Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/soiZqQKFp7xR5pakS7wRe6TIr8I.roa
File: soiZqQKFp7xR5pakS7wRe6TIr8I.roa (raw, json)
Hash identifier: Pmnq6E6DPGLrd2WqP4h/H5s1oxe7qz9MQMIK7xRwczk=
Subject key identifier: B2:88:99:A9:02:85:A7:BC:51:E6:96:A4:4B:BC:11:7B:A4:C8:AF:C2
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0187D7933BF436517013875E3648B830386D
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/soiZqQKFp7xR5pakS7wRe6TIr8I.roa
Signing time: Mon 01 May 2023 13:49:23 +0000
ROA not before: Mon 01 May 2023 13:49:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 24
87.107.28.0/22 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 24
87.107.148.0/22 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
87.107.92.0/22 maxlen: 24
87.107.104.0/21 maxlen: 24
87.107.100.0/22 maxlen: 22
87.107.136.0/21 maxlen: 24
81.12.0.0/21 maxlen: 24
81.12.32.0/21 maxlen: 24
81.12.40.0/21 maxlen: 24
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
81.12.64.0/21 maxlen: 24
81.12.60.0/22 maxlen: 24
81.12.72.0/21 maxlen: 24
81.12.80.0/20 maxlen: 24
81.12.96.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 14:59:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d7:93:3b:f4:36:51:70:13:87:5e:36:48:b8:30:38:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: May 1 13:49:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b28899a90285a7bc51e696a44bbc117ba4c8afc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:82:49:7d:5e:e5:42:f2:c5:6f:53:f4:4f:45:
f4:0a:e2:45:32:fd:70:e0:cb:89:ce:dd:0b:32:74:
83:24:69:ac:1f:2f:a5:1c:ff:b2:83:dd:25:44:95:
27:f4:63:2c:02:68:5a:42:03:7d:34:02:b4:e6:50:
82:1f:7c:2c:08:34:0c:b2:f6:04:7f:05:4e:72:39:
66:d4:c2:90:47:c8:7a:15:e3:1b:8c:a7:8d:5d:e2:
b6:04:ac:b6:03:b2:92:10:ed:22:20:f4:84:6e:51:
a3:00:de:bd:ef:60:17:1a:f1:46:3b:0b:28:a2:06:
6d:0d:7b:cd:79:97:c7:e7:dd:02:0c:61:e0:04:a7:
0c:f6:83:54:a0:f5:a5:12:d1:dd:0d:8f:7b:7b:ae:
b5:48:da:8a:32:14:e5:3e:0e:b7:31:55:ee:a1:99:
9f:65:4d:e9:3a:0c:44:40:da:5f:04:78:bb:03:6f:
d0:e9:9c:f3:c2:da:ea:61:cc:b9:45:1f:b9:25:9a:
b2:9a:85:fa:4a:ec:9e:76:b3:8b:be:c5:60:c7:39:
6b:68:e9:e9:66:ce:eb:3a:9d:80:c4:55:08:b6:2f:
e8:11:68:1c:68:50:08:6d:9c:7a:cf:17:24:5a:47:
e9:92:6b:b3:8f:73:36:5c:28:69:41:b8:5e:ae:ff:
ef:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:88:99:A9:02:85:A7:BC:51:E6:96:A4:4B:BC:11:7B:A4:C8:AF:C2
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/soiZqQKFp7xR5pakS7wRe6TIr8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0-87.107.111.255
87.107.136.0/21
87.107.148.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:56:4f:71:a7:02:68:1a:7b:44:87:af:85:89:d2:aa:26:54:
f5:64:b7:15:3b:73:c1:22:97:71:68:eb:0a:79:f4:69:b2:fb:
bc:7f:f0:09:29:9c:5a:a3:e8:40:a4:49:ce:64:a4:8a:93:96:
d9:dc:3d:23:9c:b1:74:ef:15:be:05:24:f0:2e:58:08:98:70:
a5:f2:10:ee:7c:12:70:81:22:6a:12:b7:1b:51:ad:d8:66:86:
42:7c:a8:53:25:e0:3f:d6:41:61:fd:c6:a6:b8:2a:92:98:8f:
57:d5:ca:b0:98:2a:9d:a5:16:d5:c6:fc:9d:09:eb:36:99:9f:
ae:5f:b8:8a:f7:4a:ac:ad:49:82:7a:f3:fc:6e:a4:e7:0b:3d:
ba:2a:f1:34:79:4a:36:db:ac:1e:a0:84:88:0d:87:e8:26:ac:
db:53:18:01:b3:ba:de:fd:ef:18:4f:2b:24:89:5e:30:30:86:
23:06:c7:6a:91:de:3e:c0:d3:0a:b1:33:84:79:95:32:34:dc:
3a:48:47:41:ed:44:65:99:45:70:ba:67:e2:da:bb:59:88:bf:
5e:3d:40:b6:ce:09:5b:15:27:55:ba:ad:88:29:32:d1:75:56:
30:ca:9b:de:f8:2b:8b:b0:ee:f5:e2:f7:d4:35:d5:09:82:e9:
92:90:64:68
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgISAYfXkzv0NlFwE4deNki4MDhtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwNTAxMTM0OTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjg4OTlhOTAyODVhN2JjNTFlNjk2YTQ0YmJjMTE3YmE0YzhhZmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoJJfV7lQvLFb1P0T0X0CuJFMv1w
4MuJzt0LMnSDJGmsHy+lHP+yg90lRJUn9GMsAmhaQgN9NAK05lCCH3wsCDQMsvYE
fwVOcjlm1MKQR8h6FeMbjKeNXeK2BKy2A7KSEO0iIPSEblGjAN6972AXGvFGOwso
ogZtDXvNeZfH590CDGHgBKcM9oNUoPWlEtHdDY97e661SNqKMhTlPg63MVXuoZmf
ZU3pOgxEQNpfBHi7A2/Q6ZzzwtrqYcy5RR+5JZqymoX6SuyedrOLvsVgxzlraOnp
Zs7rOp2AxFUIti/oEWgcaFAIbZx6zxckWkfpkmuzj3M2XChpQbherv/vTQIDAQAB
o4ICjDCCAogwHQYDVR0OBBYEFLKImakChae8UeaWpEu8EXukyK/CMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvc29pWnFRS0ZwN3hSNXBha1M3d1JlNlRJcjhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQDBAM+
3HADBANRDAADBARRDCAwDAMEAVEMNgMEAVEMODAMAwQCUQw8AwQHUQwAAwQDV2sQ
MAwDBAJXaxwDBAFXayADBAJXayQwDAMEAldrLAMEAVdrMDAMAwQDV2tIAwQDV2tQ
AwQCV2tcMAwDBAJXa2QDBARXa2ADBANXa4gDBAJXa5QwDQYJKoZIhvcNAQELBQAD
ggEBAMJWT3GnAmgae0SHr4WJ0qomVPVktxU7c8Eil3Fo6wp59Gmy+7x/8AkpnFqj
6ECkSc5kpIqTltncPSOcsXTvFb4FJPAuWAiYcKXyEO58EnCBImoStxtRrdhmhkJ8
qFMl4D/WQWH9xqa4KpKYj1fVyrCYKp2lFtXG/J0J6zaZn65fuIr3SqytSYJ68/xu
pOcLPboq8TR5SjbbrB6ghIgNh+gmrNtTGAGzut797xhPKySJXjAwhiMGx2qR3j7A
0wqxM4R5lTI03DpIR0HtRGWZRXC6Z+Lau1mIv149QLbOCVsVJ1W6rYgpMtF1VjDK
m974K4uw7vXi99Q11QmC6ZKQZGg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:59 2024 by rpki-client on console-ams.rpki-client.org