Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/brIYBtebCmntuEkrmoT1y6LItp4.roa
File: brIYBtebCmntuEkrmoT1y6LItp4.roa (raw, json)
Hash identifier: 8fjVWLkvtqceCBLz7/wx7+w8rcY1BAvj07nXur1TGog=
Subject key identifier: 6E:B2:18:06:D7:9B:0A:69:ED:B8:49:2B:9A:84:F5:CB:A2:C8:B6:9E
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 0189535205CA3664B51A4E4C70DF40BA9AC2
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/brIYBtebCmntuEkrmoT1y6LItp4.roa
Signing time: Fri 14 Jul 2023 07:33:51 +0000
ROA not before: Fri 14 Jul 2023 07:33:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48854
IP address blocks: 185.134.28.0/22 maxlen: 22
195.178.14.0/23 maxlen: 23
80.70.0.0/23 maxlen: 23
185.21.40.0/22 maxlen: 22
80.70.6.0/23 maxlen: 23
80.70.7.0/24 maxlen: 24
212.97.132.0/22 maxlen: 22
212.97.143.0/24 maxlen: 24
212.97.140.0/24 maxlen: 24
212.97.140.0/22 maxlen: 22
212.97.142.0/24 maxlen: 24
212.97.141.0/24 maxlen: 24
94.143.8.0/21 maxlen: 21
93.191.152.0/21 maxlen: 21
93.191.152.0/22 maxlen: 22
217.61.236.0/22 maxlen: 22
93.191.156.0/24 maxlen: 24
93.191.158.0/24 maxlen: 24
93.191.157.0/24 maxlen: 24
89.188.72.0/21 maxlen: 21
185.25.141.0/24 maxlen: 24
185.25.143.0/24 maxlen: 24
94.231.96.0/20 maxlen: 20
94.231.103.0/24 maxlen: 24
185.223.24.0/22 maxlen: 22
185.221.36.0/22 maxlen: 22
212.237.248.0/23 maxlen: 23
194.150.112.0/22 maxlen: 22
185.20.204.0/22 maxlen: 22
185.20.205.0/24 maxlen: 24
185.20.206.0/23 maxlen: 23
2a06:eac0::/29 maxlen: 48
2a03:2740::/48 maxlen: 48
2a02:2338::/32 maxlen: 48
2a02:2339:4000::/34 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Jul 2023 09:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:52:05:ca:36:64:b5:1a:4e:4c:70:df:40:ba:9a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Jul 14 07:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6eb21806d79b0a69edb8492b9a84f5cba2c8b69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f3:f3:87:e3:fd:f5:25:b2:02:ed:aa:52:81:
2b:42:c8:b1:e3:96:76:27:46:0f:c5:f1:7c:dc:ae:
c1:a9:6a:c3:1b:da:8d:37:c3:19:78:11:1d:ec:6a:
29:e4:9a:57:c9:0c:24:37:cf:1d:d8:cd:e7:34:4b:
ef:c7:88:fb:f6:e6:04:5e:cb:64:67:9f:b8:85:e7:
7d:04:a5:e7:f3:1a:89:d3:32:73:fb:33:2e:2d:bc:
23:4e:b3:53:13:b1:22:1a:51:25:7e:3d:a0:a1:95:
a5:9f:f7:f2:54:c6:e2:17:9e:0f:b1:cc:9f:f7:f8:
3f:1a:a5:ec:97:84:64:43:b2:7d:2e:e4:de:9a:be:
94:68:0a:a9:94:c3:70:6c:b6:0e:e3:0d:d6:ff:08:
33:7d:e9:86:94:81:ed:14:75:6f:59:66:94:1e:81:
ba:cd:33:f2:b8:b2:c3:dd:3c:6f:cc:d9:a2:2e:09:
c9:0f:54:0c:9c:4f:2f:12:96:97:d9:f6:78:2e:cf:
0c:d8:3f:d9:a0:c9:63:0b:12:0a:8f:f5:1b:29:8d:
02:b6:1e:09:f5:cb:27:ca:5d:9e:69:fe:f7:64:c2:
cd:ec:06:c5:67:c3:ad:c8:22:06:6e:2f:ab:a4:18:
3c:65:a1:2f:14:10:c3:0b:82:5b:b3:f7:e6:f7:8f:
b0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B2:18:06:D7:9B:0A:69:ED:B8:49:2B:9A:84:F5:CB:A2:C8:B6:9E
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/brIYBtebCmntuEkrmoT1y6LItp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.70.0.0/23
80.70.6.0/23
89.188.72.0/21
93.191.152.0/21
94.143.8.0/21
94.231.96.0/20
185.20.204.0/22
185.21.40.0/22
185.25.141.0/24
185.25.143.0/24
185.134.28.0/22
185.221.36.0/22
185.223.24.0/22
194.150.112.0/22
195.178.14.0/23
212.97.132.0/22
212.97.140.0/22
212.237.248.0/23
217.61.236.0/22
IPv6:
2a02:2338::/32
2a02:2339:4000::/34
2a03:2740::/48
2a06:eac0::/29
Signature Algorithm: sha256WithRSAEncryption
51:94:2f:46:aa:4e:c6:41:e2:35:62:9e:13:d0:13:f7:9d:c5:
be:4e:a6:ec:44:4f:82:87:28:ec:d5:3c:57:17:e8:90:47:15:
f6:57:ac:d5:21:8f:0c:e7:f3:4c:48:b3:e4:df:ad:0a:d9:ee:
ea:35:1b:1f:bf:25:3b:9e:55:46:b4:ef:68:e6:d8:ad:a8:54:
8c:42:95:b5:5a:e9:24:af:86:c4:e3:a4:dd:7e:92:77:20:ac:
f3:7a:df:0f:a4:f6:8e:82:0e:13:e0:8d:7f:32:e0:10:59:12:
fc:ae:ea:83:28:a6:43:00:26:b9:31:f6:81:e2:9a:ce:3c:5f:
45:f0:f2:a6:6e:f5:89:43:cb:5f:0e:67:a8:c1:88:35:c4:7b:
60:1d:ec:43:09:f8:fc:a1:e9:05:db:7a:6d:24:21:0c:dd:c7:
df:c2:a0:1f:a0:2a:86:3f:31:3e:db:a6:12:4d:73:ec:71:ea:
d1:2f:4f:73:c9:2a:71:d1:cd:6c:fc:e5:45:b7:43:07:08:f0:
69:f9:08:a9:bc:8c:0e:b7:4a:4c:eb:66:5c:72:fd:04:01:9a:
8f:ba:35:e6:b1:5f:f4:dd:35:b7:4a:c3:1f:b5:6e:c2:a1:78:
50:8e:21:66:d3:44:79:62:34:09:67:43:a5:68:a8:4b:2d:f8:
a5:67:f9:43
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgISAYlTUgXKNmS1Gk5McN9AuprCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0ZTcyMDVmNWQ0MTI1N2E2YmI5NWY5MDBlZWMwYTExMjNl
NzUxNjQwHhcNMjMwNzE0MDczMzUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWIyMTgwNmQ3OWIwYTY5ZWRiODQ5MmI5YTg0ZjVjYmEyYzhiNjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5fPzh+P99SWyAu2qUoErQsix45Z2
J0YPxfF83K7BqWrDG9qNN8MZeBEd7Gop5JpXyQwkN88d2M3nNEvvx4j79uYEXstk
Z5+4hed9BKXn8xqJ0zJz+zMuLbwjTrNTE7EiGlElfj2goZWln/fyVMbiF54Pscyf
9/g/GqXsl4RkQ7J9LuTemr6UaAqplMNwbLYO4w3W/wgzfemGlIHtFHVvWWaUHoG6
zTPyuLLD3TxvzNmiLgnJD1QMnE8vEpaX2fZ4Ls8M2D/ZoMljCxIKj/UbKY0Cth4J
9csnyl2eaf73ZMLN7AbFZ8OtyCIGbi+rpBg8ZaEvFBDDC4Jbs/fm94+wxwIDAQAB
o4ICnzCCApswHQYDVR0OBBYEFG6yGAbXmwpp7bhJK5qE9cuiyLaeMB8GA1UdIwQY
MBaAFKTnIF9dQSV6a7lfkA7sChEj51FkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDkt
M2U1OWNlNDQ1YjFjLzEvYnJJWUJ0ZWJDbW50dUVrcm1vVDF5NkxJdHA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9mNzYxYmQtNWMzYS00ZDJmLThjZDktM2U1OWNlNDQ1YjFj
LzEvcE9jZ1gxMUJKWHBydVYtUUR1d0tFU1BuVVdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG0BggrBgEFBQcBBwEB/wSBpDCBoTB4BAIAATByAwQBUEYA
AwQBUEYGAwQDWbxIAwQDXb+YAwQDXo8IAwQEXudgAwQCuRTMAwQCuRUoAwQAuRmN
AwQAuRmPAwQCuYYcAwQCud0kAwQCud8YAwQCwpZwAwQBw7IOAwQC1GGEAwQC1GGM
AwQB1O34AwQC2T3sMCUEAgACMB8DBQAqAiM4AwYGKgIjOUADBwAqAydAAAADBQMq
BurAMA0GCSqGSIb3DQEBCwUAA4IBAQBRlC9Gqk7GQeI1Yp4T0BP3ncW+TqbsRE+C
hyjs1TxXF+iQRxX2V6zVIY8M5/NMSLPk360K2e7qNRsfvyU7nlVGtO9o5titqFSM
QpW1Wukkr4bE46TdfpJ3IKzzet8PpPaOgg4T4I1/MuAQWRL8ruqDKKZDACa5MfaB
4prOPF9F8PKmbvWJQ8tfDmeowYg1xHtgHexDCfj8oekF23ptJCEM3cffwqAfoCqG
PzE+26YSTXPscerRL09zySpx0c1s/OVFt0MHCPBp+QipvIwOt0pM62Zccv0EAZqP
ujXmsV/03TW3SsMftW7CoXhQjiFm00R5YjQJZ0OlaKhLLfilZ/lD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:23 2024 by rpki-client on console-fra.rpki-client.org