Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/IDgKXG-EnX0a8VBi5_Iviblhu_g.roa
File: IDgKXG-EnX0a8VBi5_Iviblhu_g.roa (raw, json)
Hash identifier: lo8HF0plev+qO6Ck5fS7tsbgGJhbcr/ramxaAkb0w5s=
Subject key identifier: 20:38:0A:5C:6F:84:9D:7D:1A:F1:50:62:E7:F2:2F:89:B9:61:BB:F8
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0188C03082DE712692D31ECBA2E3A7586968
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/IDgKXG-EnX0a8VBi5_Iviblhu_g.roa
Signing time: Thu 15 Jun 2023 17:53:04 +0000
ROA not before: Thu 15 Jun 2023 17:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58305
IP address blocks: 198.105.124.0/23 maxlen: 24
45.43.64.0/19 maxlen: 24
45.43.74.0/23 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
198.105.116.0/23 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.165.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.163.0/24 maxlen: 24
107.161.164.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
107.161.174.0/23 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
162.217.251.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:1111::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a07:9942:39d6::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c0:30:82:de:71:26:92:d3:1e:cb:a2:e3:a7:58:69:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jun 15 17:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20380a5c6f849d7d1af15062e7f22f89b961bbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:77:37:76:6f:28:df:de:4c:06:40:16:6a:12:
c6:fd:8a:a8:9c:14:a5:17:af:87:5f:4b:9b:8c:25:
56:f0:3c:58:88:05:cb:18:05:58:97:a8:00:1f:e5:
1c:b9:4b:d2:fc:79:7a:67:5b:25:92:b5:fc:7c:32:
a4:0e:c4:a0:cb:1a:28:7b:ec:d2:86:3e:45:f8:c0:
b7:40:d7:65:d2:3b:4c:0e:f2:f5:ad:38:a6:25:44:
91:f5:e5:ab:ed:78:79:2f:a2:25:3f:39:72:c4:ae:
53:f9:8d:37:d2:f8:c9:6c:5e:8c:f9:e1:6f:ac:bb:
2b:71:c5:26:10:2e:55:11:67:72:82:16:44:06:3c:
35:8a:a4:8f:ad:8c:6f:9f:7e:a1:d9:61:64:8b:06:
96:28:82:66:52:6d:83:54:d3:e0:be:29:65:f8:7b:
b2:c0:bf:18:1c:a5:f7:bc:b4:d5:bf:44:a7:f9:5f:
fb:ad:3d:dd:a3:47:5f:d6:05:09:75:da:84:63:22:
17:0a:8c:2f:1f:e7:65:6b:1f:15:f9:78:7b:90:61:
d3:6a:94:d3:a6:ea:bf:bd:13:1f:74:e8:28:7d:ef:
fa:d4:83:fe:a0:82:70:cb:0f:4e:cc:6c:47:ac:03:
5b:53:d3:cb:00:0d:ef:97:fb:9f:ed:ef:27:8a:2f:
ef:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:38:0A:5C:6F:84:9D:7D:1A:F1:50:62:E7:F2:2F:89:B9:61:BB:F8
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/IDgKXG-EnX0a8VBi5_Iviblhu_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.165.255
107.161.168.0/21
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0/22
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
72:81:1b:b9:88:45:46:d7:04:89:ba:1b:a0:b3:ff:20:54:6b:
68:c3:2b:03:d4:38:9f:c8:2f:8e:18:d3:72:c1:70:73:bd:a1:
70:33:56:6b:de:dc:40:5f:32:11:f0:f3:5c:69:e3:93:4c:cc:
3e:c2:47:21:d0:f2:be:93:97:ee:82:6c:70:24:79:86:94:7f:
f5:be:b8:7a:41:6f:17:c7:ca:0b:00:2f:cc:1b:37:87:df:b2:
7b:96:b7:63:85:d5:ea:33:15:14:c8:93:da:a3:0f:59:05:6b:
f9:de:fa:a3:e7:bd:bc:ca:f1:df:40:c6:5a:a0:d8:3d:24:39:
f5:08:54:85:54:9a:da:f8:da:d0:05:c9:c7:ce:4e:46:5a:9d:
79:94:3a:15:1a:23:c6:1a:22:2e:b3:d6:1c:d6:36:1c:39:cd:
a3:13:c4:b2:6f:6f:c0:e7:b1:ab:7a:4f:fb:7f:0a:45:59:b7:
1d:65:f9:7d:ce:47:fa:3a:58:96:ff:e7:9d:24:5c:a2:5c:3a:
35:1b:82:77:19:04:df:1c:b0:ce:e8:d4:56:4b:94:03:eb:07:
c5:c5:00:d1:7e:3a:1a:80:e5:f3:90:0f:12:be:e3:5c:12:b6:
f0:d7:fe:f1:0f:65:9e:46:b0:2b:a0:78:85:fc:87:b8:7a:19:
21:46:7e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org