Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/4dwO8pIwyE1ua6gBy-mXw_tDxMc.roa
File: 4dwO8pIwyE1ua6gBy-mXw_tDxMc.roa (raw, json)
Hash identifier: ANQqRIj0UQM6ebezvMHj0QfGX6/woWEa86EkAvZ+hvA=
Subject key identifier: E1:DC:0E:F2:92:30:C8:4D:6E:6B:A8:01:CB:E9:97:C3:FB:43:C4:C7
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 018A2247B98DE7C06398121B20D6C1858A7D
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/4dwO8pIwyE1ua6gBy-mXw_tDxMc.roa
Signing time: Wed 23 Aug 2023 12:04:00 +0000
ROA not before: Wed 23 Aug 2023 12:04:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62005
IP address blocks: 176.124.32.0/24 maxlen: 24
176.124.33.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
194.61.120.0/24 maxlen: 24
45.86.228.0/24 maxlen: 24
45.86.229.0/24 maxlen: 24
45.86.231.0/24 maxlen: 24
77.72.85.0/24 maxlen: 24
185.123.53.0/24 maxlen: 24
185.39.18.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
45.129.199.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
195.54.160.0/24 maxlen: 24
2a10:1fc0:f::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:c::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:e::/48 maxlen: 48
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:22:47:b9:8d:e7:c0:63:98:12:1b:20:d6:c1:85:8a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Aug 23 12:04:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1dc0ef29230c84d6e6ba801cbe997c3fb43c4c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:05:0f:3b:7b:a3:c8:56:dd:c1:31:a9:d6:49:
f1:69:7f:91:92:ff:07:f9:f2:45:95:d3:00:25:8e:
36:5f:2f:92:85:d6:88:54:9f:54:d8:10:77:28:e5:
70:9d:13:41:3f:45:c3:98:16:ba:b3:44:61:29:85:
7d:6a:39:6c:59:ec:4b:79:90:e0:ed:09:2b:33:c5:
59:2f:38:6f:80:cc:37:97:73:ed:a5:54:4a:c5:94:
c5:dd:b2:15:7d:76:6c:b0:26:80:14:4b:de:f6:bf:
be:ee:6d:42:c4:14:01:52:41:93:bf:7d:65:62:82:
5f:2f:4a:ea:c7:4d:3f:77:3b:af:d8:25:aa:74:4f:
41:e4:53:a6:99:bc:ac:1e:29:e3:2d:d8:35:83:e3:
1d:4f:53:3e:10:09:0a:89:2e:83:95:89:95:dc:4d:
5f:02:4b:26:91:be:fb:9b:71:b5:f1:dc:a3:7f:8b:
9d:8d:12:23:76:83:9f:12:41:72:67:b5:0a:00:6b:
d6:26:65:b3:68:fe:86:68:36:43:e1:b1:18:c4:ff:
38:09:db:73:6f:55:6b:f2:d0:5d:1d:87:58:72:40:
10:92:cc:a5:b8:1b:c5:65:b8:b3:1d:28:82:1c:a0:
d8:e1:8e:a6:ec:05:55:f6:1f:f4:f0:44:1e:48:eb:
82:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:DC:0E:F2:92:30:C8:4D:6E:6B:A8:01:CB:E9:97:C3:FB:43:C4:C7
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/4dwO8pIwyE1ua6gBy-mXw_tDxMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.228.0/23
45.86.231.0/24
45.129.199.0/24
77.72.85.0/24
91.235.234.0/24
176.124.32.0/23
185.39.18.0/24
185.123.53.0/24
193.109.120.0/24
194.61.120.0/23
195.54.160.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:3:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:5::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::-2a10:1fc0:c:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:e::-2a10:1fc0:10:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
af:fc:de:49:99:3f:6d:2c:53:a5:b5:df:b6:c9:53:75:cc:46:
c9:37:7a:22:80:48:0e:dc:1c:87:68:93:c5:c2:c1:16:fd:f5:
2c:b6:df:89:46:9d:fb:45:9f:55:56:ac:b3:17:60:f4:2d:a2:
61:f8:79:84:b5:29:0f:d8:8a:03:41:3f:81:d5:7c:e5:a9:9e:
f5:00:9c:ee:03:4b:81:ae:f1:37:28:e4:28:85:ec:0a:04:84:
4c:e9:24:e2:f7:6e:b0:9d:03:0e:d2:65:23:ff:7c:e4:ca:e9:
90:6c:cd:52:b7:bd:ee:ac:4e:32:03:1e:b1:81:bf:66:a4:fb:
1d:62:62:5b:0a:03:ce:8b:76:5d:09:3c:5a:2e:58:a2:c9:9e:
3f:fa:e6:6b:0c:9b:11:5c:c2:81:ee:b5:a4:5c:ed:be:ea:85:
f0:c8:e4:82:1a:b0:cd:f3:fb:ee:b6:44:d8:31:e4:25:62:d4:
47:99:c5:59:d0:bd:e2:64:e8:16:71:e1:fa:50:ef:96:42:b7:
d3:d1:32:41:89:23:5d:6a:c1:56:df:e9:a9:88:3c:c2:04:e3:
93:c6:64:94:52:68:a9:58:b2:c5:e8:58:c9:ad:52:76:34:1c:
a0:c0:8d:0b:6d:05:41:9a:19:fc:64:c6:41:48:6f:61:38:62:
53:a5:45:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 22 11:12:03 2023 by rpki-client on console-fra.rpki-client.org