Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/4kM43HHHNLZzruPE4kjDaoTrByA.roa
File: 4kM43HHHNLZzruPE4kjDaoTrByA.roa (raw, json)
Hash identifier: ewlhBXE6RwwuA4KG2Kxrlh+mwyVtES8YH1anuLTWyTc=
Subject key identifier: E2:43:38:DC:71:C7:34:B6:73:AE:E3:C4:E2:48:C3:6A:84:EB:07:20
Certificate issuer: /CN=07a6a589ee848a8052238191b98035e775122725
Certificate serial: 018B253FBB97BC709C7620282A408AAB5198
Authority key identifier: 07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/4kM43HHHNLZzruPE4kjDaoTrByA.roa
Signing time: Thu 12 Oct 2023 18:56:55 +0000
ROA not before: Thu 12 Oct 2023 18:56:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210218
IP address blocks: 94.240.56.0/22 maxlen: 22
77.75.58.0/23 maxlen: 23
87.120.177.0/24 maxlen: 24
77.75.56.0/23 maxlen: 23
94.156.16.0/22 maxlen: 22
91.243.184.0/22 maxlen: 22
193.46.172.0/22 maxlen: 22
45.12.248.0/22 maxlen: 22
87.120.111.0/24 maxlen: 24
194.76.204.0/22 maxlen: 22
2.59.248.0/22 maxlen: 22
195.225.120.0/22 maxlen: 22
193.36.232.0/22 maxlen: 22
193.207.0.0/24 maxlen: 24
45.8.74.0/23 maxlen: 23
2.58.138.0/23 maxlen: 23
2.58.136.0/23 maxlen: 23
193.19.200.0/22 maxlen: 22
87.120.224.0/24 maxlen: 24
193.56.248.0/22 maxlen: 22
193.58.184.0/22 maxlen: 22
80.249.124.0/22 maxlen: 22
78.40.164.0/22 maxlen: 22
78.40.160.0/22 maxlen: 22
94.156.240.0/22 maxlen: 22
87.121.66.0/23 maxlen: 23
87.120.63.0/24 maxlen: 24
91.197.196.0/22 maxlen: 22
212.24.0.0/19 maxlen: 19
193.56.16.0/22 maxlen: 22
31.13.252.0/22 maxlen: 22
194.147.8.0/22 maxlen: 22
178.175.184.0/22 maxlen: 22
178.175.184.0/21 maxlen: 21
95.214.124.0/23 maxlen: 23
212.22.128.0/19 maxlen: 19
95.214.126.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:25:3f:bb:97:bc:70:9c:76:20:28:2a:40:8a:ab:51:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a6a589ee848a8052238191b98035e775122725
Validity
Not Before: Oct 12 18:56:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e24338dc71c734b673aee3c4e248c36a84eb0720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:71:89:43:5f:5f:24:d7:ce:0b:83:3e:0a:05:
a0:25:93:40:ee:49:de:23:fa:49:64:5d:3e:2b:61:
ed:25:84:4e:d0:4a:bd:36:02:cd:57:e8:e9:a3:a6:
c6:87:67:a6:11:15:00:d3:43:84:fa:ee:4e:3a:f5:
7d:53:4e:01:1a:b6:79:3e:20:97:2f:1b:5f:5e:60:
72:4e:a9:a0:41:57:b5:40:44:40:84:5c:ce:e6:08:
1c:81:eb:db:5a:f6:ac:54:7b:a3:9e:98:e3:bf:8b:
f0:67:5c:6f:28:61:b9:43:85:5f:21:36:0e:6e:e2:
9e:de:74:30:7b:8a:ee:b9:b7:56:bb:e4:5b:b5:00:
5d:85:9f:52:0f:99:e7:d1:2d:65:49:62:fc:90:65:
93:6c:15:02:fc:37:96:16:e9:e3:fb:e1:46:4d:76:
37:90:8c:b4:60:21:8a:fe:fc:58:d7:20:89:78:3a:
d6:3a:10:60:4e:be:b1:5b:15:70:18:ee:d8:e8:0d:
4e:7f:28:c6:66:64:a4:69:16:ee:18:05:9d:43:e8:
ef:04:8f:8f:6c:4f:eb:aa:32:ed:ac:2a:6e:33:c9:
8f:8f:05:41:44:eb:65:7e:a4:f5:b0:0d:24:13:ef:
b6:e4:45:e8:cd:89:90:61:f3:3f:be:c4:21:8d:e1:
0f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:43:38:DC:71:C7:34:B6:73:AE:E3:C4:E2:48:C3:6A:84:EB:07:20
X509v3 Authority Key Identifier:
keyid:07:A6:A5:89:EE:84:8A:80:52:23:81:91:B9:80:35:E7:75:12:27:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6alie6EioBSI4GRuYA153USJyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/4kM43HHHNLZzruPE4kjDaoTrByA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/7faf5e-7435-49fe-acd7-20fbc906494b/1/B6alie6EioBSI4GRuYA153USJyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.136.0/22
2.59.248.0/22
31.13.252.0/22
45.8.74.0/23
45.12.248.0/22
77.75.56.0/22
78.40.160.0/21
80.249.124.0/22
87.120.63.0/24
87.120.111.0/24
87.120.177.0/24
87.120.224.0/24
87.121.66.0/23
91.197.196.0/22
91.243.184.0/22
94.156.16.0/22
94.156.240.0/22
94.240.56.0/22
95.214.124.0/22
178.175.184.0/21
193.19.200.0/22
193.36.232.0/22
193.46.172.0/22
193.56.16.0/22
193.56.248.0/22
193.58.184.0/22
193.207.0.0/24
194.76.204.0/22
194.147.8.0/22
195.225.120.0/22
212.22.128.0/19
212.24.0.0/19
Signature Algorithm: sha256WithRSAEncryption
05:56:ab:f5:09:13:26:db:14:6b:11:a0:f2:17:9d:86:d6:63:
39:c7:48:f7:8d:70:ce:f3:da:d5:17:74:c6:23:3d:e2:5f:52:
2b:b8:49:89:c8:fd:b3:f5:83:c9:a6:b8:9d:40:47:d0:89:06:
c6:2e:5a:d2:57:a4:a7:88:d3:92:f2:7d:82:9e:7a:e8:78:15:
2f:10:52:2a:ba:01:24:2f:2d:30:1a:7c:f9:78:3c:f9:73:97:
f1:cf:6d:96:0b:32:0e:36:6a:45:55:d5:eb:e5:e7:26:3b:e3:
e9:2d:5a:97:8f:a2:79:06:e1:37:4d:8a:98:a0:3c:24:26:1b:
91:6d:16:ba:21:40:1e:62:bd:70:cb:2a:0c:35:68:77:09:28:
75:3b:26:22:2f:b4:78:ec:c0:f7:7c:46:5f:92:0e:b4:85:19:
4d:95:c9:23:4d:2e:5a:e3:db:33:37:7c:2c:f5:af:11:6d:63:
d8:7e:63:0f:11:29:68:68:c1:c2:b7:cd:53:23:bd:b1:80:40:
4b:d0:b7:86:c0:ee:fe:ab:ed:1e:0a:0d:06:e0:f3:68:2b:ae:
c8:a3:96:3e:b2:67:e4:7c:71:43:56:4e:50:55:d7:9f:d6:38:
3f:64:57:bb:42:78:0c:21:21:61:e2:62:c8:61:78:5e:72:4f:
da:bf:62:90
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgISAYslP7uXvHCcdiAoKkCKq1GYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3YTZhNTg5ZWU4NDhhODA1MjIzODE5MWI5ODAzNWU3NzUx
MjI3MjUwHhcNMjMxMDEyMTg1NjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjQzMzhkYzcxYzczNGI2NzNhZWUzYzRlMjQ4YzM2YTg0ZWIwNzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnGJQ19fJNfOC4M+CgWgJZNA7kne
I/pJZF0+K2HtJYRO0Eq9NgLNV+jpo6bGh2emERUA00OE+u5OOvV9U04BGrZ5PiCX
LxtfXmByTqmgQVe1QERAhFzO5ggcgevbWvasVHujnpjjv4vwZ1xvKGG5Q4VfITYO
buKe3nQwe4ruubdWu+RbtQBdhZ9SD5nn0S1lSWL8kGWTbBUC/DeWFunj++FGTXY3
kIy0YCGK/vxY1yCJeDrWOhBgTr6xWxVwGO7Y6A1OfyjGZmSkaRbuGAWdQ+jvBI+P
bE/rqjLtrCpuM8mPjwVBROtlfqT1sA0kE++25EXozYmQYfM/vsQhjeEPHQIDAQAB
o4ICyDCCAsQwHQYDVR0OBBYEFOJDONxxxzS2c67jxOJIw2qE6wcgMB8GA1UdIwQY
MBaAFAempYnuhIqAUiOBkbmANed1EiclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQjZhbGllNkVpb0JTSTRHUnVZQTE1M1VTSnlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83ZmFmNWUtNzQzNS00OWZlLWFjZDct
MjBmYmM5MDY0OTRiLzEvNGtNNDNISEhOTFp6cnVQRTRrakRhb1RyQnlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC83ZmFmNWUtNzQzNS00OWZlLWFjZDctMjBmYmM5MDY0OTRi
LzEvQjZhbGllNkVpb0JTSTRHUnVZQTE1M1VTSnlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHdBggrBgEFBQcBBwEB/wSBzTCByjCBxwQCAAEwgcADBAIC
OogDBAICO/gDBAIfDfwDBAEtCEoDBAItDPgDBAJNSzgDBANOKKADBAJQ+XwDBABX
eD8DBABXeG8DBABXeLEDBABXeOADBAFXeUIDBAJbxcQDBAJb87gDBAJenBADBAJe
nPADBAJe8DgDBAJf1nwDBAOyr7gDBALBE8gDBALBJOgDBALBLqwDBALBOBADBALB
OPgDBALBOrgDBADBzwADBALCTMwDBALCkwgDBALD4XgDBAXUFoADBAXUGAAwDQYJ
KoZIhvcNAQELBQADggEBAAVWq/UJEybbFGsRoPIXnYbWYznHSPeNcM7z2tUXdMYj
PeJfUiu4SYnI/bP1g8mmuJ1AR9CJBsYuWtJXpKeI05LyfYKeeuh4FS8QUiq6ASQv
LTAafPl4PPlzl/HPbZYLMg42akVV1evl5yY74+ktWpePonkG4TdNipigPCQmG5Ft
FrohQB5ivXDLKgw1aHcJKHU7JiIvtHjswPd8Rl+SDrSFGU2VySNNLlrj2zM3fCz1
rxFtY9h+Yw8RKWhowcK3zVMjvbGAQEvQt4bA7v6r7R4KDQbg82grrsijlj6yZ+R8
cUNWTlBV15/WOD9kV7tCeAwhIWHiYshheF5yT9q/YpA=
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:49 2024 by rpki-client on console-fra.rpki-client.org