Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/ZCIJAJ8PeHe9cFkiqRqfGHF_2XY.roa
File: ZCIJAJ8PeHe9cFkiqRqfGHF_2XY.roa (raw, json)
Hash identifier: 3JblJ89DJ6DCP0KLw0ER+AO/gg3WxIj2JkGWKi8L8h8=
Subject key identifier: 64:22:09:00:9F:0F:78:77:BD:70:59:22:A9:1A:9F:18:71:7F:D9:76
Certificate issuer: /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial: 018765D8D89F84BF73A94DF6CA2787F4D0E3
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/ZCIJAJ8PeHe9cFkiqRqfGHF_2XY.roa
Signing time: Sun 09 Apr 2023 11:48:42 +0000
ROA not before: Sun 09 Apr 2023 11:48:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43766
IP address blocks: 79.170.124.0/22 maxlen: 22
79.170.120.0/22 maxlen: 22
77.232.116.0/22 maxlen: 22
77.232.121.0/24 maxlen: 24
77.232.125.0/24 maxlen: 24
77.232.126.0/24 maxlen: 24
77.223.224.0/22 maxlen: 22
77.223.228.0/22 maxlen: 22
77.232.103.0/24 maxlen: 24
77.232.102.0/24 maxlen: 24
77.232.104.0/21 maxlen: 21
95.178.48.0/21 maxlen: 21
185.5.154.0/24 maxlen: 24
95.178.72.0/21 maxlen: 21
2a02:cb81:1102::/47 maxlen: 47
2a02:cb81:1104::/47 maxlen: 47
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:65:d8:d8:9f:84:bf:73:a9:4d:f6:ca:27:87:f4:d0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Validity
Not Before: Apr 9 11:48:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=642209009f0f7877bd705922a91a9f18717fd976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:80:b8:53:bb:db:80:84:0d:a8:2b:34:e2:49:
3b:80:e6:84:4b:c1:c8:26:70:94:0e:00:45:74:71:
4f:ac:57:30:5b:9a:cd:2f:22:11:1d:85:ef:d5:4c:
73:6b:96:ea:49:e8:c1:9a:6e:79:80:ba:ea:ef:7e:
a3:1c:7c:a8:07:12:35:48:4b:9e:66:6a:b2:94:42:
ee:28:aa:b9:68:82:8d:fd:9e:c1:88:28:06:bd:f6:
4c:ae:4b:c9:1a:4e:04:49:af:43:e2:c0:b0:72:c1:
cd:8f:05:50:3b:e5:1b:44:23:1e:cc:b7:ab:b2:90:
b6:0f:8e:94:d3:7f:24:08:d6:d6:39:ab:c8:00:20:
33:c5:6f:eb:4b:6b:7d:1f:1a:a2:de:84:c3:60:01:
13:7a:37:a8:0b:27:1f:04:8c:5a:df:97:51:68:5b:
b9:20:99:db:50:a4:da:95:47:e2:97:aa:0f:58:33:
61:db:01:d3:15:8a:f9:c5:67:2a:1f:b0:72:98:02:
78:3e:e2:64:ed:9d:f3:46:45:61:6e:07:9a:ae:93:
74:65:be:26:37:d7:84:4b:41:14:3f:39:2c:13:3b:
09:3a:6f:be:31:1a:38:7f:5e:5c:4e:56:7e:4b:3c:
f9:9d:2d:22:d2:5c:f5:19:0a:05:df:1a:08:c6:68:
d2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:22:09:00:9F:0F:78:77:BD:70:59:22:A9:1A:9F:18:71:7F:D9:76
X509v3 Authority Key Identifier:
keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/ZCIJAJ8PeHe9cFkiqRqfGHF_2XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.223.224.0/21
77.232.102.0-77.232.111.255
77.232.116.0/22
77.232.121.0/24
77.232.125.0-77.232.126.255
79.170.120.0/21
95.178.48.0/21
95.178.72.0/21
185.5.154.0/24
IPv6:
2a02:cb81:1102::-2a02:cb81:1105:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
51:fb:c9:29:74:80:53:27:b2:5a:40:35:b5:7d:4c:b2:0f:c1:
9e:e1:86:9b:4d:7d:a8:fe:c5:8e:0a:08:27:ac:94:1e:08:c6:
24:91:a4:56:2c:bb:26:e1:20:ae:18:66:cc:3a:03:01:d2:c1:
7c:8a:13:ab:97:b7:3f:6d:9b:1e:09:63:ab:4e:04:d9:33:f6:
6e:84:09:f7:6c:e4:10:16:27:a4:f7:f8:cf:15:99:bb:4d:84:
66:ad:f3:9e:8d:b4:49:a0:82:ae:92:45:dd:1b:a1:05:0f:9f:
43:15:36:b2:a9:75:04:4a:e8:c4:7f:81:62:9a:38:70:86:69:
d8:25:21:f4:69:44:49:c4:3e:3c:03:91:3a:67:03:7b:c8:d4:
8c:7b:2d:e2:c0:1e:00:6a:b0:63:e6:8b:33:ea:bd:fa:d1:27:
5f:7a:eb:1f:e0:d5:f2:da:e7:bb:f1:94:77:e6:f1:5e:43:53:
2c:78:45:a9:63:40:a7:58:6b:f1:8a:5c:29:fb:92:7b:9c:4a:
df:ec:ff:c8:59:a3:56:d8:b7:99:f1:9c:73:62:a3:1f:1a:0f:
18:83:9f:ec:d7:7f:f8:f1:87:aa:b6:53:58:60:d8:1b:8a:66:
9a:b4:58:9f:61:06:31:8c:c8:97:c6:78:00:35:b6:6c:25:b0:
7d:23:1e:b0
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAYdl2NifhL9zqU32yieH9NDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlOGJhODgyNGM1YzhkMjA3MzI2YTRhM2FiODkzZWJiOGY1
MDk2YWQwHhcNMjMwNDA5MTE0ODQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDIyMDkwMDlmMGY3ODc3YmQ3MDU5MjJhOTFhOWYxODcxN2ZkOTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooC4U7vbgIQNqCs04kk7gOaES8HI
JnCUDgBFdHFPrFcwW5rNLyIRHYXv1Uxza5bqSejBmm55gLrq736jHHyoBxI1SEue
ZmqylELuKKq5aIKN/Z7BiCgGvfZMrkvJGk4ESa9D4sCwcsHNjwVQO+UbRCMezLer
spC2D46U038kCNbWOavIACAzxW/rS2t9Hxqi3oTDYAETejeoCycfBIxa35dRaFu5
IJnbUKTalUfil6oPWDNh2wHTFYr5xWcqH7BymAJ4PuJk7Z3zRkVhbgearpN0Zb4m
N9eES0EUPzksEzsJOm++MRo4f15cTlZ+Szz5nS0i0lz1GQoF3xoIxmjSNwIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFGQiCQCfD3h3vXBZIqkanxhxf9l2MB8GA1UdIwQY
MBaAFO6LqIJMXI0gcyako6uJPruPUJatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN291b2dreGNqU0J6SnFTanE0ay11NDlRbHEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC82MzUwOWMtNTY3Ni00ZWFmLTk5ZDQt
ZWVjZDI4ZTI4ZTM1LzEvWkNJSkFKOFBlSGU5Y0ZraXFScWZHSEZfMlhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC82MzUwOWMtNTY3Ni00ZWFmLTk5ZDQtZWVjZDI4ZTI4ZTM1
LzEvN291b2dreGNqU0J6SnFTanE0ay11NDlRbHEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBMBAIAATBGAwQDTd/gMAwD
BAFN6GYDBARN6GADBAJN6HQDBABN6HkwDAMEAE3ofQMEAE3ofgMEA0+qeAMEA1+y
MAMEA1+ySAMEALkFmjAaBAIAAjAUMBIDBwEqAsuBEQIDBwEqAsuBEQQwDQYJKoZI
hvcNAQELBQADggEBAFH7ySl0gFMnslpANbV9TLIPwZ7hhptNfaj+xY4KCCeslB4I
xiSRpFYsuybhIK4YZsw6AwHSwXyKE6uXtz9tmx4JY6tOBNkz9m6ECfds5BAWJ6T3
+M8VmbtNhGat856NtEmggq6SRd0boQUPn0MVNrKpdQRK6MR/gWKaOHCGadglIfRp
REnEPjwDkTpnA3vI1Ix7LeLAHgBqsGPmizPqvfrRJ1966x/g1fLa57vxlHfm8V5D
Uyx4RaljQKdYa/GKXCn7knucSt/s/8hZo1bYt5nxnHNiox8aDxiDn+zXf/jxh6q2
U1hg2BuKZpq0WJ9hBjGMyJfGeAA1tmwlsH0jHrA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-fra.rpki-client.org