Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/A9Xe4XRrh_q01yw5xq0VX4GuYYs.roa
File: A9Xe4XRrh_q01yw5xq0VX4GuYYs.roa (raw, json)
Hash identifier: 7jkiS6vY263k1KX9/ohheDaEMnDq2khb9C7DCJi/my0=
Subject key identifier: 03:D5:DE:E1:74:6B:87:FA:B4:D7:2C:39:C6:AD:15:5F:81:AE:61:8B
Certificate issuer: /CN=6dbc20a736ffc1319efde4db63137c8783c6b350
Certificate serial: 01856D81BEABAE334565DDB36E67A9B612DC
Authority key identifier: 6D:BC:20:A7:36:FF:C1:31:9E:FD:E4:DB:63:13:7C:87:83:C6:B3:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bbwgpzb_wTGe_eTbYxN8h4PGs1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/A9Xe4XRrh_q01yw5xq0VX4GuYYs.roa
Signing time: Sun 01 Jan 2023 13:24:57 +0000
ROA not before: Sun 01 Jan 2023 13:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47123
IP address blocks: 185.44.192.0/24 maxlen: 24
185.44.193.0/24 maxlen: 24
185.44.194.0/24 maxlen: 24
185.44.195.0/24 maxlen: 24
195.155.64.0/24 maxlen: 24
195.155.65.0/24 maxlen: 24
195.155.66.0/24 maxlen: 24
195.155.67.0/24 maxlen: 24
195.155.68.0/24 maxlen: 24
195.155.69.0/24 maxlen: 24
195.155.70.0/24 maxlen: 24
195.155.71.0/24 maxlen: 24
195.155.78.0/24 maxlen: 24
195.155.72.0/24 maxlen: 24
195.155.73.0/24 maxlen: 24
195.155.74.0/24 maxlen: 24
195.155.75.0/24 maxlen: 24
195.155.76.0/24 maxlen: 24
195.155.77.0/24 maxlen: 24
195.155.79.0/24 maxlen: 24
195.155.80.0/24 maxlen: 24
195.155.81.0/24 maxlen: 24
195.155.82.0/24 maxlen: 24
195.155.83.0/24 maxlen: 24
195.155.84.0/24 maxlen: 24
195.155.85.0/24 maxlen: 24
195.155.86.0/24 maxlen: 24
195.155.87.0/24 maxlen: 24
195.155.88.0/24 maxlen: 24
195.155.89.0/24 maxlen: 24
195.155.90.0/24 maxlen: 24
195.155.91.0/24 maxlen: 24
93.94.248.0/24 maxlen: 24
93.94.249.0/24 maxlen: 24
93.94.250.0/24 maxlen: 24
93.94.251.0/24 maxlen: 24
93.94.252.0/23 maxlen: 23
93.94.254.0/24 maxlen: 24
93.94.255.0/24 maxlen: 24
195.155.92.0/24 maxlen: 24
195.155.93.0/24 maxlen: 24
195.155.94.0/24 maxlen: 24
195.155.95.0/24 maxlen: 24
2a04:c2::/32 maxlen: 32
2a04:c3::/32 maxlen: 32
2a04:c1::/32 maxlen: 32
2a04:c4::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 20 Jul 2023 07:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:be:ab:ae:33:45:65:dd:b3:6e:67:a9:b6:12:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbc20a736ffc1319efde4db63137c8783c6b350
Validity
Not Before: Jan 1 13:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03d5dee1746b87fab4d72c39c6ad155f81ae618b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:60:f0:b4:e8:7c:4d:63:7c:82:fd:6f:56:cd:
69:a1:5a:22:1c:d2:87:e1:32:00:90:0f:69:fb:6b:
3e:00:10:01:b8:5f:4f:b1:21:76:3c:e7:4d:af:27:
95:8d:f6:c3:dc:a4:5e:d6:4f:b8:1e:11:d9:61:c9:
b9:bf:5b:01:d9:84:c5:c9:dc:f0:88:11:d0:01:f9:
b8:16:32:3a:af:a9:36:06:27:1f:59:6b:6c:28:47:
51:47:a8:d4:15:a6:d6:6f:70:4c:08:8b:c5:72:76:
cd:5b:c7:51:76:aa:79:01:63:8a:59:02:c1:6a:50:
29:fe:c0:92:b6:57:42:5d:09:17:d5:a8:bf:34:40:
84:77:33:68:de:5c:c6:45:88:bc:56:18:4e:6a:51:
d0:11:09:d8:17:43:59:c5:ec:09:1c:af:6b:28:c0:
bc:a3:f3:04:5e:0a:38:62:a7:bf:33:36:4e:4c:bf:
09:35:0e:47:91:e7:34:0f:55:1b:a0:c7:7f:f3:bf:
9c:4d:a8:62:a9:08:f1:29:d4:25:fe:1f:b9:ea:c0:
6e:9a:2a:7c:25:80:b4:e4:95:d6:88:7c:d6:de:5f:
74:db:dc:96:da:d8:d1:89:bf:0f:94:7c:fa:1b:66:
ce:cc:73:26:e2:40:d2:1b:db:7f:98:fe:ee:0d:65:
ac:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D5:DE:E1:74:6B:87:FA:B4:D7:2C:39:C6:AD:15:5F:81:AE:61:8B
X509v3 Authority Key Identifier:
keyid:6D:BC:20:A7:36:FF:C1:31:9E:FD:E4:DB:63:13:7C:87:83:C6:B3:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bbwgpzb_wTGe_eTbYxN8h4PGs1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/A9Xe4XRrh_q01yw5xq0VX4GuYYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/898101-78ac-4a03-b3f9-a54ec0d68fa8/1/bbwgpzb_wTGe_eTbYxN8h4PGs1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.94.248.0/21
185.44.192.0/22
195.155.64.0/19
IPv6:
2a04:c1::-2a04:c4:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
2d:98:ee:a5:85:c0:6b:bd:c1:e2:b3:3e:c3:da:56:24:98:c8:
c7:4d:a6:7f:d2:0e:84:9c:52:46:85:cb:97:ff:bc:48:c6:b9:
47:dc:38:80:02:0f:a3:42:60:64:e8:ad:1d:3b:b5:e4:98:11:
d4:81:32:9c:81:d4:35:91:cf:36:4c:a3:8c:d6:fe:4e:33:f8:
2d:ec:34:83:17:a1:97:07:75:45:38:3e:98:bf:61:86:f4:41:
15:32:9f:f8:6d:6e:a4:08:7e:46:f7:fa:96:6b:80:01:27:57:
a4:8b:d0:39:3d:f7:6d:cf:e8:f0:5f:9c:2b:ec:f5:c5:01:d9:
ec:4d:a3:5f:11:54:01:74:32:a7:4d:0c:9f:b8:ed:4f:cf:cf:
1a:5c:b6:79:3c:32:79:f5:7c:3a:01:90:a8:da:c8:7c:cf:1f:
38:3c:0f:b2:38:92:81:cc:42:e7:4e:64:b4:17:ac:01:de:a6:
5d:68:4e:4d:58:88:ae:f9:7e:55:3c:26:93:8b:62:b7:4b:e8:
8e:77:34:21:11:b7:1d:f6:7c:49:e2:6f:d9:09:c8:9b:0c:7e:
01:b9:06:8a:03:43:ca:a7:a2:42:fc:d4:cd:24:70:0a:ae:90:
80:6f:50:fa:5c:07:f6:aa:7f:e1:a8:48:3e:a5:c9:de:26:a2:
c4:11:67:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:28 2024 by rpki-client on console-ams.rpki-client.org