Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/oUeqlIqJhi_BGHFqtmAhpv-x3qg.roa
File: oUeqlIqJhi_BGHFqtmAhpv-x3qg.roa (raw, json)
Hash identifier: idiSzhB16fRx5nkvqzB/PEw3kIm3rghWU8oyy24w6pM=
Subject key identifier: A1:47:AA:94:8A:89:86:2F:C1:18:71:6A:B6:60:21:A6:FF:B1:DE:A8
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018B19602F181F19190D363415BF81220EDF
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/oUeqlIqJhi_BGHFqtmAhpv-x3qg.roa
Signing time: Tue 10 Oct 2023 11:36:55 +0000
ROA not before: Tue 10 Oct 2023 11:36:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
85.92.110.0/24 maxlen: 24
85.92.111.0/24 maxlen: 24
45.95.234.0/24 maxlen: 24
45.8.98.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
94.198.220.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.89.190.0/24 maxlen: 24
92.118.113.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:60:2f:18:1f:19:19:0d:36:34:15:bf:81:22:0e:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Oct 10 11:36:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a147aa948a89862fc118716ab66021a6ffb1dea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cc:2e:77:d6:97:f0:21:59:58:6d:ba:9d:ed:
8f:04:d9:98:82:f1:03:b7:34:c1:01:18:1b:8c:fd:
cb:fc:cb:2f:b1:55:83:0e:27:a2:1b:18:23:3f:bb:
e1:83:e7:e5:e1:8f:ca:ad:dc:1c:94:17:41:79:ac:
ad:39:87:b9:59:1a:90:dc:82:fd:1a:3a:cb:73:ad:
86:98:c5:88:9c:e0:40:2b:75:9c:eb:c2:c3:29:2a:
e4:8b:7c:95:41:db:f6:fe:3e:28:ae:44:c1:56:94:
f6:11:c6:12:eb:22:1d:87:fc:0b:bd:6c:38:94:c7:
99:c5:82:5e:0a:1e:7b:d8:fa:91:bd:28:7d:96:7e:
3d:70:a0:41:dc:69:b6:2d:9e:b3:ee:33:01:8e:1c:
9d:c9:3a:1e:2c:6a:e0:1c:4c:df:0e:4d:ad:e5:15:
75:81:bd:e5:28:ab:b6:ba:0f:25:6d:e9:bd:d6:6b:
eb:90:8b:71:3b:4c:1b:56:30:5b:af:07:ec:48:b4:
6e:ad:7f:a5:54:7b:02:61:66:1a:c6:27:84:9d:33:
73:75:dc:55:d9:27:11:a9:f0:94:62:3d:7c:a6:a9:
94:9e:15:9f:e8:b0:06:c5:56:24:7d:83:3b:49:e7:
98:25:22:89:d5:d7:43:ce:4b:42:19:b6:39:1f:ec:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:47:AA:94:8A:89:86:2F:C1:18:71:6A:B6:60:21:A6:FF:B1:DE:A8
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/oUeqlIqJhi_BGHFqtmAhpv-x3qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.80.0/24
45.8.96.0/22
45.89.190.0/24
45.95.234.0/24
46.19.64.0/22
81.200.144.0-81.200.153.255
85.92.110.0/23
92.118.113.0-92.118.115.255
94.198.216.0-94.198.221.255
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:fe:a6:dc:84:8e:17:fd:b3:de:e4:17:77:a3:03:de:b2:a8:
c2:09:c2:54:92:4b:aa:fd:00:7a:82:76:0c:b4:f1:c7:c1:6a:
4d:4b:f7:34:92:24:c1:35:44:26:39:88:c3:49:80:3c:89:07:
1f:53:30:58:90:8e:8c:1f:83:0c:4e:63:21:2c:0b:e1:c9:d3:
50:c0:7c:19:7e:2a:b8:04:20:51:6d:e5:1d:73:aa:44:a8:3d:
e3:59:7e:b3:77:f2:22:82:29:20:9a:78:9c:4f:4e:3a:27:0b:
10:40:76:4d:ef:38:d9:b2:2f:58:38:21:9e:44:cf:d5:04:f0:
69:52:1d:be:92:76:f3:36:c6:f9:92:5c:70:a5:61:ae:bf:1e:
85:ce:81:39:a6:45:ec:fe:cc:89:8a:83:3c:62:02:88:95:c9:
ab:91:e9:ea:59:c1:12:8f:be:0b:c0:d2:60:a5:a0:e6:0d:53:
98:8e:c3:2b:ca:fd:07:0d:b3:8e:03:45:8a:ae:64:4a:76:d7:
38:48:cc:2e:74:06:bf:4c:81:8a:4a:70:91:d8:61:08:8b:b6:
26:3a:c8:fc:a8:0d:bd:8c:90:4c:cc:c6:91:54:19:94:34:b7:
b7:d5:93:6f:fc:c2:7f:da:80:12:c9:60:6c:fb:f1:e6:69:26:
c9:c1:1a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 05:54:13 2023 by rpki-client on console-ams.rpki-client.org