Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/A_fUD1_pEuvzx3f3NtesbXqBcgw.roa
File: A_fUD1_pEuvzx3f3NtesbXqBcgw.roa (raw, json)
Hash identifier: sZvYVEAlfwu4OU0zNjehnSWWtaMj3dy6BAW6LdK5Roc=
Subject key identifier: 03:F7:D4:0F:5F:E9:12:EB:F3:C7:77:F7:36:D7:AC:6D:7A:81:72:0C
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018580E83E58AF0FF289F161013212400E6B
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/A_fUD1_pEuvzx3f3NtesbXqBcgw.roa
Signing time: Thu 05 Jan 2023 07:49:41 +0000
ROA not before: Thu 05 Jan 2023 07:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/23 maxlen: 23
87.107.50.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 22
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/22 maxlen: 22
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 22
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 21
87.107.122.0/24 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 21
62.220.104.0/21 maxlen: 21
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.24.0/22 maxlen: 22
81.12.48.0/22 maxlen: 22
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:80:e8:3e:58:af:0f:f2:89:f1:61:01:32:12:40:0e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 5 07:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03f7d40f5fe912ebf3c777f736d7ac6d7a81720c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c9:fb:59:0d:14:ac:48:83:f4:0a:ee:61:b3:
3e:ae:16:f4:bf:c5:ab:06:65:a8:81:8b:5e:4d:f1:
1e:4f:b0:33:63:3c:45:1d:67:e7:c2:6a:a2:9a:49:
9e:8b:6a:51:44:99:05:c6:16:ba:b7:e0:d1:b2:9e:
aa:6a:c7:a7:77:17:ed:28:5e:5d:80:16:7e:12:91:
b6:fb:db:bd:fd:7b:1c:e5:e3:52:62:d8:17:0b:cc:
0c:bc:37:cd:27:48:34:1f:ee:b0:72:94:70:e4:97:
a8:1a:08:c1:19:00:5c:3d:6a:f1:76:73:4e:b5:51:
00:51:69:a4:7a:f1:36:e2:80:09:50:af:5c:5e:60:
b3:9e:59:c3:f1:0d:45:8d:a4:0d:09:42:b6:29:8d:
59:ba:b7:f9:51:75:98:f2:0f:a6:a5:a7:39:6d:c5:
34:a5:36:09:ce:53:8b:31:b5:3a:47:da:fe:0f:35:
24:d3:37:3a:53:45:0b:33:6e:56:48:05:53:c9:cf:
2d:eb:47:4c:2a:d7:f4:ae:d2:aa:63:61:0b:a1:91:
60:f1:0d:dc:29:f5:ee:64:46:db:6c:b9:e6:0b:88:
df:4f:f6:5d:9d:b6:7b:80:a5:41:41:41:a3:6c:46:
1a:a4:8e:38:77:71:2e:fd:c4:d3:4c:01:c9:ca:7d:
91:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F7:D4:0F:5F:E9:12:EB:F3:C7:77:F7:36:D7:AC:6D:7A:81:72:0C
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/A_fUD1_pEuvzx3f3NtesbXqBcgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0/21
81.12.8.0-81.12.27.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:8d:d7:62:ad:a8:00:e6:17:a5:b4:72:12:c3:71:68:66:12:
83:1c:13:86:2c:f9:96:e9:9b:90:a9:f2:12:fb:49:6c:0f:03:
bf:bf:da:25:e2:3b:1d:2d:eb:1a:4f:1a:80:87:d6:fb:63:57:
6e:13:c5:92:79:02:c3:d0:1c:1a:4f:29:ee:20:c3:db:b7:c8:
b2:04:5a:6d:33:03:2a:46:fc:60:e2:7a:9f:6a:7a:98:03:4d:
b5:d2:b0:d8:f8:b5:30:ae:53:8c:d5:d1:aa:e5:d2:e6:c3:5b:
85:28:99:d8:2c:a8:9d:ed:35:21:c9:d0:85:76:cc:b0:ba:21:
93:e1:d4:d6:b4:b6:a5:c9:31:3a:38:aa:2d:a8:32:91:18:0a:
fc:4e:db:21:92:dc:05:df:9a:bc:2b:3a:c2:d4:db:f2:2e:6f:
78:47:c2:93:f8:a6:e5:c1:d4:6e:87:e4:4b:d6:32:94:cb:fa:
70:48:69:a3:e2:f7:56:c0:67:7a:86:34:70:a4:69:41:e0:76:
d5:a7:97:38:e0:f5:1f:a3:98:5a:b6:7a:dc:07:c1:53:3f:71:
44:8e:35:cf:04:57:8d:c8:ec:3c:cf:0c:a4:1b:e2:d9:1a:51:
25:fa:7c:f3:4f:5f:63:2e:33:08:a6:31:8f:cf:1e:77:30:20:
f7:5e:16:eb
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgISAYWA6D5Yrw/yifFhATISQA5rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwMTA1MDc0OTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2Y3ZDQwZjVmZTkxMmViZjNjNzc3ZjczNmQ3YWM2ZDdhODE3MjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcn7WQ0UrEiD9AruYbM+rhb0v8Wr
BmWogYteTfEeT7AzYzxFHWfnwmqimkmei2pRRJkFxha6t+DRsp6qasendxftKF5d
gBZ+EpG2+9u9/Xsc5eNSYtgXC8wMvDfNJ0g0H+6wcpRw5JeoGgjBGQBcPWrxdnNO
tVEAUWmkevE24oAJUK9cXmCznlnD8Q1FjaQNCUK2KY1Zurf5UXWY8g+mpac5bcU0
pTYJzlOLMbU6R9r+DzUk0zc6U0ULM25WSAVTyc8t60dMKtf0rtKqY2ELoZFg8Q3c
KfXuZEbbbLnmC4jfT/ZdnbZ7gKVBQUGjbEYapI44d3Eu/cTTTAHJyn2R9QIDAQAB
o4ICljCCApIwHQYDVR0OBBYEFAP31A9f6RLr88d39zbXrG16gXIMMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvQV9mVUQxX3BFdXZ6eDNmM050ZXNiWHFCY2d3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4DBAQ+
3GADBAM+3HgwDAMEA1EMCAMEAlEMGDAMAwQEUQwwAwQBUQw0AwQBUQw6AwQCV2sY
AwQBV2siAwQCV2soMAwDBAFXazIDBAFXazQDBAJXa0QDBAJXa1gDBAJXa2AwDAME
BFdrcAMEAVdrdDAMAwQDV2t4AwQDV2uAAwQCV2uoAwQAV2utAwQCuTyIMA0GCSqG
SIb3DQEBCwUAA4IBAQDNjddiragA5heltHISw3FoZhKDHBOGLPmW6ZuQqfIS+0ls
DwO/v9ol4jsdLesaTxqAh9b7Y1duE8WSeQLD0BwaTynuIMPbt8iyBFptMwMqRvxg
4nqfanqYA0210rDY+LUwrlOM1dGq5dLmw1uFKJnYLKid7TUhydCFdsywuiGT4dTW
tLalyTE6OKotqDKRGAr8TtshktwF35q8KzrC1NvyLm94R8KT+KblwdRuh+RL1jKU
y/pwSGmj4vdWwGd6hjRwpGlB4HbVp5c44PUfo5hatnrcB8FTP3FEjjXPBFeNyOw8
zwykG+LZGlEl+nzzT19jLjMIpjGPzx53MCD3Xhbr
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org