Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/1-o9KxoQu21SedEIYJvaUbVec0kM.roa
File: 1-o9KxoQu21SedEIYJvaUbVec0kM.roa (raw, json)
Hash identifier: F4PRf4Fa/8YsonEgmTxQAt4UGVHhT5JDUn0CdzB+IcE=
Subject key identifier: FA:8F:4A:C6:84:2E:DB:54:9E:74:42:18:26:F6:94:6D:57:9C:D2:43
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01857295ADD3E2D33DD0B8F4907FE7AE8DBF
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/1-o9KxoQu21SedEIYJvaUbVec0kM.roa
Signing time: Mon 02 Jan 2023 13:04:50 +0000
ROA not before: Mon 02 Jan 2023 13:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8400
IP address blocks: 178.220.0.0/15 maxlen: 15
109.92.0.0/15 maxlen: 15
178.223.128.0/18 maxlen: 18
93.87.38.0/24 maxlen: 24
77.46.128.0/17 maxlen: 17
79.101.0.0/16 maxlen: 16
212.200.0.0/21 maxlen: 21
212.200.0.0/17 maxlen: 17
93.87.39.0/24 maxlen: 24
195.178.32.0/19 maxlen: 19
93.87.50.0/24 maxlen: 24
212.200.0.0/16 maxlen: 16
212.200.8.0/22 maxlen: 22
212.200.12.0/23 maxlen: 23
178.222.0.0/16 maxlen: 16
178.223.192.0/19 maxlen: 19
212.200.50.0/24 maxlen: 24
212.200.45.0/24 maxlen: 24
185.190.152.0/22 maxlen: 22
212.200.192.0/19 maxlen: 19
91.150.64.0/18 maxlen: 18
79.101.21.0/24 maxlen: 24
212.200.123.0/24 maxlen: 24
212.200.132.0/24 maxlen: 24
212.200.128.0/17 maxlen: 17
212.200.128.0/18 maxlen: 18
93.86.0.0/15 maxlen: 15
178.223.0.0/17 maxlen: 17
91.150.91.0/24 maxlen: 24
212.200.224.0/24 maxlen: 24
212.200.226.0/23 maxlen: 23
212.200.225.0/24 maxlen: 24
212.200.232.0/21 maxlen: 21
212.200.228.0/22 maxlen: 22
212.200.240.0/20 maxlen: 20
2a00:e90::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 06 Oct 2023 11:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:ad:d3:e2:d3:3d:d0:b8:f4:90:7f:e7:ae:8d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Jan 2 13:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa8f4ac6842edb549e74421826f6946d579cd243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f2:91:d6:55:08:43:49:b5:e3:b3:3c:04:a9:
44:80:d8:1e:c3:16:0e:fd:db:c4:df:34:25:a9:ad:
4c:e5:e5:ce:0c:d9:aa:09:17:f0:d1:2c:2e:01:00:
0e:17:a8:ec:f4:6a:02:82:e6:25:b8:c2:9e:dd:89:
fe:ed:af:a1:b1:b8:15:e3:c0:57:cc:b3:74:c8:f6:
9a:08:a9:d6:db:2d:90:09:9b:35:26:14:1f:97:7c:
b7:df:94:ea:a7:6d:44:be:f2:2e:74:b0:b8:a1:9f:
72:81:a9:aa:40:31:12:cb:84:47:1c:e5:99:43:97:
37:14:55:e5:0b:ab:a8:dd:5f:34:33:aa:a3:45:b0:
11:f3:6b:e0:6c:d6:3c:15:84:7c:95:a7:57:68:34:
56:24:be:bf:05:09:8b:3b:3c:be:b4:8c:6d:af:e1:
4b:b5:71:72:c0:84:43:15:8d:44:aa:c0:82:b5:45:
11:27:d5:b6:ae:66:b9:b8:c8:1b:a3:3f:d9:72:a0:
47:10:04:82:e7:10:dd:f5:2d:d3:6c:b0:d0:8a:48:
1b:d0:e7:29:dc:b3:be:24:71:22:34:11:8e:b1:d5:
e2:10:aa:a2:97:2e:ce:10:c7:2a:e7:22:9b:53:81:
75:32:ab:2f:70:ee:08:af:a8:a0:a5:54:6e:96:57:
88:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8F:4A:C6:84:2E:DB:54:9E:74:42:18:26:F6:94:6D:57:9C:D2:43
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/1-o9KxoQu21SedEIYJvaUbVec0kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.46.128.0/17
79.101.0.0/16
91.150.64.0/18
93.86.0.0/15
109.92.0.0/15
178.220.0.0-178.223.223.255
185.190.152.0/22
195.178.32.0/19
212.200.0.0/16
IPv6:
2a00:e90::/32
Signature Algorithm: sha256WithRSAEncryption
0c:69:3d:21:1f:2e:85:17:6c:68:d1:ec:01:66:60:a2:5a:4b:
71:47:5e:f4:60:af:43:1e:5f:cc:e0:3d:2a:63:c6:c2:8f:70:
53:f1:92:cf:a2:21:34:2a:00:a3:7b:36:3a:88:86:d3:1c:7d:
bf:40:54:7f:da:a7:66:e4:43:c3:77:25:f6:d7:9e:06:37:ba:
3e:7d:1f:05:89:19:01:34:5c:f6:2c:db:68:d3:39:a1:53:05:
ab:9a:07:cd:c5:7d:aa:2c:35:ed:55:27:e8:31:0b:1f:66:1d:
bc:7b:5f:42:b9:36:8b:15:ba:dd:70:22:8a:d4:63:3a:90:83:
dc:07:be:f8:df:61:b8:9d:c0:3c:8d:1d:15:d0:28:83:21:84:
31:a2:e6:30:b7:72:1f:4d:d3:d4:54:c9:c3:05:1c:7e:be:56:
72:79:c2:71:7f:fa:03:a4:ca:19:ac:30:3d:f2:32:ec:00:d8:
a7:ec:84:1c:cc:f3:a7:65:46:7e:54:9c:a1:0a:59:35:bd:42:
85:a4:9e:88:19:eb:06:4b:49:3c:b4:b8:9c:80:4a:29:17:0f:
a0:14:87:7e:49:08:a4:6c:77:76:81:f8:f0:f2:69:db:c7:dd:
68:50:64:1d:1c:8f:ae:02:86:6e:17:04:3c:40:af:97:0b:82:
14:88:33:00
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgISAYVyla3T4tM90Lj0kH/nro2/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi
NmJkZjcwHhcNMjMwMTAyMTMwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYThmNGFjNjg0MmVkYjU0OWU3NDQyMTgyNmY2OTQ2ZDU3OWNkMjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPKR1lUIQ0m147M8BKlEgNgewxYO
/dvE3zQlqa1M5eXODNmqCRfw0SwuAQAOF6js9GoCguYluMKe3Yn+7a+hsbgV48BX
zLN0yPaaCKnW2y2QCZs1JhQfl3y335Tqp21EvvIudLC4oZ9ygamqQDESy4RHHOWZ
Q5c3FFXlC6uo3V80M6qjRbAR82vgbNY8FYR8ladXaDRWJL6/BQmLOzy+tIxtr+FL
tXFywIRDFY1EqsCCtUURJ9W2rma5uMgboz/ZcqBHEASC5xDd9S3TbLDQikgb0Ocp
3LO+JHEiNBGOsdXiEKqily7OEMcq5yKbU4F1MqsvcO4Ir6igpVRulleIpwIDAQAB
o4ICTDCCAkgwHQYDVR0OBBYEFPqPSsaELttUnnRCGCb2lG1XnNJDMB8GA1UdIwQY
MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt
ZDNlMjgwMGJkNjQwLzEvMS1vOUt4b1F1MjFTZWRFSVlKdmFVYlZlYzBrTS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZGQvZGYxY2I1LTVmNDgtNDZhMC1hNzZlLWQzZTI4MDBiZDY0
MC8xLzZiRXlEN3drMXZRMmJMWlB6MTdTMTdHMnZmYy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjBhBggrBgEFBQcBBwEB/wRSMFAwPwQCAAEwOQMEB00ugAMD
AE9lAwQGW5ZAAwMBXVYDAwFtXDALAwMCstwDBAWy38ADBAK5vpgDBAXDsiADAwDU
yDANBAIAAjAHAwUAKgAOkDANBgkqhkiG9w0BAQsFAAOCAQEADGk9IR8uhRdsaNHs
AWZgolpLcUde9GCvQx5fzOA9KmPGwo9wU/GSz6IhNCoAo3s2OoiG0xx9v0BUf9qn
ZuRDw3cl9teeBje6Pn0fBYkZATRc9izbaNM5oVMFq5oHzcV9qiw17VUn6DELH2Yd
vHtfQrk2ixW63XAiitRjOpCD3Ae++N9huJ3API0dFdAogyGEMaLmMLdyH03T1FTJ
wwUcfr5WcnnCcX/6A6TKGawwPfIy7ADYp+yEHMzzp2VGflScoQpZNb1ChaSeiBnr
BktJPLS4nIBKKRcPoBSHfkkIpGx3doH48PJp28fdaFBkHRyPrgKGbhcEPECvlwuC
FIgzAA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:32 2024 by rpki-client on console-fra.rpki-client.org