Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/I7DI4G0DQE6efGTHjo4l1LP7KzI.roa
File: I7DI4G0DQE6efGTHjo4l1LP7KzI.roa (raw, json)
Hash identifier: fHLXdmG2unu/NLO7uyM/fGqOXo5jT1Rel3UvkbL6Mfg=
Subject key identifier: 23:B0:C8:E0:6D:03:40:4E:9E:7C:64:C7:8E:8E:25:D4:B3:FB:2B:32
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018A416889E5EF6F4FCADEEA5ECF9904293B
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/I7DI4G0DQE6efGTHjo4l1LP7KzI.roa
Signing time: Tue 29 Aug 2023 13:08:04 +0000
ROA not before: Tue 29 Aug 2023 13:08:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50261
IP address blocks: 80.64.64.0/21 maxlen: 21
37.220.128.0/20 maxlen: 20
77.111.112.0/21 maxlen: 21
80.64.72.0/21 maxlen: 21
77.111.120.0/21 maxlen: 21
92.61.104.0/21 maxlen: 21
109.74.48.0/20 maxlen: 20
2a02:d400::/29 maxlen: 29
2a02:d400:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Aug 2023 07:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:68:89:e5:ef:6f:4f:ca:de:ea:5e:cf:99:04:29:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Aug 29 13:08:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23b0c8e06d03404e9e7c64c78e8e25d4b3fb2b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fe:8c:ea:0d:1e:e2:a5:58:83:4c:a6:aa:bd:
2f:87:d2:a6:f2:d1:6c:d7:7e:a2:d1:29:c4:4f:28:
53:d3:9a:3f:34:9f:71:60:2d:9c:f7:36:7f:83:0d:
4a:d1:a6:f5:ac:c9:73:b1:59:8c:fc:62:18:1e:95:
ec:49:bb:42:cc:f2:65:f8:01:30:87:b2:97:ad:cb:
0a:38:54:6e:a3:85:35:cd:46:a9:ff:cd:4a:89:2f:
60:df:61:bd:18:32:c8:82:b7:94:80:21:d9:1b:4a:
62:87:38:2a:33:b1:3d:35:58:e5:5a:fb:6f:1f:d0:
49:46:f1:72:b0:2c:8e:b8:67:d2:a1:4d:9e:42:c0:
e9:bf:50:e5:7a:60:f2:04:78:62:5d:60:48:30:cc:
d5:ad:e6:6e:54:9c:74:2c:83:a4:a3:0a:f5:f3:13:
30:7e:b7:11:1e:2a:04:11:70:64:96:64:cb:f8:90:
5d:f0:40:2b:f8:6f:77:8f:8e:02:95:dc:ef:51:c3:
68:74:53:01:69:80:29:cc:df:3e:e4:1b:4a:e8:4a:
a8:38:92:2b:cd:61:56:32:0d:a1:8e:91:24:e4:93:
3e:7c:10:31:0a:40:8b:fa:a0:62:55:52:0b:8c:eb:
96:56:ab:3d:1f:e2:c1:84:39:28:b3:fc:59:f6:a0:
e4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B0:C8:E0:6D:03:40:4E:9E:7C:64:C7:8E:8E:25:D4:B3:FB:2B:32
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/I7DI4G0DQE6efGTHjo4l1LP7KzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.128.0/20
77.111.112.0/20
80.64.64.0/20
92.61.104.0/21
109.74.48.0/20
IPv6:
2a02:d400::/29
Signature Algorithm: sha256WithRSAEncryption
c5:fc:5f:6c:b8:96:22:dc:dd:1a:de:20:e7:8c:c5:20:ef:e3:
43:03:e4:d5:28:40:26:a8:0c:29:20:f0:6f:a5:b9:5a:d8:9f:
45:be:94:97:c0:5f:ab:20:32:0f:7a:3e:32:9f:be:21:48:b1:
b0:ab:c5:31:b5:6c:5a:e6:b6:1d:8b:3d:d2:53:d8:80:d8:8a:
27:9a:0c:f9:17:73:2e:06:00:1e:8f:62:d2:41:41:3e:8e:cb:
ac:53:5c:c6:10:09:e9:de:06:23:a3:04:b2:85:c6:95:85:68:
fd:88:92:c8:c6:c0:c6:df:31:47:8b:a4:6f:f9:2c:a2:8c:31:
79:4b:65:82:94:02:9e:8a:b0:de:0a:c6:36:6e:67:b5:e2:99:
dc:a4:1e:39:1e:94:ba:bf:f2:bb:27:60:4c:62:3a:0c:0a:3e:
99:ff:6a:c5:8c:95:b3:03:11:c1:12:20:cd:4f:ff:66:2e:96:
15:6e:07:3d:e7:e5:06:e1:77:ee:7a:bb:e3:a3:ee:b4:e6:ea:
85:7e:44:12:18:38:00:84:2e:bf:76:f0:45:0f:9d:59:0e:bb:
80:86:f8:a1:a9:eb:81:82:e0:db:09:7b:7d:5f:5d:3c:1b:b9:
66:ea:b5:a9:e7:ba:3c:06:d5:11:84:68:33:c8:7a:f4:89:2f:
2e:89:85:2e
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYpBaInl729Pyt7qXs+ZBCk7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MTk3NTU4M2IyNTAzNjJjODE1MGY2M2FkYjMwYTBmNmEw
YzZmYzMwHhcNMjMwODI5MTMwODA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2IwYzhlMDZkMDM0MDRlOWU3YzY0Yzc4ZThlMjVkNGIzZmIyYjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmf6M6g0e4qVYg0ymqr0vh9Km8tFs
136i0SnETyhT05o/NJ9xYC2c9zZ/gw1K0ab1rMlzsVmM/GIYHpXsSbtCzPJl+AEw
h7KXrcsKOFRuo4U1zUap/81KiS9g32G9GDLIgreUgCHZG0pihzgqM7E9NVjlWvtv
H9BJRvFysCyOuGfSoU2eQsDpv1DlemDyBHhiXWBIMMzVreZuVJx0LIOkowr18xMw
frcRHioEEXBklmTL+JBd8EAr+G93j44CldzvUcNodFMBaYApzN8+5BtK6EqoOJIr
zWFWMg2hjpEk5JM+fBAxCkCL+qBiVVILjOuWVqs9H+LBhDkos/xZ9qDkFQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFCOwyOBtA0BOnnxkx46OJdSz+ysyMB8GA1UdIwQY
MBaAFGQZdVg7JQNiyBUPY62zCg9qDG/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQt
ZjFjMzNhYTJmZDUwLzEvSTdESTRHMERRRTZlZkdUSGpvNGwxTFA3S3pJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQtZjFjMzNhYTJmZDUw
LzEvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQEJdyAAwQE
TW9wAwQEUEBAAwQDXD1oAwQEbUowMA0EAgACMAcDBQMqAtQAMA0GCSqGSIb3DQEB
CwUAA4IBAQDF/F9suJYi3N0a3iDnjMUg7+NDA+TVKEAmqAwpIPBvpbla2J9FvpSX
wF+rIDIPej4yn74hSLGwq8UxtWxa5rYdiz3SU9iA2Ionmgz5F3MuBgAej2LSQUE+
jsusU1zGEAnp3gYjowSyhcaVhWj9iJLIxsDG3zFHi6Rv+SyijDF5S2WClAKeirDe
CsY2bme14pncpB45HpS6v/K7J2BMYjoMCj6Z/2rFjJWzAxHBEiDNT/9mLpYVbgc9
5+UG4Xfuervjo+605uqFfkQSGDgAhC6/dvBFD51ZDruAhvihqeuBguDbCXt9X108
G7lm6rWp57o8BtURhGgzyHr0iS8uiYUu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:21 2024 by rpki-client on console-ams.rpki-client.org