Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7vd1RrRwrnEkIQ1E5b5YhO_R9Ek.roa
File: 7vd1RrRwrnEkIQ1E5b5YhO_R9Ek.roa (raw, json)
Hash identifier: JaXqoW5Hlnijwi6WmtVrDJI85DQCpM1A7+2qRekSG78=
Subject key identifier: EE:F7:75:46:B4:70:AE:71:24:21:0D:44:E5:BE:58:84:EF:D1:F4:49
Certificate issuer: /CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Certificate serial: 0187C2A22F4DEB0019DB3B717C7FA1808268
Authority key identifier: EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7vd1RrRwrnEkIQ1E5b5YhO_R9Ek.roa
Signing time: Thu 27 Apr 2023 12:13:41 +0000
ROA not before: Thu 27 Apr 2023 12:13:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 147.189.176.0/20 maxlen: 20
194.169.122.0/23 maxlen: 23
194.169.121.0/24 maxlen: 24
194.169.122.0/24 maxlen: 24
194.169.123.0/24 maxlen: 24
176.65.12.0/22 maxlen: 22
199.204.215.0/24 maxlen: 24
94.26.112.0/20 maxlen: 20
217.66.224.0/19 maxlen: 19
82.205.0.0/17 maxlen: 17
199.250.128.0/19 maxlen: 19
86.107.16.0/22 maxlen: 22
188.209.208.0/22 maxlen: 22
87.252.108.0/22 maxlen: 22
188.215.100.0/22 maxlen: 22
89.239.32.0/20 maxlen: 20
37.8.0.0/17 maxlen: 17
212.33.96.0/19 maxlen: 19
185.171.132.0/22 maxlen: 22
109.232.162.0/23 maxlen: 23
185.40.192.0/22 maxlen: 22
185.138.132.0/22 maxlen: 22
185.90.242.0/24 maxlen: 24
82.102.192.0/18 maxlen: 24
212.106.64.0/19 maxlen: 19
217.78.48.0/21 maxlen: 21
217.78.48.0/20 maxlen: 20
217.78.60.0/22 maxlen: 22
217.21.0.0/20 maxlen: 20
85.113.96.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:a2:2f:4d:eb:00:19:db:3b:71:7c:7f:a1:80:82:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec3a633ef2c08251a58603562e56aa6efa93ec25
Validity
Not Before: Apr 27 12:13:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eef77546b470ae7124210d44e5be5884efd1f449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:65:78:e6:72:aa:a6:73:bd:87:81:9c:3b:ad:
91:df:9a:ac:bc:d7:7f:ab:f5:84:e1:2b:5c:c3:39:
c9:eb:c7:06:63:a9:17:3e:5c:d0:47:b9:c3:04:71:
6b:5a:a9:bd:3b:cc:35:bf:9a:5a:2d:60:a6:32:4f:
8c:d9:f1:ae:d4:7f:31:63:9e:df:c1:9b:b0:10:03:
51:73:e9:f4:8a:ec:17:c8:52:17:c4:76:5b:34:d2:
ee:60:f5:39:c9:16:11:92:21:22:16:42:07:d0:5e:
9d:4c:31:54:40:7c:ae:df:9c:87:3e:6d:b3:be:db:
a8:24:e1:6b:16:92:75:d7:55:bd:c6:f1:76:0a:c8:
2c:03:98:6d:0f:a8:fa:77:63:d1:69:82:b2:26:fb:
04:8d:9c:f2:59:ed:c5:e7:fe:02:3f:20:d6:a7:7e:
9c:3a:02:03:45:97:bb:18:e1:18:03:cf:68:c8:5c:
9c:70:fe:ab:97:9d:a0:f2:6b:21:52:ae:2c:f4:f5:
3e:e4:fb:de:24:05:23:23:bd:e9:4d:99:33:4d:49:
8f:79:79:6d:33:6b:a3:5a:b4:9f:cf:b9:6d:78:ac:
20:05:f7:21:f7:98:a7:af:0c:d2:6b:b8:17:94:1b:
c1:46:9f:27:32:d9:37:e9:ee:b8:16:eb:22:fb:c5:
38:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F7:75:46:B4:70:AE:71:24:21:0D:44:E5:BE:58:84:EF:D1:F4:49
X509v3 Authority Key Identifier:
keyid:EC:3A:63:3E:F2:C0:82:51:A5:86:03:56:2E:56:AA:6E:FA:93:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7DpjPvLAglGlhgNWLlaqbvqT7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7vd1RrRwrnEkIQ1E5b5YhO_R9Ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c1b1f0-234f-45d5-8595-f7c2c2a91bc2/1/7DpjPvLAglGlhgNWLlaqbvqT7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.8.0.0/17
82.102.192.0/18
82.205.0.0/17
85.113.96.0/19
86.107.16.0/22
87.252.108.0/22
89.239.32.0/20
94.26.112.0/20
109.232.162.0/23
147.189.176.0/20
176.65.12.0/22
185.40.192.0/22
185.90.242.0/24
185.138.132.0/22
185.171.132.0/22
188.209.208.0/22
188.215.100.0/22
194.169.121.0-194.169.123.255
199.204.215.0/24
199.250.128.0/19
212.33.96.0/19
212.106.64.0/19
217.21.0.0/20
217.66.224.0/19
217.78.48.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:e4:89:93:26:e6:fd:15:9c:3b:88:52:c2:ec:11:24:63:5b:
db:f6:7d:e6:22:6e:08:ff:35:e6:54:50:15:9c:d2:71:f8:b8:
40:10:ae:a0:ac:52:c2:2e:0c:b7:6e:4a:f8:1e:96:bd:d3:50:
d5:1d:1a:9c:91:a3:19:ad:75:cc:1f:a6:0a:d8:23:19:47:33:
17:8d:cb:21:91:53:68:f2:a4:26:1c:8c:d9:2e:54:6b:73:a4:
4b:d7:e2:f5:8e:43:04:a9:51:78:14:da:db:72:84:31:e8:ba:
ec:ad:66:d3:2e:14:9d:2e:8d:8a:a1:ce:cb:36:9d:3b:56:2b:
9e:fb:b1:85:57:53:7f:8f:72:71:fa:56:b4:a6:87:06:46:72:
5a:43:83:86:f0:77:c4:aa:ed:0f:1b:2e:09:e5:4e:00:d9:57:
c2:22:53:bf:ce:97:8c:80:39:ea:4a:88:18:d0:90:5f:fd:26:
bd:84:62:40:9c:71:34:9c:64:ee:6e:ca:bf:15:02:5f:10:a7:
d8:54:cc:a0:e4:11:c9:7b:46:78:a6:fc:e5:55:bc:f7:d5:c6:
72:3d:6c:64:97:87:b1:66:a9:c0:51:5e:fc:00:c4:17:bc:86:
8b:76:e2:b6:25:e0:77:4c:0a:87:85:a1:c1:f1:e6:c2:58:f8:
95:40:91:18
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAYfCoi9N6wAZ2ztxfH+hgIJoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjM2E2MzNlZjJjMDgyNTFhNTg2MDM1NjJlNTZhYTZlZmE5
M2VjMjUwHhcNMjMwNDI3MTIxMzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZWY3NzU0NmI0NzBhZTcxMjQyMTBkNDRlNWJlNTg4NGVmZDFmNDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2V45nKqpnO9h4GcO62R35qsvNd/
q/WE4StcwznJ68cGY6kXPlzQR7nDBHFrWqm9O8w1v5paLWCmMk+M2fGu1H8xY57f
wZuwEANRc+n0iuwXyFIXxHZbNNLuYPU5yRYRkiEiFkIH0F6dTDFUQHyu35yHPm2z
vtuoJOFrFpJ111W9xvF2CsgsA5htD6j6d2PRaYKyJvsEjZzyWe3F5/4CPyDWp36c
OgIDRZe7GOEYA89oyFyccP6rl52g8mshUq4s9PU+5PveJAUjI73pTZkzTUmPeXlt
M2ujWrSfz7lteKwgBfch95inrwzSa7gXlBvBRp8nMtk36e64Fusi+8U4/wIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFO73dUa0cK5xJCENROW+WITv0fRJMB8GA1UdIwQY
MBaAFOw6Yz7ywIJRpYYDVi5Wqm76k+wlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0RwalB2TEFnbEdsaGdOV0xsYXFidnFUN0NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9jMWIxZjAtMjM0Zi00NWQ1LTg1OTUt
ZjdjMmMyYTkxYmMyLzEvN3ZkMVJyUndybkVrSVExRTViNVloT19SOUVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9jMWIxZjAtMjM0Zi00NWQ1LTg1OTUtZjdjMmMyYTkxYmMy
LzEvN0RwalB2TEFnbEdsaGdOV0xsYXFidnFUN0NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG7BggrBgEFBQcBBwEB/wSBqzCBqDCBpQQCAAEwgZ4DBAcl
CAADBAZSZsADBAdSzQADBAVVcWADBAJWaxADBAJX/GwDBARZ7yADBAReGnADBAFt
6KIDBASTvbADBAKwQQwDBAK5KMADBAC5WvIDBAK5ioQDBAK5q4QDBAK80dADBAK8
12QwDAMEAMKpeQMEAsKpeAMEAMfM1wMEBcf6gAMEBdQhYAMEBdRqQAMEBNkVAAME
BdlC4AMEBNlOMDANBgkqhkiG9w0BAQsFAAOCAQEALuSJkybm/RWcO4hSwuwRJGNb
2/Z95iJuCP815lRQFZzScfi4QBCuoKxSwi4Mt25K+B6WvdNQ1R0anJGjGa11zB+m
CtgjGUczF43LIZFTaPKkJhyM2S5Ua3OkS9fi9Y5DBKlReBTa23KEMei67K1m0y4U
nS6NiqHOyzadO1YrnvuxhVdTf49ycfpWtKaHBkZyWkODhvB3xKrtDxsuCeVOANlX
wiJTv86XjIA56kqIGNCQX/0mvYRiQJxxNJxk7m7KvxUCXxCn2FTMoOQRyXtGeKb8
5VW899XGcj1sZJeHsWapwFFe/ADEF7yGi3bitiXgd0wKh4WhwfHmwlj4lUCRGA==
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:32 2024 by rpki-client on console-fra.rpki-client.org