Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/fINsx0yuE_ZYvx3jQkWeoAu74uk.roa
File: fINsx0yuE_ZYvx3jQkWeoAu74uk.roa (raw, json)
Hash identifier: BqBMlR2HE8hhv/eHEEsstvc088VhVwTD5pZZ6vl9lMQ=
Subject key identifier: 7C:83:6C:C7:4C:AE:13:F6:58:BF:1D:E3:42:45:9E:A0:0B:BB:E2:E9
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018677F9FD1FE9D041E8804290B92B19C150
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/fINsx0yuE_ZYvx3jQkWeoAu74uk.roa
Signing time: Wed 22 Feb 2023 07:15:17 +0000
ROA not before: Wed 22 Feb 2023 07:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:77:f9:fd:1f:e9:d0:41:e8:80:42:90:b9:2b:19:c1:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Feb 22 07:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c836cc74cae13f658bf1de342459ea00bbbe2e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fe:ca:ba:d5:73:0f:1c:49:ba:22:02:36:32:
76:d7:d1:15:00:13:43:09:04:18:d2:75:4b:49:f6:
11:ee:de:19:74:4d:3e:16:40:3a:4c:96:a8:ae:c0:
87:c4:99:f1:e5:c7:65:3f:56:d0:dd:2f:52:18:3d:
16:24:86:86:36:f0:88:9d:85:7d:cb:b9:cc:46:48:
d5:79:8d:0c:06:a5:10:72:1c:23:c3:6a:dc:69:50:
7e:72:ca:3a:97:bd:63:a2:54:7d:88:6e:f7:d6:3b:
e6:c1:ae:12:c6:fb:d0:6f:95:91:b5:c2:69:c5:51:
61:c6:3a:64:eb:49:72:99:a9:46:26:87:93:a3:aa:
b2:3a:a8:97:ec:22:ce:5e:2c:29:cc:77:20:2a:d7:
9d:89:30:8e:96:2a:b3:f8:63:74:ff:93:cd:a6:d1:
aa:17:de:05:e6:81:cc:69:00:18:89:a2:d5:98:05:
28:ce:cb:e1:6c:4a:45:27:74:f4:c4:81:b6:09:cf:
c1:cb:34:bb:cd:2f:ac:0b:0e:2e:8a:c3:72:cd:3d:
f5:7b:b4:96:d9:40:dc:54:38:9c:39:99:81:53:67:
c5:a9:19:2f:e9:12:44:d5:7e:31:9c:f1:92:2c:69:
c9:4b:e1:b4:8e:65:ee:e5:79:9b:bf:7a:e3:af:69:
4e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:83:6C:C7:4C:AE:13:F6:58:BF:1D:E3:42:45:9E:A0:0B:BB:E2:E9
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/fINsx0yuE_ZYvx3jQkWeoAu74uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.80.0/24
45.8.96.0/23
46.19.64.0/22
81.200.144.0-81.200.153.255
92.118.114.0/24
94.198.216.0/22
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
65:c1:79:b5:f0:2d:75:3c:fc:fe:31:1a:c1:a0:c1:72:29:fd:
17:f8:89:96:b6:55:e9:e8:33:c2:bb:1e:9d:0e:cb:3d:ba:cb:
c3:d7:3a:48:f8:6b:6d:66:64:06:b5:c8:0d:f4:16:23:a3:e2:
f2:49:58:26:aa:01:dc:78:4c:04:70:e2:93:13:d5:13:a0:04:
b0:6b:4d:d7:02:b2:02:8e:ea:5b:d2:ad:5e:7f:2f:ce:fb:dc:
fa:51:5d:dd:b6:a8:d0:b9:8b:7a:14:5e:df:23:80:6a:48:8e:
e6:2a:48:c8:00:f3:13:e9:6f:1d:76:d3:3b:fa:16:fc:51:85:
37:21:ea:1c:7b:c8:7e:38:69:54:61:fe:8f:27:7f:d6:91:df:
8f:c5:f0:10:8a:1b:bd:a5:aa:96:d8:cd:35:e2:f6:cd:99:07:
28:67:c8:60:a2:f2:42:23:99:1e:0a:13:ed:fa:00:b6:97:c3:
71:2f:42:ec:86:2c:1e:28:1e:3e:ca:0f:36:36:8d:4a:72:b2:
4a:a9:93:e4:4e:41:ef:08:ba:8d:74:5f:58:48:15:d1:c0:26:
c9:f2:27:ed:a7:47:97:34:53:48:91:73:a4:ad:c2:10:13:d4:
d9:74:b8:38:a5:b8:ee:aa:34:5c:78:8c:b3:5a:ee:bd:6c:49:
93:fc:fd:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-fra.rpki-client.org