Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/0wYv2jiWevzRwbKBK0V6eSkqRvw.roa
File: 0wYv2jiWevzRwbKBK0V6eSkqRvw.roa (raw, json)
Hash identifier: 2Vtxr4SePuBmc9ioiO81pVLZ9kZsAR1/WwJZf9QSzuU=
Subject key identifier: D3:06:2F:DA:38:96:7A:FC:D1:C1:B2:81:2B:45:7A:79:29:2A:46:FC
Certificate issuer: /CN=eee573084100b41d7cc1e447295ba71d019d5192
Certificate serial: 0185707072D14DE858B1F31CA0FE527ACF55
Authority key identifier: EE:E5:73:08:41:00:B4:1D:7C:C1:E4:47:29:5B:A7:1D:01:9D:51:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7uVzCEEAtB18weRHKVunHQGdUZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/0wYv2jiWevzRwbKBK0V6eSkqRvw.roa
Signing time: Mon 02 Jan 2023 03:04:55 +0000
ROA not before: Mon 02 Jan 2023 03:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12637
IP address blocks: 185.47.108.0/22 maxlen: 24
185.220.244.0/22 maxlen: 24
217.194.0.0/20 maxlen: 24
212.66.224.0/19 maxlen: 24
212.35.192.0/19 maxlen: 24
212.25.160.0/19 maxlen: 24
5.144.160.0/20 maxlen: 24
46.16.168.0/21 maxlen: 24
37.9.239.0/24 maxlen: 24
213.171.160.0/19 maxlen: 24
217.64.192.0/20 maxlen: 24
185.222.68.0/22 maxlen: 24
185.24.104.0/22 maxlen: 24
85.94.192.0/19 maxlen: 24
217.168.224.0/20 maxlen: 24
85.94.208.0/20 maxlen: 24
95.174.0.0/19 maxlen: 24
37.9.224.0/20 maxlen: 24
2001:4b78::/32 maxlen: 48
2a0d:b000::/29 maxlen: 48
2001:4b78::/29 maxlen: 48
2a05:b6c0::/29 maxlen: 48
2a04:2700::/29 maxlen: 48
2a0b:fd40::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:72:d1:4d:e8:58:b1:f3:1c:a0:fe:52:7a:cf:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eee573084100b41d7cc1e447295ba71d019d5192
Validity
Not Before: Jan 2 03:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3062fda38967afcd1c1b2812b457a79292a46fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:41:76:ed:77:64:7e:84:38:78:19:b5:d1:
64:8e:4f:c5:e7:5c:7a:19:2d:d2:1b:dd:3d:09:08:
1d:b9:18:28:60:40:ba:92:3b:97:16:1a:fd:13:21:
6c:33:eb:85:34:37:94:d1:f4:61:b0:b6:5c:2c:3a:
b7:7e:5d:af:e5:f2:09:71:0b:05:8d:2c:e9:c0:a3:
29:e7:45:2d:58:37:d5:2c:0b:f7:d4:13:d5:62:b9:
18:8d:81:29:28:3c:d9:04:bc:cb:c2:5d:56:11:29:
42:6c:14:f3:9e:ec:9c:62:6d:98:77:c8:d2:8f:b2:
b6:82:ae:53:b1:7f:25:11:f1:01:34:67:4f:0b:c8:
88:ff:4d:70:ed:64:e0:98:41:5e:8b:a7:f1:16:3c:
fe:0d:6a:46:e8:02:31:d3:e9:69:78:9d:5f:c6:ac:
a8:a1:a4:5b:c9:29:4c:59:d3:dc:3f:03:3e:82:ba:
ad:fa:26:5b:00:fd:a6:64:69:a1:0d:38:d1:c1:4f:
d0:e6:85:9d:40:72:67:9d:c3:79:f2:1f:fe:ec:79:
9c:92:e9:ff:68:54:85:d6:03:61:57:1b:d3:d7:a8:
2a:f0:1f:97:ff:18:de:ea:b7:b0:cf:01:21:7c:c9:
75:4b:c6:af:e1:29:e6:d4:64:23:35:55:e7:89:e3:
41:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:06:2F:DA:38:96:7A:FC:D1:C1:B2:81:2B:45:7A:79:29:2A:46:FC
X509v3 Authority Key Identifier:
keyid:EE:E5:73:08:41:00:B4:1D:7C:C1:E4:47:29:5B:A7:1D:01:9D:51:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7uVzCEEAtB18weRHKVunHQGdUZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/0wYv2jiWevzRwbKBK0V6eSkqRvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/11a864-d1cb-4000-b2bc-19ee3d8b577e/1/7uVzCEEAtB18weRHKVunHQGdUZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.160.0/20
37.9.224.0/20
46.16.168.0/21
85.94.192.0/19
95.174.0.0/19
185.24.104.0/22
185.47.108.0/22
185.220.244.0/22
185.222.68.0/22
212.25.160.0/19
212.35.192.0/19
212.66.224.0/19
213.171.160.0/19
217.64.192.0/20
217.168.224.0/20
217.194.0.0/20
IPv6:
2001:4b78::/29
2a04:2700::/29
2a05:b6c0::/29
2a0b:fd40::/29
2a0d:b000::/29
Signature Algorithm: sha256WithRSAEncryption
56:6f:ca:bf:35:1e:4a:c2:b3:ed:87:f2:fa:bd:39:c4:3c:27:
46:91:f3:92:7c:ba:f1:41:61:b1:a9:7d:3a:b3:46:36:3d:a9:
f2:27:55:f3:01:84:90:9a:bb:3a:b3:bf:66:08:98:d0:8e:3f:
71:55:7f:92:01:cb:8f:d7:92:69:c7:2a:bc:d5:86:2e:b8:a6:
92:73:31:9d:7b:8f:b0:d0:8e:6d:e9:65:63:87:5d:31:87:93:
23:41:98:3d:25:6c:cb:e3:33:07:04:69:b8:82:f2:db:5b:4b:
a8:a3:58:a5:fe:1e:1a:47:41:c3:51:9a:25:61:04:bb:ab:ca:
e0:f7:71:6e:85:51:67:c9:04:64:f0:a5:39:b0:c7:83:0e:27:
ff:06:b4:b1:13:04:a6:c2:b0:d6:8e:de:22:cc:f5:f1:4e:9c:
88:b6:34:9c:53:47:bf:6f:45:86:34:60:8b:7e:48:39:c1:0e:
3b:c7:43:5a:fd:58:c5:c7:d2:38:7f:98:b6:c4:ee:d6:ce:26:
07:fe:b4:25:bf:81:54:06:b5:fa:3b:ac:35:c2:a1:9a:65:74:
fe:19:79:14:f3:73:de:2d:38:c8:a2:89:65:92:66:a9:9c:d6:
b9:6f:8e:92:a2:48:aa:51:80:db:e8:90:da:4b:c7:1d:85:ee:
c7:c8:d7:6c
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgISAYVwcHLRTehYsfMcoP5Ses9VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlZTU3MzA4NDEwMGI0MWQ3Y2MxZTQ0NzI5NWJhNzFkMDE5
ZDUxOTIwHhcNMjMwMTAyMDMwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzA2MmZkYTM4OTY3YWZjZDFjMWIyODEyYjQ1N2E3OTI5MmE0NmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkg1Bdu13ZH6EOHgZtdFkjk/F51x6
GS3SG909CQgduRgoYEC6kjuXFhr9EyFsM+uFNDeU0fRhsLZcLDq3fl2v5fIJcQsF
jSzpwKMp50UtWDfVLAv31BPVYrkYjYEpKDzZBLzLwl1WESlCbBTznuycYm2Yd8jS
j7K2gq5TsX8lEfEBNGdPC8iI/01w7WTgmEFei6fxFjz+DWpG6AIx0+lpeJ1fxqyo
oaRbySlMWdPcPwM+grqt+iZbAP2mZGmhDTjRwU/Q5oWdQHJnncN58h/+7Hmckun/
aFSF1gNhVxvT16gq8B+X/xje6rewzwEhfMl1S8av4Snm1GQjNVXnieNBrwIDAQAB
o4ICkTCCAo0wHQYDVR0OBBYEFNMGL9o4lnr80cGygStFenkpKkb8MB8GA1UdIwQY
MBaAFO7lcwhBALQdfMHkRylbpx0BnVGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3VWekNFRUF0QjE4d2VSSEtWdW5IUUdkVVpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8xMWE4NjQtZDFjYi00MDAwLWIyYmMt
MTllZTNkOGI1NzdlLzEvMHdZdjJqaVdldnpSd2JLQkswVjZlU2txUnZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8xMWE4NjQtZDFjYi00MDAwLWIyYmMtMTllZTNkOGI1Nzdl
LzEvN3VWekNFRUF0QjE4d2VSSEtWdW5IUUdkVVpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGmBggrBgEFBQcBBwEB/wSBljCBkzBmBAIAATBgAwQEBZCg
AwQEJQngAwQDLhCoAwQFVV7AAwQFX64AAwQCuRhoAwQCuS9sAwQCudz0AwQCud5E
AwQF1BmgAwQF1CPAAwQF1ELgAwQF1augAwQE2UDAAwQE2ajgAwQE2cIAMCkEAgAC
MCMDBQMgAUt4AwUDKgQnAAMFAyoFtsADBQMqC/1AAwUDKg2wADANBgkqhkiG9w0B
AQsFAAOCAQEAVm/KvzUeSsKz7Yfy+r05xDwnRpHzkny68UFhsal9OrNGNj2p8idV
8wGEkJq7OrO/ZgiY0I4/cVV/kgHLj9eSaccqvNWGLrimknMxnXuPsNCObellY4dd
MYeTI0GYPSVsy+MzBwRpuILy21tLqKNYpf4eGkdBw1GaJWEEu6vK4PdxboVRZ8kE
ZPClObDHgw4n/wa0sRMEpsKw1o7eIsz18U6ciLY0nFNHv29FhjRgi35IOcEOO8dD
Wv1YxcfSOH+YtsTu1s4mB/60Jb+BVAa1+jusNcKhmmV0/hl5FPNz3i04yKKJZZJm
qZzWuW+OkqJIqlGA2+iQ2kvHHYXux8jXbA==
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:38 2024 by rpki-client on console-fra.rpki-client.org