Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/kXNa3Xu3OsumS_Qa_psHsOhPrU4.roa
File: kXNa3Xu3OsumS_Qa_psHsOhPrU4.roa (raw, json)
Hash identifier: tywbtizfWo3fk6yNWiRxJpJhzbMRGm0VwC0RYg3nz7Q=
Subject key identifier: 91:73:5A:DD:7B:B7:3A:CB:A6:4B:F4:1A:FE:9B:07:B0:E8:4F:AD:4E
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 01872CE13425395F7BA4004CAFAF42949042
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/kXNa3Xu3OsumS_Qa_psHsOhPrU4.roa
Signing time: Wed 29 Mar 2023 10:19:29 +0000
ROA not before: Wed 29 Mar 2023 10:19:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 83.229.76.0/22 maxlen: 32
185.125.192.0/22 maxlen: 32
119.13.192.0/20 maxlen: 32
83.229.104.0/22 maxlen: 32
93.114.10.0/23 maxlen: 32
93.114.12.0/22 maxlen: 32
121.91.80.0/21 maxlen: 32
92.43.84.0/22 maxlen: 32
95.215.36.0/22 maxlen: 32
185.90.243.0/24 maxlen: 32
45.142.92.0/22 maxlen: 32
89.19.42.0/23 maxlen: 32
203.166.152.0/22 maxlen: 32
103.204.124.0/22 maxlen: 32
203.166.148.0/22 maxlen: 32
89.249.51.0/24 maxlen: 32
94.176.112.0/20 maxlen: 32
209.20.176.0/21 maxlen: 32
185.38.102.0/24 maxlen: 32
185.131.220.0/24 maxlen: 32
93.180.192.0/20 maxlen: 32
93.115.12.0/23 maxlen: 32
43.240.140.0/22 maxlen: 32
89.34.78.0/23 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:e1:34:25:39:5f:7b:a4:00:4c:af:af:42:94:90:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: Mar 29 10:19:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91735add7bb73acba64bf41afe9b07b0e84fad4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f3:f1:0e:e9:9b:cd:c7:72:2a:7a:be:e3:44:
ab:88:de:09:15:c3:fb:a0:c5:6e:97:54:97:fb:e5:
c8:6a:0f:b1:ac:c8:92:b8:2e:dc:36:2e:53:42:a9:
15:e1:25:d9:78:8d:ec:98:65:3f:90:4c:58:f2:fb:
0a:bc:fd:d7:9d:3c:a1:1f:05:5d:be:67:23:6e:5d:
fe:36:0e:9a:00:c7:a4:d0:70:46:b4:b3:b0:0c:32:
9f:81:f2:af:02:bf:0c:45:32:03:6d:98:3a:09:88:
51:c7:cc:b0:ba:d7:69:85:aa:63:24:b5:6d:6f:06:
b0:30:2c:34:aa:b1:46:07:a8:af:cc:da:e9:56:11:
a2:b6:69:f4:29:0d:d1:05:86:43:3b:f6:4c:f1:06:
46:0d:bd:e5:cc:19:f9:cc:d4:00:d8:05:0f:c4:36:
e1:d4:74:0f:42:e3:a0:ab:b0:f8:51:e2:a3:e7:a6:
d0:8d:11:b3:4f:14:7d:8f:a7:60:34:22:86:03:f7:
21:8b:38:44:0b:b4:18:45:89:80:d0:ba:af:ed:31:
cc:2f:8b:98:4a:94:82:ff:ac:8e:88:87:f5:b8:28:
b5:b8:eb:90:38:50:80:35:f6:b5:50:e3:84:a5:b6:
d6:9f:07:78:c0:2d:3c:0a:15:61:1c:9e:a3:4c:3d:
db:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:73:5A:DD:7B:B7:3A:CB:A6:4B:F4:1A:FE:9B:07:B0:E8:4F:AD:4E
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/kXNa3Xu3OsumS_Qa_psHsOhPrU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.240.140.0/22
45.142.92.0/22
83.229.76.0/22
83.229.104.0/22
89.19.42.0/23
89.34.78.0/23
89.249.51.0/24
92.43.84.0/22
93.114.10.0-93.114.15.255
93.115.12.0/23
93.180.192.0/20
94.176.112.0/20
95.215.36.0/22
103.204.124.0/22
119.13.192.0/20
121.91.80.0/21
185.38.102.0/24
185.90.243.0/24
185.125.192.0/22
185.131.220.0/24
203.166.148.0-203.166.155.255
209.20.176.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:02:fb:01:e3:41:8a:dc:db:7c:fb:e5:9e:9f:40:51:f9:1f:
19:29:64:e5:64:5c:04:5f:21:5e:29:9d:8e:b8:60:e4:9e:d4:
00:61:37:bf:8a:39:ea:af:e4:48:d5:ee:0e:85:80:bd:25:ea:
0b:9d:c2:0f:ff:7c:3a:e0:44:0e:eb:b6:fb:22:26:cf:e2:9e:
1e:d4:28:c2:05:c4:c6:94:f4:76:01:fe:4b:9d:a3:b5:20:89:
dc:61:81:a3:4c:9a:34:8f:93:c2:a4:8e:5a:30:7d:64:2a:e6:
85:b8:72:bf:aa:9c:73:37:d7:df:c3:c7:69:82:54:c9:f3:9b:
b5:54:33:58:e2:cc:16:9a:d2:f3:0d:bd:08:5b:88:e7:2e:ae:
3f:f8:7c:fb:eb:50:77:28:09:90:21:e1:5d:28:69:e9:61:a0:
5a:87:35:91:b6:55:e9:5f:1e:d3:4d:9b:70:5f:76:6b:3d:1d:
67:c2:7a:c6:c7:08:f2:77:aa:3d:2b:cf:e3:b9:30:fb:f9:86:
15:20:52:cb:0b:32:87:45:b2:11:b3:5b:9a:5d:42:dd:5d:29:
f3:66:27:d0:e8:c4:81:4b:8b:74:4f:8b:e4:d2:2a:d9:fe:df:
30:9b:c5:82:db:00:b9:50:c4:0b:6f:b0:5b:b2:c0:37:15:f0:
3d:5b:64:58
-----BEGIN CERTIFICATE-----
MIIFkDCCBHigAwIBAgISAYcs4TQlOV97pABMr69ClJBCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiYTUxYTBiYzBmMGFmZWJiZjZkNWQ5MjdmZTFmOTgxNmY1
MjM1MmQwHhcNMjMwMzI5MTAxOTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTczNWFkZDdiYjczYWNiYTY0YmY0MWFmZTliMDdiMGU4NGZhZDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjfPxDumbzcdyKnq+40SriN4JFcP7
oMVul1SX++XIag+xrMiSuC7cNi5TQqkV4SXZeI3smGU/kExY8vsKvP3XnTyhHwVd
vmcjbl3+Ng6aAMek0HBGtLOwDDKfgfKvAr8MRTIDbZg6CYhRx8ywutdphapjJLVt
bwawMCw0qrFGB6ivzNrpVhGitmn0KQ3RBYZDO/ZM8QZGDb3lzBn5zNQA2AUPxDbh
1HQPQuOgq7D4UeKj56bQjRGzTxR9j6dgNCKGA/chizhEC7QYRYmA0Lqv7THML4uY
SpSC/6yOiIf1uCi1uOuQOFCANfa1UOOEpbbWnwd4wC08ChVhHJ6jTD3b3wIDAQAB
o4ICnDCCApgwHQYDVR0OBBYEFJFzWt17tzrLpkv0Gv6bB7DoT61OMB8GA1UdIwQY
MBaAFBulGgvA8K/rv21dkn/h+YFvUjUtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzZVYUM4RHdyLXVfYlYyU2YtSDVnVzlTTlMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80ZjIxMWUtNzlkNy00NTA0LTllYWQt
ODcxZjllZDcwOGUwLzEva1hOYTNYdTNPc3VtU19RYV9wc0hzT2hQclU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS80ZjIxMWUtNzlkNy00NTA0LTllYWQtODcxZjllZDcwOGUw
LzEvRzZVYUM4RHdyLXVfYlYyU2YtSDVnVzlTTlMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGxBggrBgEFBQcBBwEB/wSBoTCBnjCBmwQCAAEwgZQDBAIr
8IwDBAItjlwDBAJT5UwDBAJT5WgDBAFZEyoDBAFZIk4DBABZ+TMDBAJcK1QwDAME
AV1yCgMEBF1yAAMEAV1zDAMEBF20wAMEBF6wcAMEAl/XJAMEAmfMfAMEBHcNwAME
A3lbUAMEALkmZgMEALla8wMEArl9wAMEALmD3DAMAwQCy6aUAwQCy6aYAwQD0RSw
MA0GCSqGSIb3DQEBCwUAA4IBAQAOAvsB40GK3Nt8++Wen0BR+R8ZKWTlZFwEXyFe
KZ2OuGDkntQAYTe/ijnqr+RI1e4OhYC9JeoLncIP/3w64EQO67b7IibP4p4e1CjC
BcTGlPR2Af5LnaO1IIncYYGjTJo0j5PCpI5aMH1kKuaFuHK/qpxzN9ffw8dpglTJ
85u1VDNY4swWmtLzDb0IW4jnLq4/+Hz761B3KAmQIeFdKGnpYaBahzWRtlXpXx7T
TZtwX3ZrPR1nwnrGxwjyd6o9K8/juTD7+YYVIFLLCzKHRbIRs1uaXULdXSnzZifQ
6MSBS4t0T4vk0irZ/t8wm8WC2wC5UMQLb7BbssA3FfA9W2RY
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-fra.rpki-client.org