Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/SIpFgpGQvcAQu2PY0Ibd0Vr428g.roa
File: SIpFgpGQvcAQu2PY0Ibd0Vr428g.roa (raw, json)
Hash identifier: FPO1dSBaU7B+XYDfLFOFW6obHqy5nt5wEDQDCAYdLP8=
Subject key identifier: 48:8A:45:82:91:90:BD:C0:10:BB:63:D8:D0:86:DD:D1:5A:F8:DB:C8
Certificate issuer: /CN=83479514959397c5e3fa76e1ea495e8e1f6c319b
Certificate serial: 0187753D0D681192679C5EE1D03310A6C67F
Authority key identifier: 83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/SIpFgpGQvcAQu2PY0Ibd0Vr428g.roa
Signing time: Wed 12 Apr 2023 11:32:28 +0000
ROA not before: Wed 12 Apr 2023 11:32:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13030
IP address blocks: 37.17.232.0/21 maxlen: 21
81.6.32.0/20 maxlen: 20
185.137.172.0/22 maxlen: 22
212.51.128.0/20 maxlen: 20
212.51.128.0/19 maxlen: 19
212.51.144.0/20 maxlen: 20
185.72.64.0/22 maxlen: 22
185.72.67.0/24 maxlen: 24
185.201.248.0/22 maxlen: 22
141.195.80.0/20 maxlen: 20
213.144.128.0/20 maxlen: 20
213.144.128.0/19 maxlen: 19
45.80.136.0/22 maxlen: 22
213.144.144.0/20 maxlen: 20
77.74.80.0/21 maxlen: 21
85.195.192.0/20 maxlen: 20
77.109.128.0/19 maxlen: 19
77.109.128.0/18 maxlen: 18
185.183.192.0/22 maxlen: 22
77.109.160.0/19 maxlen: 19
82.197.176.0/20 maxlen: 20
109.202.192.0/19 maxlen: 19
80.253.88.0/21 maxlen: 21
193.47.153.0/24 maxlen: 24
85.195.208.0/20 maxlen: 20
85.195.224.0/20 maxlen: 20
85.195.224.0/19 maxlen: 19
185.246.104.0/22 maxlen: 22
82.197.160.0/19 maxlen: 19
85.195.240.0/20 maxlen: 20
82.197.160.0/20 maxlen: 20
2001:1620::/32 maxlen: 32
2a02:169::/32 maxlen: 32
2a02:168::/32 maxlen: 32
2a02:168::/30 maxlen: 30
2a07:600::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:3d:0d:68:11:92:67:9c:5e:e1:d0:33:10:a6:c6:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83479514959397c5e3fa76e1ea495e8e1f6c319b
Validity
Not Before: Apr 12 11:32:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=488a45829190bdc010bb63d8d086ddd15af8dbc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6a:9a:d0:22:14:7f:15:e5:aa:d1:8c:d8:12:
cf:c4:15:2a:dc:d6:6b:83:41:f1:41:62:52:74:16:
5a:71:18:29:cb:54:24:7b:d0:61:fe:04:1c:09:0b:
ce:5f:c3:c0:0a:6c:f4:88:13:f5:51:ee:fd:50:b2:
29:e9:1b:1c:a9:24:42:3c:7e:96:c7:ec:31:f9:74:
f1:19:b7:11:8e:6e:8e:34:3f:23:fc:49:90:5f:46:
b5:ad:5e:02:c7:a0:f3:25:3b:f1:5b:5a:f2:5a:1c:
16:c7:e5:9b:fd:58:c1:9d:4e:9e:cb:8d:e4:bf:f6:
c8:0f:b9:68:b5:43:55:23:b7:bf:72:17:f1:76:23:
58:88:4c:07:cd:e1:60:c8:80:89:ba:83:38:d1:5c:
b6:dd:68:43:5d:80:6c:a0:2f:4b:c5:51:0b:8f:9e:
69:b3:54:3c:de:4b:e5:03:a7:8f:68:bd:15:13:0e:
46:48:06:e0:76:11:06:6a:32:f3:a5:7b:b8:16:db:
5e:09:db:f2:2d:e7:24:38:d6:fe:60:df:b0:13:7c:
f7:85:07:0b:10:13:d6:9a:55:4d:ae:30:99:5f:6c:
8f:0d:8b:ee:4c:9a:6c:f9:c6:07:8e:97:ee:d0:8d:
4b:9c:27:94:5e:1f:90:0a:36:49:d4:dd:02:5b:77:
6f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8A:45:82:91:90:BD:C0:10:BB:63:D8:D0:86:DD:D1:5A:F8:DB:C8
X509v3 Authority Key Identifier:
keyid:83:47:95:14:95:93:97:C5:E3:FA:76:E1:EA:49:5E:8E:1F:6C:31:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g0eVFJWTl8Xj-nbh6klejh9sMZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/SIpFgpGQvcAQu2PY0Ibd0Vr428g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/e09181-2643-414c-8fbe-1e5e430dd711/1/g0eVFJWTl8Xj-nbh6klejh9sMZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.17.232.0/21
45.80.136.0/22
77.74.80.0/21
77.109.128.0/18
80.253.88.0/21
81.6.32.0/20
82.197.160.0/19
85.195.192.0/18
109.202.192.0/19
141.195.80.0/20
185.72.64.0/22
185.137.172.0/22
185.183.192.0/22
185.201.248.0/22
185.246.104.0/22
193.47.153.0/24
212.51.128.0/19
213.144.128.0/19
IPv6:
2001:1620::/32
2a02:168::/30
2a07:600::/29
Signature Algorithm: sha256WithRSAEncryption
77:7f:a9:59:f4:1c:03:1d:c3:67:38:5c:f8:16:a0:0c:e1:91:
81:b9:2e:6a:e0:99:86:91:5a:01:f6:ec:99:e2:7a:3e:37:09:
0a:32:fb:59:4f:18:50:d1:74:a1:2a:5c:49:71:01:fc:89:f0:
68:55:c7:f6:95:db:fc:f3:d2:08:5e:71:01:75:45:b5:25:57:
ea:55:60:48:94:68:ae:ea:c8:75:d4:3b:2c:5e:d2:5e:ef:d1:
12:8d:35:ff:8b:01:6b:6c:35:44:b4:da:e5:fe:52:f5:e3:f8:
25:10:4c:b2:16:a4:30:cb:8d:98:ea:ca:2e:1d:f9:78:fc:15:
0e:f9:4a:cb:e7:f2:7f:6f:28:31:3e:ee:5e:75:9f:2f:aa:7f:
03:e7:ef:9a:78:af:d2:f8:56:c6:9a:d7:0e:f8:dc:98:47:ee:
28:20:8e:4d:32:7e:de:7a:11:ed:c8:e9:e0:68:4a:fd:f0:25:
45:e4:a0:75:1f:1a:00:3b:25:2e:aa:5e:bb:63:1d:a5:f9:ac:
1f:74:47:91:1a:2e:76:7d:f3:26:dd:2c:9d:2a:73:06:70:aa:
73:3f:d2:97:6e:ce:95:9f:df:0e:16:cb:de:1f:35:88:9c:c5:
60:81:14:c4:19:97:72:cb:46:3e:29:b5:0a:5a:de:e3:b5:f5:
79:2b:74:ec
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgISAYd1PQ1oEZJnnF7h0DMQpsZ/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzNDc5NTE0OTU5Mzk3YzVlM2ZhNzZlMWVhNDk1ZThlMWY2
YzMxOWIwHhcNMjMwNDEyMTEzMjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODhhNDU4MjkxOTBiZGMwMTBiYjYzZDhkMDg2ZGRkMTVhZjhkYmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Gqa0CIUfxXlqtGM2BLPxBUq3NZr
g0HxQWJSdBZacRgpy1Qke9Bh/gQcCQvOX8PACmz0iBP1Ue79ULIp6RscqSRCPH6W
x+wx+XTxGbcRjm6OND8j/EmQX0a1rV4Cx6DzJTvxW1ryWhwWx+Wb/VjBnU6ey43k
v/bID7lotUNVI7e/chfxdiNYiEwHzeFgyICJuoM40Vy23WhDXYBsoC9LxVELj55p
s1Q83kvlA6ePaL0VEw5GSAbgdhEGajLzpXu4FtteCdvyLeckONb+YN+wE3z3hQcL
EBPWmlVNrjCZX2yPDYvuTJps+cYHjpfu0I1LnCeUXh+QCjZJ1N0CW3dv1wIDAQAB
o4ICjzCCAoswHQYDVR0OBBYEFEiKRYKRkL3AELtj2NCG3dFa+NvIMB8GA1UdIwQY
MBaAFINHlRSVk5fF4/p24epJXo4fbDGbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzBlVkZKV1RsOFhqLW5iaDZrbGVqaDlzTVpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9lMDkxODEtMjY0My00MTRjLThmYmUt
MWU1ZTQzMGRkNzExLzEvU0lwRmdwR1F2Y0FRdTJQWTBJYmQwVnI0MjhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9lMDkxODEtMjY0My00MTRjLThmYmUtMWU1ZTQzMGRkNzEx
LzEvZzBlVkZKV1RsOFhqLW5iaDZrbGVqaDlzTVpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGkBggrBgEFBQcBBwEB/wSBlDCBkTByBAIAATBsAwQDJRHo
AwQCLVCIAwQDTUpQAwQGTW2AAwQDUP1YAwQEUQYgAwQFUsWgAwQGVcPAAwQFbcrA
AwQEjcNQAwQCuUhAAwQCuYmsAwQCubfAAwQCucn4AwQCufZoAwQAwS+ZAwQF1DOA
AwQF1ZCAMBsEAgACMBUDBQAgARYgAwUCKgIBaAMFAyoHBgAwDQYJKoZIhvcNAQEL
BQADggEBAHd/qVn0HAMdw2c4XPgWoAzhkYG5LmrgmYaRWgH27Jniej43CQoy+1lP
GFDRdKEqXElxAfyJ8GhVx/aV2/zz0ghecQF1RbUlV+pVYEiUaK7qyHXUOyxe0l7v
0RKNNf+LAWtsNUS02uX+UvXj+CUQTLIWpDDLjZjqyi4d+Xj8FQ75Ssvn8n9vKDE+
7l51ny+qfwPn75p4r9L4Vsaa1w743JhH7iggjk0yft56Ee3I6eBoSv3wJUXkoHUf
GgA7JS6qXrtjHaX5rB90R5EaLnZ98ybdLJ0qcwZwqnM/0pduzpWf3w4Wy94fNYic
xWCBFMQZl3LLRj4ptQpa3uO19XkrdOw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:39 2024 by rpki-client on console-ams.rpki-client.org