Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/6m7OCmXmNPykBdFi6V8P6dofBuQ.roa
File: 6m7OCmXmNPykBdFi6V8P6dofBuQ.roa (raw, json)
Hash identifier: +fVI3vbTZjSi4DNeAqkvO+hr084VwYH5nKkN8FrnBbI=
Subject key identifier: EA:6E:CE:0A:65:E6:34:FC:A4:05:D1:62:E9:5F:0F:E9:DA:1F:06:E4
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 01856F94DAE3CD20211CC5D60D97D5E1135F
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/6m7OCmXmNPykBdFi6V8P6dofBuQ.roa
Signing time: Sun 01 Jan 2023 23:05:04 +0000
ROA not before: Sun 01 Jan 2023 23:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 198.105.120.0/22 maxlen: 24
185.135.212.0/22 maxlen: 24
45.43.88.0/22 maxlen: 24
198.105.96.0/22 maxlen: 24
198.105.104.0/22 maxlen: 24
198.105.112.0/24 maxlen: 24
198.105.118.0/23 maxlen: 24
198.105.114.0/23 maxlen: 24
198.105.113.0/24 maxlen: 24
155.254.36.0/22 maxlen: 24
155.254.40.0/22 maxlen: 22
155.254.44.0/22 maxlen: 24
155.254.50.0/23 maxlen: 24
155.254.52.0/22 maxlen: 24
155.254.56.0/22 maxlen: 24
45.43.92.0/22 maxlen: 24
185.53.131.0/24 maxlen: 24
185.53.128.0/24 maxlen: 24
185.53.130.0/24 maxlen: 24
185.53.129.0/24 maxlen: 24
185.83.219.0/24 maxlen: 24
185.83.218.0/24 maxlen: 24
185.83.216.0/24 maxlen: 24
185.83.217.0/24 maxlen: 24
107.181.137.0/24 maxlen: 24
107.181.156.0/22 maxlen: 22
91.210.64.0/22 maxlen: 24
103.206.232.0/22 maxlen: 24
162.220.246.0/23 maxlen: 24
94.177.5.0/24 maxlen: 24
43.239.88.0/22 maxlen: 22
87.239.252.0/23 maxlen: 24
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:da:e3:cd:20:21:1c:c5:d6:0d:97:d5:e1:13:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 1 23:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea6ece0a65e634fca405d162e95f0fe9da1f06e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3b:01:bb:c1:c1:72:55:67:0a:af:db:16:ad:
f5:41:b2:cc:31:4c:20:7f:f5:1e:2a:10:e7:8c:36:
92:26:20:70:f1:ca:35:2e:fa:04:bf:a1:40:12:05:
24:34:38:c0:f0:81:65:eb:02:f0:ab:1b:81:cb:b0:
32:c5:89:e6:00:bd:c0:cf:57:41:97:ba:57:fb:20:
8d:4e:95:25:08:9c:a3:22:23:9b:85:67:c1:61:8a:
3f:13:41:a8:82:a8:bc:ae:c2:cc:fa:4c:0e:91:a6:
d5:b4:e8:54:c2:e2:11:e8:e8:60:1e:b1:a9:00:1f:
46:44:3e:4d:b5:70:fa:78:5a:51:f4:78:69:a4:dc:
c5:3c:fd:80:db:ae:5e:81:23:09:1c:25:62:dc:9a:
c1:62:a6:71:ba:ba:b1:a8:fa:ad:a5:5f:1f:9c:39:
38:8b:d8:2d:50:f2:4b:b5:63:7b:e7:df:f4:e5:17:
63:31:b5:24:c1:90:7a:bb:06:5f:46:36:b5:a1:84:
9f:5e:90:ce:c4:5b:5b:82:18:d8:02:84:82:19:04:
6f:16:da:bc:af:4a:6c:46:4a:19:73:16:13:54:75:
53:f0:09:cb:95:0d:98:67:ed:83:86:25:c7:86:03:
b3:4f:a4:91:b6:22:ba:d4:b6:4f:3c:1d:36:7c:92:
d5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6E:CE:0A:65:E6:34:FC:A4:05:D1:62:E9:5F:0F:E9:DA:1F:06:E4
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/6m7OCmXmNPykBdFi6V8P6dofBuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.239.88.0/22
45.43.88.0/21
87.239.252.0/23
91.210.64.0/22
94.177.5.0/24
103.206.232.0/22
107.181.137.0/24
107.181.156.0/22
155.254.36.0-155.254.47.255
155.254.50.0-155.254.59.255
162.220.246.0/23
185.53.128.0/22
185.83.216.0/22
185.135.212.0/22
198.105.96.0/22
198.105.104.0/22
198.105.112.0/22
198.105.118.0-198.105.123.255
IPv6:
2a02:2ca0::/29
Signature Algorithm: sha256WithRSAEncryption
90:ea:80:47:7d:a5:f2:d5:ee:27:81:a2:14:a2:32:01:d5:0a:
09:8c:9a:b3:30:6b:44:e2:64:61:17:99:52:ff:40:84:95:ff:
c4:ed:86:f0:86:50:ba:68:3e:be:4c:d8:91:c4:8b:d0:c1:d5:
4c:cd:93:05:33:99:4a:4a:d4:a8:23:f2:26:c6:34:b3:57:bf:
18:a4:64:01:59:5c:9f:2f:22:27:17:a6:4a:31:7d:b8:dc:aa:
ec:8c:3f:bb:b6:f9:ec:60:37:6a:a5:57:fb:e8:c5:38:93:2f:
1b:3d:c2:a0:4f:18:cf:0f:95:82:09:31:42:cb:21:fd:82:5f:
7d:c3:cd:d5:6f:18:b3:8e:65:5b:06:f5:89:74:bd:53:e2:05:
94:03:91:60:e6:db:03:a6:fd:fb:58:e1:34:bb:58:9b:81:f8:
43:a9:6f:53:09:e3:11:96:ee:8e:09:7c:45:20:94:1f:80:bd:
02:2a:31:3f:c5:2d:5a:34:40:05:c3:09:30:d8:dd:3c:21:ae:
ba:8a:42:f0:e8:68:e6:24:1a:51:53:29:a8:f1:76:cf:33:2a:
46:81:80:c2:33:d9:7a:41:af:6d:a9:1e:0d:3f:85:19:89:e4:
94:53:2c:b9:f7:d2:6c:0d:2b:72:88:8a:38:0a:89:6d:ea:e7:
c8:a9:65:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org