Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/BpLykSrhVZZYsiWhWGz2cJNg58E.roa
File: BpLykSrhVZZYsiWhWGz2cJNg58E.roa (raw, json)
Hash identifier: Dhl+p9VWbHJd/c0+23uOeyh/9eCDzEVYFL9rDLThn5M=
Subject key identifier: 06:92:F2:91:2A:E1:55:96:58:B2:25:A1:58:6C:F6:70:93:60:E7:C1
Certificate issuer: /CN=09cd218abcdf66e79500ab913cd21cf06e405d4e
Certificate serial: 01881E042A90CCE5F779FDDA68A219B2663E
Authority key identifier: 09:CD:21:8A:BC:DF:66:E7:95:00:AB:91:3C:D2:1C:F0:6E:40:5D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cc0hirzfZueVAKuRPNIc8G5AXU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/BpLykSrhVZZYsiWhWGz2cJNg58E.roa
Signing time: Mon 15 May 2023 06:06:09 +0000
ROA not before: Mon 15 May 2023 06:06:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35753
IP address blocks: 82.167.208.0/20 maxlen: 20
80.240.64.0/20 maxlen: 20
82.167.224.0/21 maxlen: 21
82.167.232.0/21 maxlen: 21
82.167.240.0/22 maxlen: 22
82.167.244.0/22 maxlen: 22
82.167.252.0/23 maxlen: 23
82.167.250.0/23 maxlen: 23
82.167.248.0/24 maxlen: 24
82.167.249.0/24 maxlen: 24
82.167.152.0/22 maxlen: 22
82.167.148.0/22 maxlen: 22
82.167.156.0/22 maxlen: 22
82.167.160.0/22 maxlen: 22
82.167.164.0/22 maxlen: 22
82.167.172.0/22 maxlen: 22
82.167.168.0/22 maxlen: 22
82.167.180.0/22 maxlen: 22
82.167.192.0/20 maxlen: 20
82.167.192.0/18 maxlen: 18
82.167.255.0/24 maxlen: 24
82.167.254.0/24 maxlen: 24
82.167.0.0/17 maxlen: 17
82.167.0.0/16 maxlen: 16
82.167.96.0/22 maxlen: 22
82.167.92.0/22 maxlen: 22
82.167.104.0/22 maxlen: 22
82.167.100.0/22 maxlen: 22
82.167.108.0/22 maxlen: 22
82.167.112.0/22 maxlen: 22
82.167.116.0/22 maxlen: 22
82.167.124.0/22 maxlen: 22
82.167.120.0/22 maxlen: 22
82.167.128.0/19 maxlen: 19
82.167.144.0/22 maxlen: 22
82.167.64.0/22 maxlen: 22
82.167.68.0/22 maxlen: 22
82.167.76.0/22 maxlen: 22
82.167.72.0/22 maxlen: 22
82.167.80.0/22 maxlen: 22
82.167.84.0/22 maxlen: 22
82.167.88.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:04:2a:90:cc:e5:f7:79:fd:da:68:a2:19:b2:66:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09cd218abcdf66e79500ab913cd21cf06e405d4e
Validity
Not Before: May 15 06:06:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0692f2912ae1559658b225a1586cf6709360e7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4c:fc:c7:9e:34:02:25:8c:14:9e:9b:53:60:
75:e8:37:78:98:05:01:85:64:3f:55:f7:90:50:10:
74:03:be:96:b3:f4:48:01:d5:f8:89:a9:ed:2f:72:
d7:87:2d:da:74:2f:20:96:75:f7:fe:8e:fa:c6:ea:
c1:0e:42:aa:d6:90:6d:73:07:9f:4f:90:c3:e4:59:
99:a0:44:d3:f9:76:20:92:73:45:1e:e4:97:00:a8:
7c:df:18:77:24:6a:ee:b6:45:44:d2:49:e5:69:e6:
67:63:ac:dd:1f:86:be:2e:f5:a4:1d:71:aa:c7:fa:
a1:ff:26:30:33:3e:64:e6:fc:a9:29:ba:a2:59:3a:
37:cf:00:5e:e0:08:21:7d:6b:8a:69:0c:1d:78:87:
52:eb:99:2a:68:c5:f8:a5:e7:48:1c:f7:2b:76:28:
73:15:ae:60:90:4d:e1:c2:3b:4e:7d:66:a0:64:e6:
90:8f:f1:01:5a:21:21:24:06:df:30:71:77:d0:2f:
9c:dc:32:92:c6:fc:b3:9a:df:7e:6d:41:e8:89:d5:
f9:b3:e7:08:82:d5:92:3b:bd:de:d8:b3:c1:24:48:
9b:34:7f:1a:3e:3b:af:9c:ef:1a:6f:4f:da:93:dc:
db:da:1c:14:a8:53:2c:ed:eb:71:f8:c8:69:f7:04:
c8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:92:F2:91:2A:E1:55:96:58:B2:25:A1:58:6C:F6:70:93:60:E7:C1
X509v3 Authority Key Identifier:
keyid:09:CD:21:8A:BC:DF:66:E7:95:00:AB:91:3C:D2:1C:F0:6E:40:5D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cc0hirzfZueVAKuRPNIc8G5AXU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/BpLykSrhVZZYsiWhWGz2cJNg58E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77fe48-d1f1-449a-807d-4c19ec5b57ca/1/Cc0hirzfZueVAKuRPNIc8G5AXU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.240.64.0/20
82.167.0.0/16
Signature Algorithm: sha256WithRSAEncryption
31:76:38:59:36:51:b4:08:51:91:02:4a:87:82:5a:ea:33:46:
70:27:a5:aa:bc:01:de:98:a8:ca:6d:3a:92:1f:cf:0d:84:e3:
e1:88:d9:e5:b9:a5:72:f2:30:ba:25:15:08:a9:0a:e7:be:23:
60:62:8f:80:fa:b3:59:21:40:6d:b0:17:c3:b8:28:86:16:22:
51:42:0e:40:70:dc:6c:1b:fc:09:be:09:99:2a:c7:b7:03:39:
7c:4e:c5:bb:f1:dc:73:55:cf:3a:85:84:b8:02:c8:1e:b0:dd:
6a:15:f1:5b:67:59:b8:2a:b3:de:f9:24:23:84:0d:cc:ed:76:
f5:37:2b:1c:6c:3e:a9:c6:0c:f3:43:f8:ca:1d:16:e4:64:ef:
9e:e7:93:c5:37:82:7a:04:bc:72:d1:54:85:34:04:26:c4:7e:
13:d6:86:db:49:7a:cf:a5:9e:5a:27:64:c6:79:a4:e0:7a:7c:
f7:96:d4:c2:39:12:9d:7a:4c:9e:0f:4e:72:28:4a:9d:1a:ee:
ca:ec:0c:b3:83:20:ab:40:ae:b2:1d:03:08:66:d7:2f:48:57:
83:cf:cb:47:3b:81:9e:0b:ff:78:4e:86:fb:20:1c:b8:1d:3a:
dd:4b:dc:80:49:05:cc:10:5b:84:74:4a:3d:fe:f3:bb:bd:b9:
d2:74:ba:0f
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAYgeBCqQzOX3ef3aaKIZsmY+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5Y2QyMThhYmNkZjY2ZTc5NTAwYWI5MTNjZDIxY2YwNmU0
MDVkNGUwHhcNMjMwNTE1MDYwNjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjkyZjI5MTJhZTE1NTk2NThiMjI1YTE1ODZjZjY3MDkzNjBlN2MxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkz8x540AiWMFJ6bU2B16Dd4mAUB
hWQ/VfeQUBB0A76Ws/RIAdX4iantL3LXhy3adC8glnX3/o76xurBDkKq1pBtcwef
T5DD5FmZoETT+XYgknNFHuSXAKh83xh3JGrutkVE0knlaeZnY6zdH4a+LvWkHXGq
x/qh/yYwMz5k5vypKbqiWTo3zwBe4AghfWuKaQwdeIdS65kqaMX4pedIHPcrdihz
Fa5gkE3hwjtOfWagZOaQj/EBWiEhJAbfMHF30C+c3DKSxvyzmt9+bUHoidX5s+cI
gtWSO73e2LPBJEibNH8aPjuvnO8ab0/ak9zb2hwUqFMs7etx+Mhp9wTIcQIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFAaS8pEq4VWWWLIloVhs9nCTYOfBMB8GA1UdIwQY
MBaAFAnNIYq832bnlQCrkTzSHPBuQF1OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2MwaGlyemZadWVWQUt1UlBOSWM4RzVBWFU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi83N2ZlNDgtZDFmMS00NDlhLTgwN2Qt
NGMxOWVjNWI1N2NhLzEvQnBMeWtTcmhWWlpZc2lXaFdHejJjSk5nNThFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi83N2ZlNDgtZDFmMS00NDlhLTgwN2QtNGMxOWVjNWI1N2Nh
LzEvQ2MwaGlyemZadWVWQUt1UlBOSWM4RzVBWFU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAATALAwQEUPBAAwMA
UqcwDQYJKoZIhvcNAQELBQADggEBADF2OFk2UbQIUZECSoeCWuozRnAnpaq8Ad6Y
qMptOpIfzw2E4+GI2eW5pXLyMLolFQipCue+I2Bij4D6s1khQG2wF8O4KIYWIlFC
DkBw3Gwb/Am+CZkqx7cDOXxOxbvx3HNVzzqFhLgCyB6w3WoV8VtnWbgqs975JCOE
DcztdvU3KxxsPqnGDPND+ModFuRk757nk8U3gnoEvHLRVIU0BCbEfhPWhttJes+l
nlonZMZ5pOB6fPeW1MI5Ep16TJ4PTnIoSp0a7srsDLODIKtArrIdAwhm1y9IV4PP
y0c7gZ4L/3hOhvsgHLgdOt1L3IBJBcwQW4R0Sj3+87u9udJ0ug8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:12 2023 by rpki-client on console-fra.rpki-client.org