Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/YObXBIiTbKzoWeNQ0mmi6LeGvE8.roa
File: YObXBIiTbKzoWeNQ0mmi6LeGvE8.roa (raw, json)
Hash identifier: ufZrJxCwThkdGHKNKtgWzv4EvSmfMO1HNL2Gvl3xCtY=
Subject key identifier: 60:E6:D7:04:88:93:6C:AC:E8:59:E3:50:D2:69:A2:E8:B7:86:BC:4F
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01892010A0A96C5FBD75B66C54B7349B92D5
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/YObXBIiTbKzoWeNQ0mmi6LeGvE8.roa
Signing time: Tue 04 Jul 2023 08:41:47 +0000
ROA not before: Tue 04 Jul 2023 08:41:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31195
IP address blocks: 85.26.240.0/22 maxlen: 22
178.178.64.0/24 maxlen: 24
178.178.71.0/24 maxlen: 24
178.178.66.0/24 maxlen: 24
178.178.65.0/24 maxlen: 24
178.178.68.0/24 maxlen: 24
178.178.67.0/24 maxlen: 24
178.178.70.0/24 maxlen: 24
178.178.74.0/24 maxlen: 24
178.178.73.0/24 maxlen: 24
178.178.75.0/24 maxlen: 24
178.178.72.0/24 maxlen: 24
78.25.124.0/22 maxlen: 22
78.25.127.0/24 maxlen: 24
31.173.225.0/24 maxlen: 24
31.173.226.0/24 maxlen: 24
31.173.132.0/23 maxlen: 23
31.173.134.0/23 maxlen: 23
31.173.135.0/24 maxlen: 24
178.176.233.0/24 maxlen: 24
178.176.235.0/24 maxlen: 24
178.176.234.0/24 maxlen: 24
31.173.143.0/24 maxlen: 24
37.28.188.0/22 maxlen: 22
37.28.191.0/24 maxlen: 24
37.28.190.0/24 maxlen: 24
37.29.89.0/24 maxlen: 24
37.29.91.0/24 maxlen: 24
37.29.88.0/22 maxlen: 22
37.29.95.0/24 maxlen: 24
37.29.92.0/22 maxlen: 22
37.29.94.0/24 maxlen: 24
188.170.233.0/24 maxlen: 24
188.170.231.0/24 maxlen: 24
188.170.228.0/23 maxlen: 23
188.170.232.0/24 maxlen: 24
188.170.230.0/24 maxlen: 24
188.170.236.0/24 maxlen: 24
188.170.234.0/24 maxlen: 24
188.170.239.0/24 maxlen: 24
188.170.237.0/24 maxlen: 24
188.170.235.0/24 maxlen: 24
31.173.231.0/24 maxlen: 24
31.173.228.0/23 maxlen: 23
31.173.228.0/24 maxlen: 24
31.173.230.0/24 maxlen: 24
31.173.232.0/23 maxlen: 23
31.173.229.0/24 maxlen: 24
31.173.239.0/24 maxlen: 24
31.173.236.0/23 maxlen: 23
31.173.238.0/24 maxlen: 24
31.173.235.0/24 maxlen: 24
37.29.43.0/24 maxlen: 24
83.149.52.0/22 maxlen: 22
83.169.228.0/23 maxlen: 23
83.169.230.0/24 maxlen: 24
83.169.227.0/24 maxlen: 24
83.169.226.0/24 maxlen: 24
83.169.224.0/23 maxlen: 23
85.26.244.0/22 maxlen: 22
85.26.247.0/24 maxlen: 24
2a03:d006:400::/40 maxlen: 40
2a03:d006:500::/40 maxlen: 40
2a03:d006:200::/40 maxlen: 40
2a03:d006:300::/40 maxlen: 40
2a03:d006::/40 maxlen: 40
2a03:d006:600::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 14 Jul 2023 07:18:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:10:a0:a9:6c:5f:bd:75:b6:6c:54:b7:34:9b:92:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jul 4 08:41:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60e6d70488936cace859e350d269a2e8b786bc4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:37:a1:bb:c3:67:82:a1:46:fd:df:12:36:df:
54:bc:91:6e:4a:f2:22:38:30:92:ab:95:a7:bb:59:
78:b2:27:e5:f7:31:1a:f0:40:c1:9c:a3:cc:52:ea:
f3:de:75:11:e1:ca:b2:d0:18:3b:33:a5:7f:63:b9:
7d:0a:08:8e:3c:e8:9b:0f:25:48:80:57:78:b5:d2:
4f:3d:49:d6:df:e7:b1:b5:e7:1f:43:e8:6b:6e:87:
4e:79:16:20:f3:a1:6b:71:6a:9e:a5:28:56:08:34:
65:b8:cb:b6:23:78:54:ed:af:e4:70:c8:ae:08:4c:
ca:34:21:0d:29:3c:fe:8c:a9:a0:9b:90:ef:52:71:
aa:e2:b3:5a:06:08:0a:1c:bf:47:d3:ec:a6:5c:f8:
cb:b3:9a:6c:ec:19:80:e7:9e:1d:2d:39:01:78:c4:
e8:38:a6:9e:51:78:38:46:bd:42:ef:fd:76:d2:77:
3c:6f:c7:d4:8e:43:12:a6:8f:c1:7b:90:3e:f1:f4:
b2:f0:dd:73:48:fa:39:c2:08:d3:dc:de:37:ef:3f:
f3:2f:9a:6a:36:5a:b6:1e:70:ee:3d:11:10:67:4e:
cc:8e:34:ba:3e:25:37:c2:09:2e:3f:ab:1c:f8:cc:
86:7a:55:98:72:1c:3b:be:1b:00:fa:ac:35:56:88:
89:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E6:D7:04:88:93:6C:AC:E8:59:E3:50:D2:69:A2:E8:B7:86:BC:4F
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/YObXBIiTbKzoWeNQ0mmi6LeGvE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.173.132.0/22
31.173.143.0/24
31.173.225.0-31.173.226.255
31.173.228.0-31.173.233.255
31.173.235.0-31.173.239.255
37.28.188.0/22
37.29.43.0/24
37.29.88.0/21
78.25.124.0/22
83.149.52.0/22
83.169.224.0-83.169.230.255
85.26.240.0/21
178.176.233.0-178.176.235.255
178.178.64.0-178.178.68.255
178.178.70.0-178.178.75.255
188.170.228.0-188.170.237.255
188.170.239.0/24
IPv6:
2a03:d006::/40
2a03:d006:200::-2a03:d006:6ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
19:99:a4:64:24:9b:94:b8:b9:8a:9a:a1:06:da:b9:9f:ea:3e:
2f:cd:83:4c:67:a1:90:8f:ef:e1:77:50:63:66:7d:1d:15:d6:
85:67:77:8d:c9:f1:48:3c:22:9a:e6:51:21:65:48:c4:0f:a6:
fa:82:3c:c9:1d:4b:56:4f:4d:75:2c:ae:2b:9d:de:78:b0:97:
fc:3e:f7:d7:5e:26:84:63:2c:af:44:d9:55:40:10:79:a7:6e:
ee:b2:05:1e:9f:b3:cc:42:81:c4:bc:9a:43:15:3c:c1:e7:b7:
cd:2c:9e:41:22:65:a3:0b:7a:63:b7:5c:ea:55:ee:f8:bb:e7:
85:a3:66:25:0c:3a:66:36:bc:bf:5a:ad:91:2b:d9:22:2b:e6:
a0:dc:da:f8:d4:48:23:b7:0c:e3:71:f9:02:e0:de:65:3d:bb:
4e:36:8b:f2:7e:bd:a5:b3:a7:95:e6:05:f1:0b:6d:6f:8d:a3:
a6:d2:ca:8c:b5:39:a2:fa:33:e9:73:28:9b:ac:95:42:79:84:
59:73:b7:39:88:09:4a:ae:e4:63:2e:96:07:95:3d:95:32:fb:
40:b8:d8:6e:80:10:2b:3f:9a:17:b9:97:7b:6c:3f:36:75:a6:
77:10:2d:9c:a8:1a:6c:be:ad:fe:28:0e:df:45:d4:b0:e6:7d:
9c:25:3c:ff
-----BEGIN CERTIFICATE-----
MIIFxDCCBKygAwIBAgISAYkgEKCpbF+9dbZsVLc0m5LVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyZDdjMmExMDcyZDczNTA3YWRiZjY1MDdkZTY4YWFhYzAx
Nzg1YzAwHhcNMjMwNzA0MDg0MTQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGU2ZDcwNDg4OTM2Y2FjZTg1OWUzNTBkMjY5YTJlOGI3ODZiYzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDehu8NngqFG/d8SNt9UvJFuSvIi
ODCSq5Wnu1l4sifl9zEa8EDBnKPMUurz3nUR4cqy0Bg7M6V/Y7l9CgiOPOibDyVI
gFd4tdJPPUnW3+extecfQ+hrbodOeRYg86FrcWqepShWCDRluMu2I3hU7a/kcMiu
CEzKNCENKTz+jKmgm5DvUnGq4rNaBggKHL9H0+ymXPjLs5ps7BmA554dLTkBeMTo
OKaeUXg4Rr1C7/120nc8b8fUjkMSpo/Be5A+8fSy8N1zSPo5wgjT3N437z/zL5pq
Nlq2HnDuPREQZ07MjjS6PiU3wgkuP6sc+MyGelWYchw7vhsA+qw1VoiJPwIDAQAB
o4IC0DCCAswwHQYDVR0OBBYEFGDm1wSIk2ys6FnjUNJpoui3hrxPMB8GA1UdIwQY
MBaAFJLXwqEHLXNQetv2UH3miqrAF4XAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTct
ODllNTZjODBkMWQwLzEvWU9iWEJJaVRiS3pvV2VOUTBtbWk2TGVHdkU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85Y2ZmN2MtZjA1YS00ZTAyLWJlYTctODllNTZjODBkMWQw
LzEva3RmQ29RY3RjMUI2Ml9aUWZlYUtxc0FYaGNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHlBggrBgEFBQcBBwEB/wSB1TCB0jCBrQQCAAEwgaYDBAIf
rYQDBAAfrY8wDAMEAB+t4QMEAB+t4jAMAwQCH63kAwQBH63oMAwDBAAfresDBAQf
reADBAIlHLwDBAAlHSsDBAMlHVgDBAJOGXwDBAJTlTQwDAMEBVOp4AMEAFOp5gME
A1Ua8DAMAwQAsrDpAwQCsrDoMAwDBAayskADBACyskQwDAMEAbKyRgMEArKySDAM
AwQCvKrkAwQBvKrsAwQAvKrvMCAEAgACMBoDBgAqA9AGADAQAwYBKgPQBgIDBgAq
A9AGBjANBgkqhkiG9w0BAQsFAAOCAQEAGZmkZCSblLi5ipqhBtq5n+o+L82DTGeh
kI/v4XdQY2Z9HRXWhWd3jcnxSDwimuZRIWVIxA+m+oI8yR1LVk9NdSyuK53eeLCX
/D73114mhGMsr0TZVUAQeadu7rIFHp+zzEKBxLyaQxU8wee3zSyeQSJlowt6Y7dc
6lXu+LvnhaNmJQw6Zja8v1qtkSvZIivmoNza+NRII7cM43H5AuDeZT27TjaL8n69
pbOnleYF8Qttb42jptLKjLU5ovoz6XMom6yVQnmEWXO3OYgJSq7kYy6WB5U9lTL7
QLjYboAQKz+aF7mXe2w/NnWmdxAtnKgabL6t/igO30XUsOZ9nCU8/w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:25 2024 by rpki-client on console-fra.rpki-client.org