Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pPLjVXfEIZ-AG0m2B5AqP7oXunM.roa
File: pPLjVXfEIZ-AG0m2B5AqP7oXunM.roa (raw, json)
Hash identifier: 2jMaHWQJvbs0h9C0YSiJMWMh0pe89b+NK7exur/u+U0=
Subject key identifier: A4:F2:E3:55:77:C4:21:9F:80:1B:49:B6:07:90:2A:3F:BA:17:BA:73
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018C86D9711E067BCF0284DB00989C1B3303
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pPLjVXfEIZ-AG0m2B5AqP7oXunM.roa
Signing time: Wed 20 Dec 2023 10:50:46 +0000
ROA not before: Wed 20 Dec 2023 10:50:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203380
IP address blocks: 82.118.245.0/24 maxlen: 24
77.76.9.0/24 maxlen: 24
79.124.7.0/24 maxlen: 24
77.76.13.0/24 maxlen: 24
91.148.141.0/24 maxlen: 24
78.128.99.0/24 maxlen: 24
94.72.141.0/24 maxlen: 24
94.72.143.0/24 maxlen: 24
94.72.140.0/23 maxlen: 24
82.118.227.0/24 maxlen: 24
82.118.230.0/24 maxlen: 24
82.118.234.0/24 maxlen: 24
82.118.235.0/24 maxlen: 24
130.185.251.0/24 maxlen: 24
79.124.77.0/24 maxlen: 24
78.128.127.0/24 maxlen: 24
2a01:8740:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:d9:71:1e:06:7b:cf:02:84:db:00:98:9c:1b:33:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Dec 20 10:50:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4f2e35577c4219f801b49b607902a3fba17ba73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a8:11:74:af:5a:6e:1b:8a:6b:94:19:67:8d:
51:aa:bf:53:06:b0:6f:0c:a8:2e:b6:75:b6:af:42:
0e:5c:69:a1:13:3f:0d:10:64:59:66:23:27:7e:b3:
49:8a:27:31:17:9c:66:5b:67:72:0d:50:23:75:82:
1c:6d:ee:5d:ba:82:5b:95:75:90:66:46:9b:8b:c5:
b8:28:de:e1:c5:11:9f:9d:39:d8:c2:1b:37:1f:c2:
46:81:4e:8b:82:22:6e:01:13:df:ad:28:71:3c:64:
2f:7b:e7:7b:40:3e:c7:e7:2d:df:d8:13:2e:09:02:
af:12:1e:a6:23:28:92:64:6c:a7:70:e8:85:05:6c:
6c:79:bc:30:53:43:17:f7:98:4f:d0:1a:8b:91:2a:
0f:aa:e1:7f:31:a8:21:24:9d:4c:ec:2f:2a:84:d4:
d4:8f:f0:95:e0:97:63:61:8d:f2:8d:f5:74:1e:7b:
e1:6e:bf:6c:88:d8:ba:88:73:42:65:9f:ae:d9:1c:
f7:c3:dc:99:27:5c:f8:8b:50:50:69:9d:27:41:a8:
98:50:8c:c9:b0:f0:cd:25:af:00:60:98:28:54:b8:
f3:a4:0d:19:f0:79:c2:0a:80:8a:c5:5e:58:bb:12:
54:32:40:a0:82:39:a6:45:9d:cb:66:07:68:b0:f9:
a7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F2:E3:55:77:C4:21:9F:80:1B:49:B6:07:90:2A:3F:BA:17:BA:73
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pPLjVXfEIZ-AG0m2B5AqP7oXunM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.76.9.0/24
77.76.13.0/24
78.128.99.0/24
78.128.127.0/24
79.124.7.0/24
79.124.77.0/24
82.118.227.0/24
82.118.230.0/24
82.118.234.0/23
82.118.245.0/24
91.148.141.0/24
94.72.140.0/23
94.72.143.0/24
130.185.251.0/24
IPv6:
2a01:8740:1::/48
Signature Algorithm: sha256WithRSAEncryption
05:e7:a1:21:6f:21:15:ed:8a:fb:63:f9:ab:21:fc:b7:e2:fd:
6e:2a:c5:73:12:aa:84:5f:7d:38:27:66:20:9c:fc:26:de:e1:
ea:d8:c1:6b:d8:22:5a:e1:85:88:f0:1d:9c:19:c5:74:a7:4e:
83:1e:bd:88:8b:7c:85:1d:f8:04:a3:ee:4f:69:d7:75:7c:bb:
db:6f:69:a8:aa:ba:74:25:da:41:9f:34:22:7e:37:fe:fe:41:
1d:01:ec:e9:4c:96:ef:8f:4b:47:52:da:8a:da:82:80:d3:ed:
fd:e8:cc:b7:09:9a:54:b2:90:98:80:3b:23:03:73:48:70:58:
49:e2:9e:af:79:37:5a:7c:01:0a:98:c7:83:06:76:06:ef:97:
d7:f4:cd:47:0f:9b:2d:54:b0:48:a7:29:0e:fc:38:1a:75:4d:
3d:f6:b7:0f:21:ac:c8:43:cd:30:d3:19:d8:c4:32:c1:c9:d3:
06:50:b4:97:c9:d5:87:d7:b1:66:4b:d3:d9:d1:e6:82:ff:4e:
ea:7f:09:7e:a4:8b:b9:38:51:f3:af:76:76:99:50:fd:bf:e8:
de:35:dc:2e:d3:c6:ee:c8:ee:f0:09:e6:c9:db:fa:16:b3:d1:
e5:2b:9b:ec:d7:05:09:1f:09:71:e5:7d:fe:d9:3e:a2:46:28:
16:71:52:e5
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAYyG2XEeBnvPAoTbAJicGzMDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1
Y2IyYWEwHhcNMjMxMjIwMTA1MDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGYyZTM1NTc3YzQyMTlmODAxYjQ5YjYwNzkwMmEzZmJhMTdiYTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqgRdK9abhuKa5QZZ41Rqr9TBrBv
DKgutnW2r0IOXGmhEz8NEGRZZiMnfrNJiicxF5xmW2dyDVAjdYIcbe5duoJblXWQ
Zkabi8W4KN7hxRGfnTnYwhs3H8JGgU6LgiJuARPfrShxPGQve+d7QD7H5y3f2BMu
CQKvEh6mIyiSZGyncOiFBWxsebwwU0MX95hP0BqLkSoPquF/MaghJJ1M7C8qhNTU
j/CV4JdjYY3yjfV0Hnvhbr9siNi6iHNCZZ+u2Rz3w9yZJ1z4i1BQaZ0nQaiYUIzJ
sPDNJa8AYJgoVLjzpA0Z8HnCCoCKxV5YuxJUMkCggjmmRZ3LZgdosPmnhQIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFKTy41V3xCGfgBtJtgeQKj+6F7pzMB8GA1UdIwQY
MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt
ZGFjYjVmMzU2ZWEzLzEvcFBMalZYZkVJWi1BRzBtMkI1QXFQN29YdW5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz
LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBaBAIAATBUAwQATUwJAwQA
TUwNAwQAToBjAwQAToB/AwQAT3wHAwQAT3xNAwQAUnbjAwQAUnbmAwQBUnbqAwQA
Unb1AwQAW5SNAwQBXkiMAwQAXkiPAwQAgrn7MA8EAgACMAkDBwAqAYdAAAEwDQYJ
KoZIhvcNAQELBQADggEBAAXnoSFvIRXtivtj+ash/Lfi/W4qxXMSqoRffTgnZiCc
/Cbe4erYwWvYIlrhhYjwHZwZxXSnToMevYiLfIUd+ASj7k9p13V8u9tvaaiqunQl
2kGfNCJ+N/7+QR0B7OlMlu+PS0dS2oragoDT7f3ozLcJmlSykJiAOyMDc0hwWEni
nq95N1p8AQqYx4MGdgbvl9f0zUcPmy1UsEinKQ78OBp1TT32tw8hrMhDzTDTGdjE
MsHJ0wZQtJfJ1YfXsWZL09nR5oL/Tup/CX6ki7k4UfOvdnaZUP2/6N413C7Txu7I
7vAJ5snb+haz0eUrm+zXBQkfCXHlff7ZPqJGKBZxUuU=
-----END CERTIFICATE-----
Generated at Thu Dec 21 09:40:48 2023 by rpki-client on console-fra.rpki-client.org