Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/drfvRBBkyVmMrrXshukxi_vwEmk.roa
File: drfvRBBkyVmMrrXshukxi_vwEmk.roa (raw, json)
Hash identifier: g74k+VRWbV/0arpBu78ebLfcEJaWSEXugQhfBwpPOfw=
Subject key identifier: 76:B7:EF:44:10:64:C9:59:8C:AE:B5:EC:86:E9:31:8B:FB:F0:12:69
Certificate issuer: /CN=5f4a8f04ef2febe54f9db6a9a2f856594b6e2f08
Certificate serial: 018AEFB1C6829DB33088BBB91B3B722E5C04
Authority key identifier: 5F:4A:8F:04:EF:2F:EB:E5:4F:9D:B6:A9:A2:F8:56:59:4B:6E:2F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X0qPBO8v6-VPnbapovhWWUtuLwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/drfvRBBkyVmMrrXshukxi_vwEmk.roa
Signing time: Mon 02 Oct 2023 09:21:59 +0000
ROA not before: Mon 02 Oct 2023 09:21:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16178
IP address blocks: 178.77.0.0/18 maxlen: 18
178.77.0.0/20 maxlen: 20
178.77.0.0/19 maxlen: 19
185.14.124.0/22 maxlen: 22
85.158.36.0/22 maxlen: 22
85.158.32.0/24 maxlen: 24
85.158.35.0/24 maxlen: 24
85.158.32.0/21 maxlen: 21
217.75.192.0/24 maxlen: 24
217.75.192.0/20 maxlen: 20
217.75.192.0/21 maxlen: 21
217.75.193.0/24 maxlen: 24
217.75.194.0/24 maxlen: 24
217.75.195.0/24 maxlen: 24
217.75.196.0/24 maxlen: 24
217.75.197.0/24 maxlen: 24
217.75.198.0/24 maxlen: 24
217.75.199.0/24 maxlen: 24
178.77.16.0/20 maxlen: 20
46.36.160.0/19 maxlen: 19
178.77.32.0/19 maxlen: 19
217.75.204.0/24 maxlen: 24
217.75.205.0/24 maxlen: 24
217.75.206.0/24 maxlen: 24
217.75.200.0/21 maxlen: 21
217.75.200.0/24 maxlen: 24
217.75.201.0/24 maxlen: 24
217.75.202.0/24 maxlen: 24
217.75.203.0/24 maxlen: 24
217.75.207.0/24 maxlen: 24
79.142.0.0/20 maxlen: 20
2a00:fe8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:b1:c6:82:9d:b3:30:88:bb:b9:1b:3b:72:2e:5c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4a8f04ef2febe54f9db6a9a2f856594b6e2f08
Validity
Not Before: Oct 2 09:21:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76b7ef441064c9598caeb5ec86e9318bfbf01269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:db:f9:53:f8:23:7a:c5:d7:95:5b:34:e8:
0a:56:11:83:57:48:ed:7b:88:9a:c0:5c:16:dc:b4:
a9:8c:40:57:ff:86:3f:10:d6:4f:11:79:56:66:08:
f3:f2:e2:e2:2d:ee:13:5d:d3:87:73:05:ee:a4:6c:
07:99:25:87:7a:26:c0:40:2b:42:ef:b3:56:5e:3f:
ad:58:b1:6b:ce:49:c7:bf:3c:fd:59:e4:b7:64:f8:
a1:84:dd:17:dd:e9:2b:4e:be:08:dc:95:28:05:44:
81:9c:47:9b:95:9d:e2:66:20:e4:e1:46:6b:5a:a1:
70:3e:5d:1f:67:c8:a8:cd:e1:a4:b9:9c:8d:8e:a7:
bc:2b:c3:64:9b:03:b2:2e:ed:a4:41:df:9d:0d:23:
d7:95:97:11:be:81:b0:f0:bb:1f:3f:99:91:04:da:
19:1c:10:cd:2d:e9:e9:23:5e:bc:49:85:33:21:d5:
5d:cd:d8:da:23:42:c4:48:12:83:4e:2e:37:79:2a:
09:72:cc:31:c4:b4:cd:fe:d5:a2:33:5c:e6:5e:b4:
68:57:2f:a8:2f:56:1d:07:de:88:a1:14:c3:1c:45:
f2:31:80:39:c7:08:bf:fe:93:da:fb:96:ac:76:64:
69:8a:b5:0f:6c:13:b4:75:b6:29:f3:78:80:fe:70:
87:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B7:EF:44:10:64:C9:59:8C:AE:B5:EC:86:E9:31:8B:FB:F0:12:69
X509v3 Authority Key Identifier:
keyid:5F:4A:8F:04:EF:2F:EB:E5:4F:9D:B6:A9:A2:F8:56:59:4B:6E:2F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0qPBO8v6-VPnbapovhWWUtuLwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/drfvRBBkyVmMrrXshukxi_vwEmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8f3fed-2c53-4eca-a332-4579a38f6d08/1/X0qPBO8v6-VPnbapovhWWUtuLwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.160.0/19
79.142.0.0/20
85.158.32.0/21
178.77.0.0/18
185.14.124.0/22
217.75.192.0/20
IPv6:
2a00:fe8::/32
Signature Algorithm: sha256WithRSAEncryption
a4:1d:1a:f4:01:d6:12:43:15:0e:79:ee:e3:5a:cd:9f:41:61:
cb:98:dd:56:f7:5a:6c:48:b3:a2:d8:91:02:b3:99:a3:84:2b:
27:65:2f:46:4a:23:b4:1c:ec:0d:07:dd:e9:71:95:18:cb:59:
0d:61:b9:5d:8a:1f:0d:c8:6c:ad:8f:00:2b:4a:7a:f3:c2:8d:
e4:6c:6a:8f:3a:49:9c:42:5d:f2:bb:36:e5:39:74:b2:11:a9:
23:9c:5e:5c:9a:bf:57:59:eb:a8:f4:17:86:bd:a5:b1:99:ba:
0c:66:4a:99:20:ec:79:5d:44:be:7d:0b:55:10:c7:d5:c7:94:
28:cf:93:5b:a1:86:72:db:83:55:44:86:ba:e1:63:11:93:ef:
16:dd:b7:62:ee:73:65:62:09:50:dd:5d:33:a5:66:68:24:7e:
ce:ae:6b:13:ba:e1:c1:78:5a:27:62:22:50:24:a7:8e:cc:6b:
84:77:90:dc:23:16:6e:a5:e4:1a:9a:7e:6d:54:43:6e:ed:cf:
83:1d:11:3f:2c:92:09:6e:9c:8f:be:19:e6:16:e0:71:f1:2c:
5a:48:6b:f3:ab:b6:15:17:fc:60:c2:73:d5:b8:bb:1c:78:71:
4b:e9:42:b1:79:fc:e1:a8:21:be:ce:7b:74:a5:54:1c:30:52:
f5:0d:91:89
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgISAYrvscaCnbMwiLu5GztyLlwEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNGE4ZjA0ZWYyZmViZTU0ZjlkYjZhOWEyZjg1NjU5NGI2
ZTJmMDgwHhcNMjMxMDAyMDkyMTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmI3ZWY0NDEwNjRjOTU5OGNhZWI1ZWM4NmU5MzE4YmZiZjAxMjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsq7b+VP4I3rF15VbNOgKVhGDV0jt
e4iawFwW3LSpjEBX/4Y/ENZPEXlWZgjz8uLiLe4TXdOHcwXupGwHmSWHeibAQCtC
77NWXj+tWLFrzknHvzz9WeS3ZPihhN0X3ekrTr4I3JUoBUSBnEeblZ3iZiDk4UZr
WqFwPl0fZ8iozeGkuZyNjqe8K8NkmwOyLu2kQd+dDSPXlZcRvoGw8LsfP5mRBNoZ
HBDNLenpI168SYUzIdVdzdjaI0LESBKDTi43eSoJcswxxLTN/tWiM1zmXrRoVy+o
L1YdB96IoRTDHEXyMYA5xwi//pPa+5asdmRpirUPbBO0dbYp83iA/nCHMwIDAQAB
o4ICNjCCAjIwHQYDVR0OBBYEFHa370QQZMlZjK617IbpMYv78BJpMB8GA1UdIwQY
MBaAFF9KjwTvL+vlT522qaL4VllLbi8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDBxUEJPOHY2LVZQbmJhcG92aFdXVXR1THdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZjNmZWQtMmM1My00ZWNhLWEzMzIt
NDU3OWEzOGY2ZDA4LzEvZHJmdlJCQmt5Vm1NcnJYc2h1a3hpX3Z3RW1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZjNmZWQtMmM1My00ZWNhLWEzMzItNDU3OWEzOGY2ZDA4
LzEvWDBxUEJPOHY2LVZQbmJhcG92aFdXVXR1THdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQFLiSgAwQE
T44AAwQDVZ4gAwQGsk0AAwQCuQ58AwQE2UvAMA0EAgACMAcDBQAqAA/oMA0GCSqG
SIb3DQEBCwUAA4IBAQCkHRr0AdYSQxUOee7jWs2fQWHLmN1W91psSLOi2JECs5mj
hCsnZS9GSiO0HOwNB93pcZUYy1kNYbldih8NyGytjwArSnrzwo3kbGqPOkmcQl3y
uzblOXSyEakjnF5cmr9XWeuo9BeGvaWxmboMZkqZIOx5XUS+fQtVEMfVx5Qoz5Nb
oYZy24NVRIa64WMRk+8W3bdi7nNlYglQ3V0zpWZoJH7OrmsTuuHBeFonYiJQJKeO
zGuEd5DcIxZupeQamn5tVENu7c+DHRE/LJIJbpyPvhnmFuBx8SxaSGvzq7YVF/xg
wnPVuLsceHFL6UKxefzhqCG+znt0pVQcMFL1DZGJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:35 2024 by rpki-client on console-ams.rpki-client.org