Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/PuvEqBVA68QPqXmuUxReGW1Jm1I.roa
File: PuvEqBVA68QPqXmuUxReGW1Jm1I.roa (raw, json)
Hash identifier: vv96cdsCFXOvrKoWvFmpAX95sEiUBtC6szX9D0r6vQA=
Subject key identifier: 3E:EB:C4:A8:15:40:EB:C4:0F:A9:79:AE:53:14:5E:19:6D:49:9B:52
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0187D6B41FBA3A933B67AD1DB86D85A690D1
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/PuvEqBVA68QPqXmuUxReGW1Jm1I.roa
Signing time: Mon 01 May 2023 09:45:41 +0000
ROA not before: Mon 01 May 2023 09:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 24
87.107.28.0/22 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 24
87.107.148.0/22 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
87.107.92.0/22 maxlen: 24
87.107.104.0/21 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 24
81.12.32.0/21 maxlen: 24
81.12.40.0/21 maxlen: 24
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
81.12.60.0/22 maxlen: 24
81.12.72.0/21 maxlen: 24
81.12.80.0/20 maxlen: 24
81.12.96.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d6:b4:1f:ba:3a:93:3b:67:ad:1d:b8:6d:85:a6:90:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 1 09:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eebc4a81540ebc40fa979ae53145e196d499b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:38:2e:6e:1c:c8:64:ea:16:6a:0d:b3:4f:
50:df:76:28:42:d3:81:70:a8:5f:25:78:ea:5c:66:
94:e6:f6:96:8e:b5:90:c8:04:54:6d:30:5c:88:a4:
17:bb:1a:ed:0f:09:a2:df:48:0b:d6:79:f2:aa:8b:
54:a5:94:90:cb:03:8c:e0:30:95:ef:2f:5e:34:15:
3f:ef:d6:ad:74:2b:c5:42:89:77:2b:c6:fe:20:5b:
c0:b2:c5:b3:b8:79:d6:44:56:da:04:71:f7:aa:b3:
3e:14:2c:4e:91:99:3d:60:3a:74:19:df:ff:54:09:
1c:03:f3:ee:58:18:a9:94:c6:08:13:88:84:95:18:
f3:cf:97:37:ab:f6:6e:4a:44:f8:eb:02:f9:ca:6b:
79:68:cd:8c:df:b7:da:8a:af:89:03:ac:c8:80:9d:
4a:12:95:23:65:59:f1:01:b5:33:72:f2:bd:3f:d8:
4e:18:c9:74:58:57:28:34:ac:73:5d:20:95:77:95:
65:f0:00:10:ce:88:bb:fb:f9:c0:3f:18:9a:eb:62:
47:01:7f:f1:03:7a:25:7d:23:d8:6e:e3:13:c8:39:
d1:9d:c2:2f:4c:6d:39:44:08:e1:70:6d:9c:e5:df:
e3:49:64:2b:72:81:8d:c8:21:03:18:cc:01:38:47:
df:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EB:C4:A8:15:40:EB:C4:0F:A9:79:AE:53:14:5E:19:6D:49:9B:52
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/PuvEqBVA68QPqXmuUxReGW1Jm1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0/22
81.12.72.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0-87.107.111.255
87.107.136.0/21
87.107.148.0/22
Signature Algorithm: sha256WithRSAEncryption
36:42:f9:87:e6:62:7d:b5:e3:3d:db:84:44:e1:3e:53:3f:6d:
7b:3a:88:d7:92:5a:5b:9c:91:7d:94:a1:a6:10:3f:8c:ee:3a:
d6:9e:2d:5a:ea:a1:f6:e1:e0:46:4c:87:0e:e7:ad:9f:ed:f3:
db:0a:c5:8e:49:79:51:cb:fb:2d:b8:08:15:f3:fb:9b:f1:a4:
76:07:80:cb:3e:e2:91:76:41:90:14:2b:cf:0b:67:56:e8:d3:
30:cb:e8:40:16:d8:33:35:a1:d6:41:3e:71:b5:ed:66:a3:9e:
da:37:eb:bf:5c:18:b7:1a:3d:2e:29:7c:ed:ad:c7:98:77:49:
72:b9:32:c9:9a:d2:1d:8c:9a:e0:d4:be:81:da:c7:f5:33:07:
f6:97:0a:80:9e:dc:2a:95:15:14:c1:a1:c3:03:2f:57:db:0e:
7b:ba:fb:14:91:e4:72:b0:02:9c:66:02:d7:0c:78:a1:48:eb:
c8:6f:0b:9e:d0:ec:6e:f4:7a:38:45:5c:69:16:90:4b:63:00:
56:79:ef:24:dc:c3:29:bd:b3:a3:87:fa:69:0d:97:44:95:a6:
1a:59:10:d4:66:22:ac:84:6e:24:58:46:29:75:de:63:37:89:
c2:6e:f1:78:fd:8f:ab:46:97:5e:a0:38:25:f6:83:63:32:2c:
36:65:24:07
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgISAYfWtB+6OpM7Z60duG2FppDRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwNTAxMDk0NTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWViYzRhODE1NDBlYmM0MGZhOTc5YWU1MzE0NWUxOTZkNDk5YjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrE4Lm4cyGTqFmoNs09Q33YoQtOB
cKhfJXjqXGaU5vaWjrWQyARUbTBciKQXuxrtDwmi30gL1nnyqotUpZSQywOM4DCV
7y9eNBU/79atdCvFQol3K8b+IFvAssWzuHnWRFbaBHH3qrM+FCxOkZk9YDp0Gd//
VAkcA/PuWBiplMYIE4iElRjzz5c3q/ZuSkT46wL5ymt5aM2M37faiq+JA6zIgJ1K
EpUjZVnxAbUzcvK9P9hOGMl0WFcoNKxzXSCVd5Vl8AAQzoi7+/nAPxia62JHAX/x
A3olfSPYbuMTyDnRncIvTG05RAjhcG2c5d/jSWQrcoGNyCEDGMwBOEffawIDAQAB
o4ICkjCCAo4wHQYDVR0OBBYEFD7rxKgVQOvED6l5rlMUXhltSZtSMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvUHV2RXFCVkE2OFFQcVhtdVV4UmVHVzFKbTFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGnBggrBgEFBQcBBwEB/wSBlzCBlDCBkQQCAAEwgYoDBAM+
3HADBANRDAADBARRDCAwDAMEAVEMNgMEAVEMOAMEAlEMPDAMAwQDUQxIAwQHUQwA
AwQDV2sQMAwDBAJXaxwDBAFXayADBAJXayQwDAMEAldrLAMEAVdrMDAMAwQDV2tI
AwQDV2tQAwQCV2tcMAwDBAJXa2QDBARXa2ADBANXa4gDBAJXa5QwDQYJKoZIhvcN
AQELBQADggEBADZC+YfmYn214z3bhEThPlM/bXs6iNeSWluckX2UoaYQP4zuOtae
LVrqofbh4EZMhw7nrZ/t89sKxY5JeVHL+y24CBXz+5vxpHYHgMs+4pF2QZAUK88L
Z1bo0zDL6EAW2DM1odZBPnG17Wajnto3679cGLcaPS4pfO2tx5h3SXK5Msma0h2M
muDUvoHax/UzB/aXCoCe3CqVFRTBocMDL1fbDnu6+xSR5HKwApxmAtcMeKFI68hv
C57Q7G70ejhFXGkWkEtjAFZ57yTcwym9s6OH+mkNl0SVphpZENRmIqyEbiRYRil1
3mM3icJu8Xj9j6tGl16gOCX2g2MyLDZlJAc=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org