Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/tJqqWDveHOLxqxapyA1ERrqfuVE.roa
File: tJqqWDveHOLxqxapyA1ERrqfuVE.roa (raw, json)
Hash identifier: +o4sLa5AzqnVYkOMi7EvA7vL4uFseRmk9dpSOQaNA0A=
Subject key identifier: B4:9A:AA:58:3B:DE:1C:E2:F1:AB:16:A9:C8:0D:44:46:BA:9F:B9:51
Certificate issuer: /CN=09e5518e68467b4290c3509268b6d6d664962c86
Certificate serial: 01863BDCC20950C261654EFCBB9190E25EC4
Authority key identifier: 09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/tJqqWDveHOLxqxapyA1ERrqfuVE.roa
Signing time: Fri 10 Feb 2023 15:06:08 +0000
ROA not before: Fri 10 Feb 2023 15:06:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31515
IP address blocks: 161.30.130.0/24 maxlen: 24
161.30.129.0/24 maxlen: 24
161.30.28.0/24 maxlen: 24
161.30.33.0/24 maxlen: 24
161.30.40.0/23 maxlen: 23
161.30.44.0/24 maxlen: 24
161.30.203.0/24 maxlen: 24
161.30.8.0/24 maxlen: 24
161.30.9.0/24 maxlen: 24
161.30.7.0/24 maxlen: 24
161.30.5.0/24 maxlen: 24
161.30.16.0/22 maxlen: 22
161.30.12.0/22 maxlen: 22
161.30.237.0/24 maxlen: 24
161.30.22.0/23 maxlen: 23
161.30.238.0/24 maxlen: 24
161.30.236.0/22 maxlen: 24
2a11:ae00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:dc:c2:09:50:c2:61:65:4e:fc:bb:91:90:e2:5e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e5518e68467b4290c3509268b6d6d664962c86
Validity
Not Before: Feb 10 15:06:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b49aaa583bde1ce2f1ab16a9c80d4446ba9fb951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:09:bc:e6:9f:1f:96:6f:e1:e2:5a:e7:8b:aa:
2c:16:65:66:da:69:d5:60:9a:22:75:15:a3:87:2a:
0a:bc:5e:05:17:17:2d:05:bd:5b:4e:4a:ef:37:cb:
1b:d0:8d:3d:99:7c:78:7d:5c:8f:9e:20:ce:2e:2f:
68:e4:da:69:ab:20:f5:50:e4:79:06:25:9e:27:50:
19:1e:32:04:3f:eb:fb:46:8f:19:2a:8e:cd:e9:e1:
00:dc:33:45:4e:35:a9:26:67:28:12:de:35:9c:a1:
2b:56:e3:ae:6f:e5:3b:2d:b7:e1:e9:c5:a1:1d:a6:
ba:83:65:a0:56:38:64:3b:c4:3b:a5:0b:d9:03:17:
fd:bc:61:fd:7b:17:dd:98:60:dd:f4:e3:bd:f1:89:
83:dc:95:ab:6e:ec:fc:d0:3d:55:a7:ec:30:26:5a:
1c:95:a1:26:3f:70:b4:83:28:91:1f:d7:c7:15:c2:
8c:56:b0:b2:86:05:be:8d:e8:ac:48:65:5e:31:2a:
db:85:69:23:c4:cf:c7:32:c7:3a:6c:10:b9:e6:c8:
ab:24:0b:42:0f:6e:c6:98:ea:e4:27:49:f4:d6:f1:
6b:40:50:84:cd:bc:c9:ab:cc:94:95:82:a3:01:c5:
60:00:00:88:3a:71:35:7b:00:df:c2:70:df:48:73:
b0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9A:AA:58:3B:DE:1C:E2:F1:AB:16:A9:C8:0D:44:46:BA:9F:B9:51
X509v3 Authority Key Identifier:
keyid:09:E5:51:8E:68:46:7B:42:90:C3:50:92:68:B6:D6:D6:64:96:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeVRjmhGe0KQw1CSaLbW1mSWLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/tJqqWDveHOLxqxapyA1ERrqfuVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/30282c-3c82-4730-b95e-e745948983ed/1/CeVRjmhGe0KQw1CSaLbW1mSWLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.30.5.0/24
161.30.7.0-161.30.9.255
161.30.12.0-161.30.19.255
161.30.22.0/23
161.30.28.0/24
161.30.33.0/24
161.30.40.0/23
161.30.44.0/24
161.30.129.0-161.30.130.255
161.30.203.0/24
161.30.236.0/22
IPv6:
2a11:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
80:e5:79:5a:e8:92:76:61:db:b5:67:f1:43:dc:70:4e:b5:0f:
07:6f:93:07:b6:64:ff:ac:88:03:8c:25:5d:23:cd:9f:33:06:
8b:a7:5e:f7:b1:0a:78:ad:1d:3f:df:fd:fa:8f:71:13:5e:24:
72:01:92:c4:64:e7:ed:59:c4:7b:3c:c4:5a:4a:72:12:f3:7b:
b3:37:0a:f1:67:c6:63:f7:51:18:26:2d:1c:cf:0b:4e:ec:29:
ba:2c:c8:eb:dc:3e:dc:48:ae:a6:a2:56:6a:73:d2:ca:93:30:
4a:e5:c1:31:90:10:a9:f7:e5:79:9a:7e:b5:00:ac:a1:20:86:
b6:dc:23:d8:00:f3:9a:fe:29:5a:a4:aa:41:5a:57:28:19:e8:
28:9f:d3:23:7b:e4:59:af:f8:58:8c:06:f9:24:d7:f1:99:46:
e5:db:37:0f:8c:0b:b4:a7:fa:77:0f:81:00:bc:f8:be:66:24:
00:4c:f2:e8:7d:30:4f:18:5f:7b:da:e7:78:58:02:ff:d1:32:
ea:2c:91:d0:f4:01:49:aa:94:5b:6d:51:4c:51:f2:fb:90:a2:
19:01:8c:7f:5e:a1:ed:15:de:da:b4:06:14:0a:5b:19:3d:3e:
d8:ba:92:09:cc:84:51:b3:46:c5:08:b4:ff:49:28:fd:b7:cc:
84:5b:80:f2
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgISAYY73MIJUMJhZU78u5GQ4l7EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZTU1MThlNjg0NjdiNDI5MGMzNTA5MjY4YjZkNmQ2NjQ5
NjJjODYwHhcNMjMwMjEwMTUwNjA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDlhYWE1ODNiZGUxY2UyZjFhYjE2YTljODBkNDQ0NmJhOWZiOTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Am85p8flm/h4lrni6osFmVm2mnV
YJoidRWjhyoKvF4FFxctBb1bTkrvN8sb0I09mXx4fVyPniDOLi9o5NppqyD1UOR5
BiWeJ1AZHjIEP+v7Ro8ZKo7N6eEA3DNFTjWpJmcoEt41nKErVuOub+U7Lbfh6cWh
Haa6g2WgVjhkO8Q7pQvZAxf9vGH9exfdmGDd9OO98YmD3JWrbuz80D1Vp+wwJloc
laEmP3C0gyiRH9fHFcKMVrCyhgW+jeisSGVeMSrbhWkjxM/HMsc6bBC55sirJAtC
D27GmOrkJ0n01vFrQFCEzbzJq8yUlYKjAcVgAACIOnE1ewDfwnDfSHOwEwIDAQAB
o4ICbTCCAmkwHQYDVR0OBBYEFLSaqlg73hzi8asWqcgNREa6n7lRMB8GA1UdIwQY
MBaAFAnlUY5oRntCkMNQkmi21tZkliyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2VWUmptaEdlMEtRdzFDU2FMYlcxbVNXTElZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC8zMDI4MmMtM2M4Mi00NzMwLWI5NWUt
ZTc0NTk0ODk4M2VkLzEvdEpxcVdEdmVIT0x4cXhhcHlBMUVScnFmdVZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC8zMDI4MmMtM2M4Mi00NzMwLWI5NWUtZTc0NTk0ODk4M2Vk
LzEvQ2VWUmptaEdlMEtRdzFDU2FMYlcxbVNXTElZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGCBggrBgEFBQcBBwEB/wRzMHEwYAQCAAEwWgMEAKEeBTAM
AwQAoR4HAwQBoR4IMAwDBAKhHgwDBAKhHhADBAGhHhYDBAChHhwDBAChHiEDBAGh
HigDBAChHiwwDAMEAKEegQMEAKEeggMEAKEeywMEAqEe7DANBAIAAjAHAwUAKhGu
ADANBgkqhkiG9w0BAQsFAAOCAQEAgOV5WuiSdmHbtWfxQ9xwTrUPB2+TB7Zk/6yI
A4wlXSPNnzMGi6de97EKeK0dP9/9+o9xE14kcgGSxGTn7VnEezzEWkpyEvN7szcK
8WfGY/dRGCYtHM8LTuwpuizI69w+3EiupqJWanPSypMwSuXBMZAQqffleZp+tQCs
oSCGttwj2ADzmv4pWqSqQVpXKBnoKJ/TI3vkWa/4WIwG+STX8ZlG5ds3D4wLtKf6
dw+BALz4vmYkAEzy6H0wTxhfe9rneFgC/9Ey6iyR0PQBSaqUW21RTFHy+5CiGQGM
f16h7RXe2rQGFApbGT0+2LqSCcyEUbNGxQi0/0ko/bfMhFuA8g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:00 2023 by rpki-client on console-fra.rpki-client.org