Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/grvGwt7Sc46vDOeYWLl2oU905UI.roa
File: grvGwt7Sc46vDOeYWLl2oU905UI.roa (raw, json)
Hash identifier: IQs5tM+xqNknUs8dKNcrjDQ+bY4rtAPc6BL71I1wOME=
Subject key identifier: 82:BB:C6:C2:DE:D2:73:8E:AF:0C:E7:98:58:B9:76:A1:4F:74:E5:42
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 0190969570AFA8B97587F912B294FC3E21B1
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/grvGwt7Sc46vDOeYWLl2oU905UI.roa
Signing time: Tue 09 Jul 2024 08:21:34 +0000
ROA not before: Tue 09 Jul 2024 08:21:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12670
IP address blocks: 46.218.0.0/16 maxlen: 16
46.218.0.0/18 maxlen: 18
46.218.64.0/18 maxlen: 18
77.104.0.0/18 maxlen: 18
82.101.0.0/18 maxlen: 18
83.145.64.0/18 maxlen: 18
89.224.0.0/14 maxlen: 14
89.224.0.0/16 maxlen: 16
89.225.192.0/18 maxlen: 18
89.227.192.0/18 maxlen: 18
92.102.0.0/15 maxlen: 15
92.102.0.0/16 maxlen: 16
92.103.0.0/16 maxlen: 16
92.103.0.0/18 maxlen: 18
92.103.64.0/18 maxlen: 18
185.204.172.0/22 maxlen: 22
195.167.192.0/20 maxlen: 20
195.167.224.0/20 maxlen: 20
212.99.0.0/17 maxlen: 17
212.103.0.0/19 maxlen: 19
213.30.128.0/18 maxlen: 18
213.244.0.0/19 maxlen: 19
217.66.112.0/20 maxlen: 20
2a02:e000::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 09 Jul 2024 12:17:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:95:70:af:a8:b9:75:87:f9:12:b2:94:fc:3e:21:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jul 9 08:21:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82bbc6c2ded2738eaf0ce79858b976a14f74e542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3c:24:e7:33:d5:13:fa:76:95:16:21:92:0f:
49:33:80:d4:e2:84:2f:7c:70:f5:71:80:00:bf:ca:
65:3c:4c:66:be:6a:ef:dc:9a:4a:33:89:2d:e1:51:
2c:56:13:22:a0:d1:e4:87:60:01:44:3c:33:b8:f6:
f7:9e:31:46:98:c3:46:7f:6d:2b:80:69:cd:cb:05:
0c:05:e7:f6:85:0f:c3:16:e9:4e:40:da:8a:23:65:
56:58:1a:87:23:d5:b8:00:78:2e:0e:23:3b:5e:7f:
8d:7f:64:0e:62:16:91:34:e5:c9:91:13:a4:6e:0c:
29:49:38:d9:59:c4:30:ec:b1:ed:53:8f:ad:60:b2:
e8:94:90:fd:1a:20:87:b1:6d:3c:04:15:6a:c5:ff:
a4:55:00:5e:b2:45:27:40:76:32:f3:5e:26:01:46:
74:50:e5:b8:37:66:f1:03:0d:b6:92:0d:09:f7:14:
e0:6a:03:04:d9:8f:2b:8a:4a:eb:2a:c8:a8:07:93:
60:eb:b3:53:40:e8:aa:2c:50:9f:ea:05:13:be:0e:
de:8b:3d:c1:80:a9:9f:b5:7b:e9:cd:dc:04:41:d0:
e2:f8:cc:e4:27:9f:48:68:ac:dd:2f:ce:1e:59:46:
17:26:87:29:76:84:59:09:59:e5:0c:31:68:9f:51:
81:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BB:C6:C2:DE:D2:73:8E:AF:0C:E7:98:58:B9:76:A1:4F:74:E5:42
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/grvGwt7Sc46vDOeYWLl2oU905UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.218.0.0/16
77.104.0.0/18
82.101.0.0/18
83.145.64.0/18
89.224.0.0/14
92.102.0.0/15
185.204.172.0/22
195.167.192.0/20
195.167.224.0/20
212.99.0.0/17
212.103.0.0/19
213.30.128.0/18
213.244.0.0/19
217.66.112.0/20
IPv6:
2a02:e000::/29
Signature Algorithm: sha256WithRSAEncryption
3c:69:2b:92:b0:48:2a:7a:e3:f0:71:3f:ff:93:f9:e1:2d:56:
0d:5e:00:dc:0d:b7:61:60:4d:47:10:4b:dc:d8:ba:44:ad:b8:
26:74:2d:e4:22:68:ef:dd:0f:b3:a5:61:cc:97:37:ed:4f:75:
05:3c:7f:45:78:7f:d8:45:57:f3:bb:b0:e8:1f:1f:97:49:45:
18:66:05:a5:d9:d3:26:bd:f7:77:a5:87:68:96:32:b9:1c:57:
4a:7a:88:56:a9:2e:96:8e:20:f9:07:cd:9a:ca:22:9e:5b:c2:
90:83:95:d4:01:38:c8:d2:72:45:5a:07:f3:ed:04:c9:43:a7:
ef:20:83:1d:93:5e:42:fb:f8:e3:28:93:3f:7e:af:2f:d1:66:
1c:24:26:55:03:4d:95:ea:5b:cc:23:61:80:ca:41:2e:14:2f:
6f:48:41:94:4d:a7:c2:2e:db:04:94:11:d3:f9:0f:41:af:09:
6c:2e:18:d6:64:5a:35:f8:f8:d4:0a:f9:8c:1f:df:5d:4c:6c:
ef:39:90:b2:cd:b4:c6:57:62:6b:ed:e9:80:b1:32:a4:dc:f1:
77:2a:79:62:d3:c9:ac:54:93:07:dd:47:b0:69:20:6d:4a:26:
11:1a:5c:15:cc:55:fd:2e:8b:a7:44:ac:02:2d:4d:19:e9:35:
cb:5c:0c:14
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAZCWlXCvqLl1h/kSspT8PiGxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyZTI4MTBmNDliMzZmZGQ2NDFjMzI2YmQxZGU0ZTQyZDEy
OGIwNDYwHhcNMjQwNzA5MDgyMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmJiYzZjMmRlZDI3MzhlYWYwY2U3OTg1OGI5NzZhMTRmNzRlNTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTwk5zPVE/p2lRYhkg9JM4DU4oQv
fHD1cYAAv8plPExmvmrv3JpKM4kt4VEsVhMioNHkh2ABRDwzuPb3njFGmMNGf20r
gGnNywUMBef2hQ/DFulOQNqKI2VWWBqHI9W4AHguDiM7Xn+Nf2QOYhaRNOXJkROk
bgwpSTjZWcQw7LHtU4+tYLLolJD9GiCHsW08BBVqxf+kVQBeskUnQHYy814mAUZ0
UOW4N2bxAw22kg0J9xTgagME2Y8rikrrKsioB5Ng67NTQOiqLFCf6gUTvg7eiz3B
gKmftXvpzdwEQdDi+MzkJ59IaKzdL84eWUYXJocpdoRZCVnlDDFon1GBjwIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFIK7xsLe0nOOrwznmFi5dqFPdOVCMB8GA1UdIwQY
MBaAFPLigQ9Js2/dZBwya9HeTkLRKLBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHVLQkQwbXpiOTFrSERKcjBkNU9RdEVvc0VZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi83OWU5MDUtZmIwZC00YjhiLTkzOTAt
NTBkMmI3MGJjZjMxLzEvZ3J2R3d0N1NjNDZ2RE9lWVdMbDJvVTkwNVVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi83OWU5MDUtZmIwZC00YjhiLTkzOTAtNTBkMmI3MGJjZjMx
LzEvOHVLQkQwbXpiOTFrSERKcjBkNU9RdEVvc0VZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBXBAIAATBRAwMALtoDBAZN
aAADBAZSZQADBAZTkUADAwJZ4AMDAVxmAwQCucysAwQEw6fAAwQEw6fgAwQH1GMA
AwQF1GcAAwQG1R6AAwQF1fQAAwQE2UJwMA0EAgACMAcDBQMqAuAAMA0GCSqGSIb3
DQEBCwUAA4IBAQA8aSuSsEgqeuPwcT//k/nhLVYNXgDcDbdhYE1HEEvc2LpErbgm
dC3kImjv3Q+zpWHMlzftT3UFPH9FeH/YRVfzu7DoHx+XSUUYZgWl2dMmvfd3pYdo
ljK5HFdKeohWqS6WjiD5B82ayiKeW8KQg5XUATjI0nJFWgfz7QTJQ6fvIIMdk15C
+/jjKJM/fq8v0WYcJCZVA02V6lvMI2GAykEuFC9vSEGUTafCLtsElBHT+Q9Brwls
LhjWZFo1+PjUCvmMH99dTGzvOZCyzbTGV2Jr7emAsTKk3PF3Knli08msVJMH3Uew
aSBtSiYRGlwVzFX9LounRKwCLU0Z6TXLXAwU
-----END CERTIFICATE-----
Generated at Tue Jul 9 15:52:58 2024 by rpki-client on console-ams.rpki-client.org