Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/kTIR82r7hjCet7SSHT7_p_-EKkk.roa
File: kTIR82r7hjCet7SSHT7_p_-EKkk.roa (raw, json)
Hash identifier: biLmOxVhsl/C+G1mqxi5qYx1snFGKt73zuVS6rW7wLU=
Subject key identifier: 91:32:11:F3:6A:FB:86:30:9E:B7:B4:92:1D:3E:FF:A7:FF:84:2A:49
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0189AD71DC0E797B08CBCB9091F48BEBA21D
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/kTIR82r7hjCet7SSHT7_p_-EKkk.roa
Signing time: Mon 31 Jul 2023 19:34:27 +0000
ROA not before: Mon 31 Jul 2023 19:34:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 24
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 24
87.107.112.0/22 maxlen: 24
87.107.106.0/23 maxlen: 24
87.107.108.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 24
62.220.104.0/21 maxlen: 24
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.48.0/22 maxlen: 24
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ad:71:dc:0e:79:7b:08:cb:cb:90:91:f4:8b:eb:a2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jul 31 19:34:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=913211f36afb86309eb7b4921d3effa7ff842a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:88:e4:1d:26:f3:76:3c:b7:fe:62:58:89:11:
75:74:c2:a9:fc:5f:2c:84:7d:59:50:02:32:da:0f:
7d:db:46:dc:bc:cd:17:3d:88:83:fb:36:e0:a6:4a:
13:1f:8f:34:30:68:f8:9a:e1:59:24:ab:58:0a:44:
a0:19:9a:e9:0c:0e:24:e6:49:6e:5c:dd:2c:bf:c5:
70:75:eb:a0:a2:1e:15:79:02:be:f3:7c:d2:9a:dc:
cf:79:32:9b:d6:39:fe:eb:72:8a:af:d8:3c:eb:44:
39:f7:1c:17:56:57:0d:54:bc:b3:3b:52:8b:35:a1:
98:c3:8a:72:35:52:15:1f:95:f8:a9:23:01:c7:64:
b1:4e:71:c7:8f:b0:ad:19:1f:79:3c:51:c7:8e:66:
e3:5a:be:33:74:9e:30:6a:5c:0d:cb:ea:f4:34:ef:
3a:02:9f:e5:31:ae:2e:5e:c8:26:99:dd:7d:2e:be:
46:12:94:34:90:0b:61:60:a2:5b:81:ed:7d:5e:c4:
92:a1:a2:55:1c:27:ea:6b:a2:dd:54:a8:ef:34:3a:
41:f3:89:3d:ac:2e:28:83:de:6c:88:e8:86:a0:43:
b0:09:f1:13:48:e5:27:8c:40:31:15:6f:70:48:3d:
7d:fe:4e:97:b9:0e:e4:fa:dc:ed:16:d8:1e:88:d6:
c5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:32:11:F3:6A:FB:86:30:9E:B7:B4:92:1D:3E:FF:A7:FF:84:2A:49
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/kTIR82r7hjCet7SSHT7_p_-EKkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.23.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.106.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
20:9a:83:57:fd:4f:ad:a4:15:48:ab:fd:3f:1a:aa:48:c0:bc:
0b:79:22:78:d9:cd:9c:37:e9:47:83:25:e4:88:57:97:5d:9e:
98:97:7e:a3:35:2a:8d:df:34:0e:84:6e:91:61:fc:c5:fb:94:
92:b9:81:d8:0f:0d:46:89:db:1a:b1:bf:9e:24:42:6d:ee:c1:
52:6f:b1:d7:7e:f8:b1:76:fb:2f:24:91:d0:fc:7f:11:c8:f3:
63:84:e4:ca:db:ce:73:f1:96:29:c3:7d:81:fe:6f:01:95:e9:
6d:6f:20:79:f3:4c:fe:0d:8a:14:10:c8:0f:2f:f1:fb:57:4d:
de:aa:52:bb:2d:67:f9:3d:52:8b:76:d3:84:e0:09:60:4b:a9:
7f:d9:62:5b:4f:a9:ba:c8:4a:e7:3a:8f:9c:83:64:55:8c:50:
8e:8f:a2:ff:40:46:eb:af:43:72:c2:29:25:88:bf:3c:21:13:
eb:43:65:a4:70:8b:af:e0:8d:3c:3d:38:a6:dc:04:ee:1f:e3:
62:f1:84:6f:7a:3c:28:94:ce:4e:4a:e1:4f:1e:36:d7:ae:b9:
ef:41:9e:5a:0b:fb:31:84:4c:ac:36:99:4d:f7:10:95:be:57:
2d:30:f4:48:d4:58:c0:91:87:5a:a4:70:22:e3:41:90:7c:7a:
76:bb:d2:5f
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgISAYmtcdwOeXsIy8uQkfSL66IdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwNzMxMTkzNDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTMyMTFmMzZhZmI4NjMwOWViN2I0OTIxZDNlZmZhN2ZmODQyYTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4jkHSbzdjy3/mJYiRF1dMKp/F8s
hH1ZUAIy2g9920bcvM0XPYiD+zbgpkoTH480MGj4muFZJKtYCkSgGZrpDA4k5klu
XN0sv8Vwdeugoh4VeQK+83zSmtzPeTKb1jn+63KKr9g860Q59xwXVlcNVLyzO1KL
NaGYw4pyNVIVH5X4qSMBx2SxTnHHj7CtGR95PFHHjmbjWr4zdJ4walwNy+r0NO86
Ap/lMa4uXsgmmd19Lr5GEpQ0kAthYKJbge19XsSSoaJVHCfqa6LdVKjvNDpB84k9
rC4og95siOiGoEOwCfETSOUnjEAxFW9wSD19/k6XuQ7k+tztFtgeiNbF/QIDAQAB
o4ICnjCCApowHQYDVR0OBBYEFJEyEfNq+4Ywnre0kh0+/6f/hCpJMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEva1RJUjgycjdoakNldDdTU0hUN19wXy1FS2trLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBAQ+
3GAwDAMEAz7ceAMEAT7cfDAMAwQDUQwIAwQDUQwQMAwDBARRDDADBAFRDDQDBAFR
DDoDBAJXaxgDBAFXayIDBAJXaygwDAMEAVdrMgMEAVdrNAMEAldrRAMEAldrWAME
AldrYDAMAwQBV2tqAwQBV2t0MAwDBANXa3gDBANXa4ADBAJXa6gDBABXa60DBAK5
PIgwDQYJKoZIhvcNAQELBQADggEBACCag1f9T62kFUir/T8aqkjAvAt5InjZzZw3
6UeDJeSIV5ddnpiXfqM1Ko3fNA6EbpFh/MX7lJK5gdgPDUaJ2xqxv54kQm3uwVJv
sdd++LF2+y8kkdD8fxHI82OE5MrbznPxlinDfYH+bwGV6W1vIHnzTP4NihQQyA8v
8ftXTd6qUrstZ/k9Uot204TgCWBLqX/ZYltPqbrISuc6j5yDZFWMUI6Pov9ARuuv
Q3LCKSWIvzwhE+tDZaRwi6/gjTw9OKbcBO4f42LxhG96PCiUzk5K4U8eNteuue9B
nloL+zGETKw2mU33EJW+Vy0w9EjUWMCRh1qkcCLjQZB8ena70l8=
Generated at Sat Aug 26 10:13:18 2023 by rpki-client on console-fra.rpki-client.org