Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/FMEVgvyGyY5d_wik5d2sGsgHWTQ.roa
File: FMEVgvyGyY5d_wik5d2sGsgHWTQ.roa (raw, json)
Hash identifier: xpd/ENPJa6LWRdMR4bp3ZG+T78FzISS8BiASLuyRelk=
Subject key identifier: 14:C1:15:82:FC:86:C9:8E:5D:FF:08:A4:E5:DD:AC:1A:C8:07:59:34
Certificate issuer: /CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Certificate serial: 01856D93FA936274226C8C1D9FA3E1C46523
Authority key identifier: E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/FMEVgvyGyY5d_wik5d2sGsgHWTQ.roa
Signing time: Sun 01 Jan 2023 13:44:52 +0000
ROA not before: Sun 01 Jan 2023 13:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44894
IP address blocks: 91.203.60.0/24 maxlen: 24
91.203.63.0/24 maxlen: 24
91.203.62.0/24 maxlen: 24
91.203.62.0/23 maxlen: 23
91.203.61.0/24 maxlen: 24
91.203.60.0/22 maxlen: 22
91.203.60.0/23 maxlen: 23
194.107.231.0/24 maxlen: 24
194.107.230.0/23 maxlen: 23
194.107.230.0/24 maxlen: 24
91.193.130.0/23 maxlen: 23
91.193.130.0/24 maxlen: 24
91.193.129.0/24 maxlen: 24
91.193.128.0/24 maxlen: 24
91.193.128.0/23 maxlen: 23
91.193.128.0/22 maxlen: 22
91.193.131.0/24 maxlen: 24
194.150.105.0/24 maxlen: 24
194.150.104.0/23 maxlen: 23
194.150.104.0/24 maxlen: 24
194.110.2.0/23 maxlen: 23
2001:67c:2f2c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:fa:93:62:74:22:6c:8c:1d:9f:a3:e1:c4:65:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Validity
Not Before: Jan 1 13:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14c11582fc86c98e5dff08a4e5ddac1ac8075934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8c:4a:f2:1b:a1:5e:45:b2:88:84:50:7f:58:
83:84:4c:44:40:53:0f:47:d5:2e:c0:92:b3:53:9d:
9e:aa:c2:d9:9f:ad:6c:f9:10:1d:b4:ff:a1:c2:5f:
5c:3a:d1:5a:8d:51:86:02:a0:63:0d:63:85:4f:6a:
f2:ad:7f:42:b7:0b:a7:96:fd:96:da:5e:d0:71:05:
73:18:48:ba:d5:d1:1a:70:b1:2b:51:80:d7:cc:1a:
4c:65:32:0b:d1:32:bd:e8:ec:52:11:63:4e:de:f7:
2b:3c:b4:0e:3e:36:a1:fd:55:07:23:ee:b4:e3:e4:
d8:4a:3a:13:38:bb:e4:26:85:3d:c3:da:ad:34:6d:
1a:55:fc:82:4d:ae:f7:11:99:74:b5:58:20:4e:dc:
d2:76:2e:a8:24:b0:83:6d:08:02:7d:49:9f:67:65:
a4:a3:6e:1a:85:46:91:6d:ef:1b:38:fa:d3:3a:b0:
71:75:00:f2:c5:58:a7:30:90:3a:ab:e9:d5:05:aa:
87:a0:0a:77:25:cd:df:44:21:93:cd:47:bd:c9:75:
16:14:a5:0a:19:35:a1:e7:b0:7c:1a:1b:b7:98:8a:
4b:6c:6e:39:b9:f2:13:f2:06:38:44:5d:ee:4a:f6:
b6:b5:68:d3:61:6e:f2:67:ee:67:6d:d0:74:4d:93:
58:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C1:15:82:FC:86:C9:8E:5D:FF:08:A4:E5:DD:AC:1A:C8:07:59:34
X509v3 Authority Key Identifier:
keyid:E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/FMEVgvyGyY5d_wik5d2sGsgHWTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/5p5FpEgUVhSOLgA0nYeqV8VrJKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.128.0/22
91.203.60.0/22
194.107.230.0/23
194.110.2.0/23
194.150.104.0/23
IPv6:
2001:67c:2f2c::/48
Signature Algorithm: sha256WithRSAEncryption
96:eb:c3:9a:ba:19:a2:81:e8:9f:25:c1:2d:ee:bd:74:34:56:
db:8a:93:a3:58:cf:60:b2:db:8f:e2:1f:65:b4:cc:f9:de:fe:
d8:c6:44:ca:c8:ff:7c:30:34:15:b9:69:0c:91:67:92:3b:8c:
c5:03:68:18:4d:da:d8:da:46:35:b1:a4:c1:e1:67:0a:5d:3f:
0c:1d:f4:ae:de:65:c2:32:f3:d2:ae:ff:8a:99:2a:28:9f:6b:
37:65:3f:d2:ea:4a:a6:d3:3c:7d:f8:a4:1e:25:00:a7:b7:63:
2d:88:b7:49:a9:83:37:c0:ea:cb:2e:92:58:fa:0f:ca:d4:c4:
0f:f7:52:57:40:9c:08:c8:cc:e7:a8:61:13:5c:4d:3f:22:b9:
be:33:f3:e2:d2:32:7d:05:72:e6:14:31:f1:38:3d:1e:8e:2d:
0c:10:06:2f:63:7d:29:47:0f:2f:fe:eb:1f:0c:3a:c6:35:79:
71:70:5c:ef:30:19:e8:d6:f4:2a:a0:af:9f:60:5d:4a:1c:ac:
a5:03:33:6b:47:cf:16:f0:4d:1d:44:c3:50:c2:4c:42:db:fc:
ef:49:7a:94:e9:2e:a9:bc:00:90:ca:2f:dc:40:41:07:77:3a:
c3:9b:88:76:08:c8:0a:03:74:34:1f:0b:83:b9:05:8e:97:f6:
57:18:4b:61
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgISAYVtk/qTYnQibIwdn6PhxGUjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2OWU0NWE0NDgxNDU2MTQ4ZTJlMDAzNDlkODdhYTU3YzU2
YjI0YTAwHhcNMjMwMTAxMTM0NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNGMxMTU4MmZjODZjOThlNWRmZjA4YTRlNWRkYWMxYWM4MDc1OTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYxK8huhXkWyiIRQf1iDhExEQFMP
R9UuwJKzU52eqsLZn61s+RAdtP+hwl9cOtFajVGGAqBjDWOFT2ryrX9Ctwunlv2W
2l7QcQVzGEi61dEacLErUYDXzBpMZTIL0TK96OxSEWNO3vcrPLQOPjah/VUHI+60
4+TYSjoTOLvkJoU9w9qtNG0aVfyCTa73EZl0tVggTtzSdi6oJLCDbQgCfUmfZ2Wk
o24ahUaRbe8bOPrTOrBxdQDyxVinMJA6q+nVBaqHoAp3Jc3fRCGTzUe9yXUWFKUK
GTWh57B8Ghu3mIpLbG45ufIT8gY4RF3uSva2tWjTYW7yZ+5nbdB0TZNYoQIDAQAB
o4ICMjCCAi4wHQYDVR0OBBYEFBTBFYL8hsmOXf8IpOXdrBrIB1k0MB8GA1UdIwQY
MBaAFOaeRaRIFFYUji4ANJ2HqlfFaySgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXA1RnBFZ1VWaFNPTGdBMG5ZZXFWOFZySktBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi80NGQ1OWUtZGM3Yi00ZDJjLWJhNDUt
NGE5MWZhYmQ4YThlLzEvRk1FVmd2eUd5WTVkX3dpazVkMnNHc2dIV1RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi80NGQ1OWUtZGM3Yi00ZDJjLWJhNDUtNGE5MWZhYmQ4YThl
LzEvNXA1RnBFZ1VWaFNPTGdBMG5ZZXFWOFZySktBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQCW8GAAwQC
W8s8AwQBwmvmAwQBwm4CAwQBwpZoMA8EAgACMAkDBwAgAQZ8LywwDQYJKoZIhvcN
AQELBQADggEBAJbrw5q6GaKB6J8lwS3uvXQ0VtuKk6NYz2Cy24/iH2W0zPne/tjG
RMrI/3wwNBW5aQyRZ5I7jMUDaBhN2tjaRjWxpMHhZwpdPwwd9K7eZcIy89Ku/4qZ
KiifazdlP9LqSqbTPH34pB4lAKe3Yy2It0mpgzfA6ssuklj6D8rUxA/3UldAnAjI
zOeoYRNcTT8iub4z8+LSMn0FcuYUMfE4PR6OLQwQBi9jfSlHDy/+6x8MOsY1eXFw
XO8wGejW9Cqgr59gXUocrKUDM2tHzxbwTR1Ew1DCTELb/O9JepTpLqm8AJDKL9xA
QQd3OsObiHYIyAoDdDQfC4O5BY6X9lcYS2E=
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:41:26 2024 by rpki-client on console-ams.rpki-client.org