33:cc:e2:
ae:52:d4:59:29:ae:44:2c:bc:10:cc:e0:1f:71:21:3b:b9:38:
bd:2f:ea:f1:03:0a:01:f4:30:9a:4f:23:2f:a3:70:10:b8:9b:
7f:c2:f7:89:1f:66:e3:ed:f8:14:a1:00:06:60:a0:80:99:5c:
81:38:18:b0:7c:26:ce:32:ca:59:3f:7a:1d:72:40:52:85:ec:
93:00:9c:98:07:33:06:49:26:5d:d0:45:32:50:94:93:ae:3e:
31:93:2b:93:c7:3c:63:0a:a6:ca:13:82:de:5b:09:ec:b3:55:
a6:0b:54:f8:00:64:5f:48:e1:a4:f0:36:d7:6e:c0:4a:34:80:
f3:5e:06:7d
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgISAYb/9ia1lfxrSVio8vAI3oD/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZTY3ZmNiMGJkYzYwMDFkOGNmNzA3M2M2NDllYjk4MTlm
YzVlYjgwHhcNMjMwMzIwMTY1OTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWIxMTIzM2Q0MWJkNmJlMTY1ZWZjOTJhOTRhMTcwMDBmODZmNzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvafbXf871/2RkuK5xg+xyYDvuNso
Sp1iJd3bpCbfZ2yZxvX7gOwmAbpWygMgYRKQEOL1z+2RYlFgFevKiVJYi4S0lyXz
Pal0kaRaKZ6TDhoEq6H/i11DTRfUWtbaFmWh6RJbYzdASLHauAXmYSkORtSa+FPH
zs4/JBQ9XJ+e0/ic6EqgwjiIyyWy12DFidK0i6rpITmXXabK3OBH10eNxUExW+2p
8m4KY4A9tJOD57pSghbm1bZPLCOJ7VzycVM7tAfLqW8UZ/67UHlTnjc2plStERVL
5uHZISz01ozoX9LFiQKWgq58TY3eVDgFuJpsIxb3GoXZpdgW1IDOpKP2ewIDAQAB
o4ICmzCCApcwHQYDVR0OBBYEFC6xEjPUG9a+Fl78kqlKFwAPhveRMB8GA1UdIwQY
MBaAFLnmf8sL3GAB2M9wc8ZJ65gZ/F64MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWVaX3l3dmNZQUhZejNCenhrbnJtQm44WHJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC8wZGJlNTYtM2RhYS00YTY0LTkyNWEt
ZmE3MWFlMDVkYzNmLzEvTHJFU005UWIxcjRXWHZ5U3FVb1hBQS1HOTVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC8wZGJlNTYtM2RhYS00YTY0LTkyNWEtZmE3MWFlMDVkYzNm
LzEvdWVaX3l3dmNZQUhZejNCenhrbnJtQm44WHJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGwBggrBgEFBQcBBwEB/wSBoDCBnTB+BAIAATB4AwQEHx8w
AwQETfKgAwQEUViwAwQEVm+AAwQEXD6wAwQEsu1QAwQCuRFsAwQCuRGwAwQCuSzE
AwQCuTLcAwQEwgwQMAwDBAXDoqADBAHDoqQwDAMEAMOipwMEBsOigAMEBdXdgDAM
AwQC1eY0AwQG1eYAAwQE2U/AMBsEAgACMBUDBQAgARSoAwUDKgImoAMFACoDQ4Aw
DQYJKoZIhvcNAQELBQADggEBACsYGHkCto5kaX3ftD+WWfBROjK9vybSwAe2yuKl
ZFBqOrzM44pAV67aCT1PC0za8idvysNchMS4vDz55XF7Hdo2zfva+5KuGwhjQUsS
a/PjjZgCQgBUcEXIc5RAkbZZbkDQz7vlx5FGz7Y8VP//6SbBXE3xjZpd+5LESzPM
4q5S1FkprkQsvBDM4B9xITu5OL0v6vEDCgH0MJpPIy+jcBC4m3/C94kfZuPt+BSh
AAZgoICZXIE4GLB8Js4yylk/eh1yQFKF7JMAnJgHMwZJJl3QRTJQlJOuPjGTK5PH
PGMKpsoTgt5bCeyzVaYLVPgAZF9I4aTwNtduwEo0gPNeBn0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:09 2024 by rpki-client on console-ams.rpki-client.org