Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/wExtC2ntbYmkG2AtJFp9SCofCKA.roa
File: wExtC2ntbYmkG2AtJFp9SCofCKA.roa (raw, json)
Hash identifier: bRo1rdKFy8np4zk6uJxqG+JUiWkU697poDgbBOhb/Qk=
Subject key identifier: C0:4C:6D:0B:69:ED:6D:89:A4:1B:60:2D:24:5A:7D:48:2A:1F:08:A0
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DB252B373A3C498D1ABE6A09A2E70
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/wExtC2ntbYmkG2AtJFp9SCofCKA.roa
Signing time: Sun 01 Jan 2023 22:04:49 +0000
ROA not before: Sun 01 Jan 2023 22:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42337
IP address blocks: 81.12.0.0/21 maxlen: 24
87.107.44.0/22 maxlen: 24
87.107.48.0/23 maxlen: 23
87.107.72.0/21 maxlen: 24
81.12.32.0/21 maxlen: 24
81.12.40.0/21 maxlen: 24
87.107.80.0/21 maxlen: 24
87.107.16.0/21 maxlen: 24
87.107.28.0/22 maxlen: 24
87.107.32.0/23 maxlen: 23
87.107.36.0/22 maxlen: 24
62.220.118.0/23 maxlen: 24
62.220.113.0/24 maxlen: 24
62.220.112.0/21 maxlen: 21
81.12.54.0/23 maxlen: 24
81.12.56.0/23 maxlen: 23
87.107.92.0/22 maxlen: 24
87.107.100.0/22 maxlen: 22
81.12.60.0/22 maxlen: 24
81.12.64.0/18 maxlen: 18
81.12.72.0/21 maxlen: 24
81.12.80.0/20 maxlen: 24
81.12.96.0/19 maxlen: 24
87.107.136.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b2:52:b3:73:a3:c4:98:d1:ab:e6:a0:9a:2e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c04c6d0b69ed6d89a41b602d245a7d482a1f08a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7c:70:39:90:0a:2d:ad:33:f8:a6:03:3f:1d:
cb:66:4c:80:dc:6f:b4:99:64:cd:52:b8:1f:be:80:
60:55:c7:f2:51:0f:93:4c:32:9a:4a:d5:3c:d3:d1:
63:f9:71:59:93:bf:55:7e:f8:a0:a0:73:2e:f0:c5:
6c:5e:85:76:c3:f9:ba:19:8a:36:ae:e8:5a:83:68:
d0:c5:c9:23:d0:f8:d7:8a:39:c5:28:14:c4:6b:e6:
0e:e5:ee:07:d6:04:78:e6:99:67:01:6d:4f:60:9f:
e2:69:f1:a9:4b:22:ac:e1:22:64:fc:b5:1f:f8:ad:
dc:f0:12:8b:47:be:06:16:9e:bd:85:e1:95:80:bf:
ef:58:5e:fc:62:53:a6:e7:9b:98:9d:95:9f:ca:cd:
c5:83:11:0f:72:8a:11:90:c8:43:ed:6e:07:c8:79:
dc:5b:96:3a:f1:fe:97:4b:3e:20:c9:ef:88:9b:3e:
30:98:85:71:80:d8:cf:bb:d6:73:c7:38:ba:57:6a:
29:bc:3f:9a:be:56:dd:c5:0b:d4:c7:1c:ba:36:20:
9b:b9:6a:c1:c2:d0:b8:b9:a0:82:13:97:7e:dc:40:
9e:2c:5a:0b:7b:8e:70:35:1d:2a:c7:b1:67:af:c5:
40:a3:8f:fd:c3:63:6b:63:c5:1c:59:9a:14:8a:8d:
64:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4C:6D:0B:69:ED:6D:89:A4:1B:60:2D:24:5A:7D:48:2A:1F:08:A0
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/wExtC2ntbYmkG2AtJFp9SCofCKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.112.0/21
81.12.0.0/21
81.12.32.0/20
81.12.54.0-81.12.57.255
81.12.60.0-81.12.127.255
87.107.16.0/21
87.107.28.0-87.107.33.255
87.107.36.0/22
87.107.44.0-87.107.49.255
87.107.72.0-87.107.87.255
87.107.92.0/22
87.107.100.0/22
87.107.136.0/21
Signature Algorithm: sha256WithRSAEncryption
73:cf:fa:4c:8d:1e:b2:a6:a1:f1:4f:2d:60:b8:32:9c:a6:60:
d7:e8:f0:f4:a2:01:c7:9b:26:36:31:15:30:ec:cc:80:24:ba:
ad:7f:09:4b:51:72:ff:88:9b:74:a4:a5:d9:a2:67:e7:c6:19:
95:83:0e:c0:00:1f:16:29:76:ef:67:08:05:cd:e7:da:64:6e:
08:63:69:ef:b1:f9:2a:f5:f1:15:d3:70:0e:81:7e:ad:bd:81:
e0:04:df:c3:0c:dd:9c:6c:62:03:f2:2c:a2:5b:d3:1d:ee:04:
45:6a:6a:e3:47:95:b5:1a:b6:f0:ef:54:13:1a:9f:60:07:e3:
76:7d:11:96:1b:9e:d4:42:75:bd:a8:5f:81:2e:e1:58:ae:41:
3c:74:f6:42:72:c4:95:69:be:4c:cd:65:bb:f1:0d:e5:ae:14:
62:f5:55:1e:bc:99:91:09:01:bd:c9:40:9a:ae:2f:ed:fc:c3:
1b:10:5f:62:f9:1f:7a:af:31:56:be:9f:86:62:f0:f2:24:7c:
73:27:68:35:89:45:23:27:18:75:d0:13:35:14:cb:c4:ac:28:
ec:08:b8:e0:e9:9a:3d:bc:ea:59:36:d3:59:6c:bb:0b:c4:91:
cd:ee:46:f5:5c:b1:fb:c2:4a:fc:81:61:fd:45:fc:ce:1d:e8:
73:88:47:dc
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAYVvXbJSs3OjxJjRq+agmi5wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjMwMTAxMjIwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDRjNmQwYjY5ZWQ2ZDg5YTQxYjYwMmQyNDVhN2Q0ODJhMWYwOGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3xwOZAKLa0z+KYDPx3LZkyA3G+0
mWTNUrgfvoBgVcfyUQ+TTDKaStU809Fj+XFZk79VfvigoHMu8MVsXoV2w/m6GYo2
ruhag2jQxckj0PjXijnFKBTEa+YO5e4H1gR45plnAW1PYJ/iafGpSyKs4SJk/LUf
+K3c8BKLR74GFp69heGVgL/vWF78YlOm55uYnZWfys3FgxEPcooRkMhD7W4HyHnc
W5Y68f6XSz4gye+Imz4wmIVxgNjPu9Zzxzi6V2opvD+avlbdxQvUxxy6NiCbuWrB
wtC4uaCCE5d+3ECeLFoLe45wNR0qx7Fnr8VAo4/9w2NrY8UcWZoUio1k7wIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFMBMbQtp7W2JpBtgLSRafUgqHwigMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvd0V4dEMybnRiWW1rRzJBdEpGcDlTQ29mQ0tBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAM+3HAD
BANRDAADBARRDCAwDAMEAVEMNgMEAVEMODAMAwQCUQw8AwQHUQwAAwQDV2sQMAwD
BAJXaxwDBAFXayADBAJXayQwDAMEAldrLAMEAVdrMDAMAwQDV2tIAwQDV2tQAwQC
V2tcAwQCV2tkAwQDV2uIMA0GCSqGSIb3DQEBCwUAA4IBAQBzz/pMjR6ypqHxTy1g
uDKcpmDX6PD0ogHHmyY2MRUw7MyAJLqtfwlLUXL/iJt0pKXZomfnxhmVgw7AAB8W
KXbvZwgFzefaZG4IY2nvsfkq9fEV03AOgX6tvYHgBN/DDN2cbGID8iyiW9Md7gRF
amrjR5W1Grbw71QTGp9gB+N2fRGWG57UQnW9qF+BLuFYrkE8dPZCcsSVab5MzWW7
8Q3lrhRi9VUevJmRCQG9yUCari/t/MMbEF9i+R96rzFWvp+GYvDyJHxzJ2g1iUUj
Jxh10BM1FMvErCjsCLjg6Zo9vOpZNtNZbLsLxJHN7kb1XLH7wkr8gWH9RfzOHehz
iEfc
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org