Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/RwZN4Hg4tPPpRsFKRfAZmLRgCNA.roa
File: RwZN4Hg4tPPpRsFKRfAZmLRgCNA.roa (raw, json)
Hash identifier: v1tfag7RV+lb8eAOBAcXjlzpQ0ronYtgDIUsj2kaG6M=
Subject key identifier: 47:06:4D:E0:78:38:B4:F3:E9:46:C1:4A:45:F0:19:98:B4:60:08:D0
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0187E18291FE479F536E09A8E37835BA7650
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/RwZN4Hg4tPPpRsFKRfAZmLRgCNA.roa
Signing time: Wed 03 May 2023 12:07:23 +0000
ROA not before: Wed 03 May 2023 12:07:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209641
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
45.89.67.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
185.105.118.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.205.0/24 maxlen: 24
193.109.85.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.207.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.230.0/24 maxlen: 24
185.125.228.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
193.124.176.0/21 maxlen: 21
193.124.184.0/21 maxlen: 21
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9300:d0::/48 maxlen: 48
2a0a:9302:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:82:91:fe:47:9f:53:6e:09:a8:e3:78:35:ba:76:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 3 12:07:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47064de07838b4f3e946c14a45f01998b46008d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:93:5f:3f:4c:60:3b:15:c8:15:77:b0:88:ca:
21:3f:56:5a:c3:a8:82:f2:ac:56:fb:5b:cc:2b:95:
35:1c:d2:7f:4b:86:60:83:36:d2:7a:01:90:a0:d4:
15:58:6c:0a:e0:23:58:83:77:14:2d:90:1b:a0:eb:
39:a2:03:9c:cf:2b:d9:cb:d0:c9:74:77:b0:d5:f4:
01:21:49:e1:b3:ce:9c:dc:58:ac:85:42:37:14:ef:
da:f3:d4:99:8f:36:26:de:66:e7:d7:e8:fd:01:33:
50:ea:22:f9:69:b4:c8:f6:10:ae:52:07:49:16:38:
4a:fc:9a:72:3d:ab:a4:85:c2:0b:a0:7d:1a:3c:16:
1c:f6:a3:58:cd:96:bc:50:86:8a:86:76:a3:80:ec:
57:dc:16:be:15:a7:6a:c3:42:b4:30:d7:ac:bc:65:
c9:a3:f6:fb:fb:2a:68:97:34:b1:45:1d:3d:69:29:
49:74:6e:37:c6:b6:9d:e6:68:f9:5c:28:3f:8d:69:
a7:92:98:d1:2f:49:b0:5b:41:57:46:4f:c9:c6:14:
ea:58:ad:ca:df:1f:31:32:54:5f:9e:dd:95:c2:b1:
f5:d9:da:17:aa:29:21:d0:d0:7c:14:a0:60:26:f9:
c3:49:b1:fc:a1:a4:8b:4b:64:80:4d:ee:3c:17:43:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:06:4D:E0:78:38:B4:F3:E9:46:C1:4A:45:F0:19:98:B4:60:08:D0
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/RwZN4Hg4tPPpRsFKRfAZmLRgCNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/23
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.109.85.0/24
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
03:f5:92:d0:0d:13:b5:d5:b1:bd:3c:4c:6a:34:87:6a:d8:ca:
b3:a0:e8:ca:8b:9c:c6:dd:77:26:8e:8d:d9:aa:d7:45:50:36:
1f:48:36:f8:d6:59:7e:90:e0:1a:20:b2:a5:00:e9:91:ff:d9:
32:e0:eb:e3:94:e1:80:3e:21:5e:23:3a:fe:ba:5c:ac:79:1b:
d9:7f:52:75:f3:28:b6:92:e9:13:98:df:72:03:ae:71:aa:f3:
a3:f5:ea:7e:a6:55:50:10:86:1d:45:3c:5b:95:f9:4c:27:80:
30:da:ff:ad:a1:7d:99:19:a3:8c:04:45:a5:d6:d0:4c:f6:6d:
c4:58:cb:27:a5:7b:0b:20:18:26:ae:de:86:39:27:e6:3b:84:
13:45:3e:66:51:1c:23:25:62:53:d1:43:d7:db:ba:fd:a7:ca:
c1:65:48:d5:dd:9b:b5:34:bb:6f:ff:a1:78:d3:e1:48:d7:88:
fe:d2:d3:b1:89:46:a7:c0:fe:4b:6c:96:5a:94:81:56:4c:9d:
af:77:5e:43:fc:ca:fe:82:c2:d7:13:5e:39:20:f5:90:1b:7a:
09:26:69:f6:b6:a9:8c:89:06:24:7e:ef:54:df:a2:6a:fe:28:
42:d6:a3:32:7c:70:33:df:4b:e1:17:ae:0b:4c:e3:f2:b8:ff:
b7:44:9d:cb
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgISAYfhgpH+R59Tbgmo43g1unZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwNTAzMTIwNzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzA2NGRlMDc4MzhiNGYzZTk0NmMxNGE0NWYwMTk5OGI0NjAwOGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjJNfP0xgOxXIFXewiMohP1Zaw6iC
8qxW+1vMK5U1HNJ/S4ZggzbSegGQoNQVWGwK4CNYg3cULZAboOs5ogOczyvZy9DJ
dHew1fQBIUnhs86c3FishUI3FO/a89SZjzYm3mbn1+j9ATNQ6iL5abTI9hCuUgdJ
FjhK/JpyPaukhcILoH0aPBYc9qNYzZa8UIaKhnajgOxX3Ba+Fadqw0K0MNesvGXJ
o/b7+ypolzSxRR09aSlJdG43xrad5mj5XCg/jWmnkpjRL0mwW0FXRk/JxhTqWK3K
3x8xMlRfnt2VwrH12doXqikh0NB8FKBgJvnDSbH8oaSLS2SATe48F0OXWwIDAQAB
o4ICpzCCAqMwHQYDVR0OBBYEFEcGTeB4OLTz6UbBSkXwGZi0YAjQMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvUndaTjRIZzR0UFBwUnNGS1JmQVptTFJnQ05BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG8BggrBgEFBQcBBwEB/wSBrDCBqTBgBAIAATBaAwQBLVlC
AwQCLYCwAwQAW9lQAwQDXo6IAwQCuQX4AwQCuTrMAwQCuVcwAwQCuWl0AwQCuXWY
AwQCuX3YAwQCuX3kAwQAwW1VAwQEwXywAwQFwkPAAwQAwy/6MEUEAgACMD8DBwAq
CpMAAAADBwAqCpMAAAIwEgMHBCoKkwAA0AMHACoKkwAA0jAQAwUAKgqTAQMHACoK
kwEAAgMFACoKkwIwDQYJKoZIhvcNAQELBQADggEBAAP1ktANE7XVsb08TGo0h2rY
yrOg6MqLnMbddyaOjdmq10VQNh9INvjWWX6Q4BogsqUA6ZH/2TLg6+OU4YA+IV4j
Ov66XKx5G9l/UnXzKLaS6ROY33IDrnGq86P16n6mVVAQhh1FPFuV+UwngDDa/62h
fZkZo4wERaXW0Ez2bcRYyyelewsgGCau3oY5J+Y7hBNFPmZRHCMlYlPRQ9fbuv2n
ysFlSNXdm7U0u2//oXjT4UjXiP7S07GJRqfA/ktsllqUgVZMna93XkP8yv6CwtcT
Xjkg9ZAbegkmafa2qYyJBiR+71Tfomr+KELWozJ8cDPfS+EXrgtM4/K4/7dEncs=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-fra.rpki-client.org