Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/FRYaauM1XLTCnJVGTztG8COowbo.roa
File: FRYaauM1XLTCnJVGTztG8COowbo.roa (raw, json)
Hash identifier: kXrEYgyBiI6m3GgO2tg9vW2GKYHyRz4UrLuUF4l/dSM=
Subject key identifier: 15:16:1A:6A:E3:35:5C:B4:C2:9C:95:46:4F:3B:46:F0:23:A8:C1:BA
Certificate issuer: /CN=1ecb9bd5ed96e69dda8fc2a1fe02147adae8f713
Certificate serial: 018FA6DEAF6216EC82BB30A91222BF0FD045
Authority key identifier: 1E:CB:9B:D5:ED:96:E6:9D:DA:8F:C2:A1:FE:02:14:7A:DA:E8:F7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/FRYaauM1XLTCnJVGTztG8COowbo.roa
Signing time: Thu 23 May 2024 19:12:42 +0000
ROA not before: Thu 23 May 2024 19:12:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19229
IP address blocks: 77.95.80.0/21 maxlen: 21
77.95.80.0/23 maxlen: 23
77.95.82.0/23 maxlen: 23
77.95.84.0/23 maxlen: 23
77.95.86.0/23 maxlen: 23
176.32.232.0/21 maxlen: 21
176.32.233.0/24 maxlen: 24
176.32.234.0/24 maxlen: 24
176.32.235.0/24 maxlen: 24
176.32.236.0/24 maxlen: 24
176.32.237.0/24 maxlen: 24
176.32.238.0/24 maxlen: 24
176.32.239.0/24 maxlen: 24
185.148.132.0/22 maxlen: 22
185.148.132.0/23 maxlen: 23
185.148.134.0/23 maxlen: 23
217.64.224.0/20 maxlen: 20
217.64.224.0/23 maxlen: 23
217.64.226.0/23 maxlen: 23
217.64.228.0/23 maxlen: 23
217.64.230.0/23 maxlen: 23
217.64.232.0/23 maxlen: 23
217.64.234.0/23 maxlen: 23
217.64.236.0/23 maxlen: 23
217.64.238.0/23 maxlen: 23
217.147.64.0/20 maxlen: 20
217.147.64.0/23 maxlen: 23
217.147.66.0/23 maxlen: 23
217.147.68.0/23 maxlen: 23
217.147.70.0/23 maxlen: 23
217.147.72.0/23 maxlen: 23
217.147.74.0/23 maxlen: 23
217.147.76.0/23 maxlen: 23
217.147.78.0/23 maxlen: 23
2a02:5f00::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 May 2024 20:17:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:de:af:62:16:ec:82:bb:30:a9:12:22:bf:0f:d0:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ecb9bd5ed96e69dda8fc2a1fe02147adae8f713
Validity
Not Before: May 23 19:12:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15161a6ae3355cb4c29c95464f3b46f023a8c1ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bc:6c:e4:58:89:38:50:be:ee:e7:f2:5d:9c:
7f:9c:1e:7f:d5:55:06:e1:75:2c:e4:06:c9:02:74:
f0:f7:d9:5a:d3:7f:24:97:45:20:98:7e:eb:4d:8a:
4a:8f:c4:34:50:79:d3:d8:b8:48:18:d4:95:48:a7:
9b:8b:66:b5:27:39:8a:b4:14:86:bd:cb:03:32:b6:
48:31:4f:b5:17:bf:2c:58:66:fe:7a:20:85:89:01:
a8:2d:cb:55:b8:a1:0d:3d:54:38:30:48:48:70:15:
0d:aa:bf:33:ae:2f:7b:d7:b2:97:9a:a3:c1:8c:da:
e8:95:8c:df:7d:a1:88:35:c7:e0:b9:61:6d:c2:e5:
77:f2:e5:dc:22:d2:4c:af:13:86:ab:6c:8d:bd:5f:
62:ba:3d:43:2b:0d:b5:4e:97:96:e3:83:52:a5:89:
70:53:6b:10:bc:88:5e:45:86:7c:b4:eb:37:f4:e9:
c2:86:ee:b2:83:86:0e:df:95:7d:33:b1:2e:09:a5:
d3:e1:95:28:5a:23:19:0c:ae:b9:b3:c8:74:d2:5a:
6e:38:cc:c5:97:05:b3:eb:61:b7:5a:c9:cf:c8:cf:
ce:be:f8:02:f5:3b:be:38:37:d6:48:0f:a0:16:30:
f6:01:2f:73:7c:23:a0:95:4a:80:1a:4f:12:5b:14:
1f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:16:1A:6A:E3:35:5C:B4:C2:9C:95:46:4F:3B:46:F0:23:A8:C1:BA
X509v3 Authority Key Identifier:
keyid:1E:CB:9B:D5:ED:96:E6:9D:DA:8F:C2:A1:FE:02:14:7A:DA:E8:F7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hsub1e2W5p3aj8Kh_gIUetro9xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/FRYaauM1XLTCnJVGTztG8COowbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c34150-5912-490c-b35b-f54fbf6917bc/1/Hsub1e2W5p3aj8Kh_gIUetro9xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.80.0/21
176.32.232.0/21
185.148.132.0/22
217.64.224.0/20
217.147.64.0/20
IPv6:
2a02:5f00::/32
Signature Algorithm: sha256WithRSAEncryption
5f:78:2b:7b:7a:25:96:d4:e0:e7:07:6e:91:d3:88:7e:25:8f:
1f:2d:c0:57:98:da:7e:6e:3e:ef:71:ec:ee:9f:ba:ca:4e:bc:
28:dc:3e:32:58:cc:c2:5f:fa:6e:c6:c6:fd:9d:84:55:5e:1c:
a3:8a:be:fd:6a:91:81:08:78:9c:7c:d4:a4:0d:8a:38:64:66:
70:bf:79:0d:07:a3:14:62:9c:1e:7c:39:92:4a:6c:62:eb:17:
74:08:16:8c:8b:c2:b3:be:fc:f4:f3:2e:aa:8c:37:68:6b:08:
58:d3:b7:a1:92:3c:b3:9b:82:88:fb:c1:07:e1:3b:a1:3f:9b:
e0:a9:6b:a5:77:9b:62:e8:c9:9b:3c:4d:89:f6:f2:cc:72:25:
cf:d0:77:80:6f:04:8b:85:57:11:78:38:be:8a:56:59:81:4c:
71:85:c0:15:19:29:d4:19:d3:39:4f:83:7b:6f:2c:7e:da:ab:
63:e2:c6:42:24:90:bb:c3:5b:62:27:9e:67:e2:b0:ab:53:18:
15:35:d9:4c:21:54:66:8a:98:73:2f:e0:de:d6:89:b0:37:4f:
ac:2a:f8:6e:c4:63:17:68:65:96:a8:73:f9:06:5f:6e:e9:07:
a7:0d:34:ac:9a:f2:b8:c4:cf:e8:83:16:10:b8:3e:22:82:4e:
44:bb:61:9f
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAY+m3q9iFuyCuzCpEiK/D9BFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlY2I5YmQ1ZWQ5NmU2OWRkYThmYzJhMWZlMDIxNDdhZGFl
OGY3MTMwHhcNMjQwNTIzMTkxMjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTE2MWE2YWUzMzU1Y2I0YzI5Yzk1NDY0ZjNiNDZmMDIzYThjMWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrxs5FiJOFC+7ufyXZx/nB5/1VUG
4XUs5AbJAnTw99la038kl0UgmH7rTYpKj8Q0UHnT2LhIGNSVSKebi2a1JzmKtBSG
vcsDMrZIMU+1F78sWGb+eiCFiQGoLctVuKENPVQ4MEhIcBUNqr8zri9717KXmqPB
jNrolYzffaGINcfguWFtwuV38uXcItJMrxOGq2yNvV9iuj1DKw21TpeW44NSpYlw
U2sQvIheRYZ8tOs39OnChu6yg4YO35V9M7EuCaXT4ZUoWiMZDK65s8h00lpuOMzF
lwWz62G3WsnPyM/OvvgC9Tu+ODfWSA+gFjD2AS9zfCOglUqAGk8SWxQfswIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFBUWGmrjNVy0wpyVRk87RvAjqMG6MB8GA1UdIwQY
MBaAFB7Lm9Xtluad2o/Cof4CFHra6PcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHN1YjFlMlc1cDNhajhLaF9nSVVldHJvOXhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9jMzQxNTAtNTkxMi00OTBjLWIzNWIt
ZjU0ZmJmNjkxN2JjLzEvRlJZYWF1TTFYTFRDbkpWR1R6dEc4Q09vd2JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9jMzQxNTAtNTkxMi00OTBjLWIzNWItZjU0ZmJmNjkxN2Jj
LzEvSHN1YjFlMlc1cDNhajhLaF9nSVVldHJvOXhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDTV9QAwQD
sCDoAwQCuZSEAwQE2UDgAwQE2ZNAMA0EAgACMAcDBQAqAl8AMA0GCSqGSIb3DQEB
CwUAA4IBAQBfeCt7eiWW1ODnB26R04h+JY8fLcBXmNp+bj7vcezun7rKTrwo3D4y
WMzCX/puxsb9nYRVXhyjir79apGBCHicfNSkDYo4ZGZwv3kNB6MUYpwefDmSSmxi
6xd0CBaMi8Kzvvz08y6qjDdoawhY07ehkjyzm4KI+8EH4TuhP5vgqWuld5ti6Mmb
PE2J9vLMciXP0HeAbwSLhVcReDi+ilZZgUxxhcAVGSnUGdM5T4N7byx+2qtj4sZC
JJC7w1tiJ55n4rCrUxgVNdlMIVRmiphzL+De1omwN0+sKvhuxGMXaGWWqHP5Bl9u
6QenDTSsmvK4xM/ogxYQuD4igk5Eu2Gf
-----END CERTIFICATE-----
Generated at Tue May 6 03:38:59 2025 by rpki-client