Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/alhmgmKckK0n006cbc4aTL43XH8.roa
File: alhmgmKckK0n006cbc4aTL43XH8.roa (raw, json)
Hash identifier: +UoHyMDFizwWLQNx33esbWbtl1Xs2JzJQS/d5AqM+E8=
Subject key identifier: 6A:58:66:82:62:9C:90:AD:27:D3:4E:9C:6D:CE:1A:4C:BE:37:5C:7F
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 01894B88E9CADF909CB5DF4D8C54387406E0
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/alhmgmKckK0n006cbc4aTL43XH8.roa
Signing time: Wed 12 Jul 2023 19:16:51 +0000
ROA not before: Wed 12 Jul 2023 19:16:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58305
IP address blocks: 198.105.124.0/23 maxlen: 24
45.43.64.0/19 maxlen: 24
45.43.74.0/23 maxlen: 24
45.43.80.0/24 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
198.105.116.0/23 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
107.161.174.0/23 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
162.217.251.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:88:e9:ca:df:90:9c:b5:df:4d:8c:54:38:74:06:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jul 12 19:16:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a586682629c90ad27d34e9c6dce1a4cbe375c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:88:e2:ed:63:01:7e:4f:ab:60:64:0c:4c:cc:
6d:4a:76:d6:b3:86:0d:92:54:4d:2c:79:b7:10:8a:
0e:e1:13:c1:a5:cc:87:fb:79:c6:ec:08:e2:8c:a2:
7c:64:7f:b2:8f:1e:68:44:b2:4a:65:2d:b4:52:d4:
54:3a:53:8b:77:85:fb:29:b0:ae:04:a9:d0:c1:ba:
39:2a:8a:27:99:72:3b:61:de:28:19:2b:91:74:12:
c5:69:a5:25:ca:ae:ab:ce:54:4b:ad:b5:ba:7e:67:
f5:ba:74:60:29:4f:91:b0:37:db:a6:a1:ea:3c:ae:
ab:73:09:0f:7f:ba:2a:9c:c2:b1:a0:bb:2e:5e:cd:
00:79:0b:52:03:6e:44:7a:75:7b:e6:fb:97:f6:a5:
fa:83:e9:c1:ff:3a:60:03:02:72:83:29:96:df:80:
5a:7e:b4:fc:15:1a:5e:90:ea:09:35:71:a3:d0:3c:
e0:bc:31:0a:0c:19:ad:5a:1b:99:bd:08:29:82:8b:
0c:7d:79:0d:17:2c:80:18:92:5b:4e:a2:35:d3:22:
48:b1:c2:93:f3:f0:31:30:da:f9:68:09:59:ee:12:
11:aa:6d:f6:f5:ce:ae:01:0b:6b:12:21:55:71:1f:
f0:69:7b:1d:a7:78:13:5c:ec:29:11:40:6e:88:3b:
02:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:58:66:82:62:9C:90:AD:27:D3:4E:9C:6D:CE:1A:4C:BE:37:5C:7F
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/alhmgmKckK0n006cbc4aTL43XH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.168.0/21
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0/22
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
8d:ec:3b:c0:83:3c:7e:e1:2b:8e:d9:9d:99:ff:32:f8:35:cc:
51:49:30:85:2a:d2:2a:69:bd:a5:30:99:af:2a:d6:81:f6:9e:
ee:c8:ec:fa:94:ac:d2:91:24:27:dc:ea:ba:e4:d6:20:dd:54:
9b:64:0c:65:8d:56:bf:40:6c:44:c4:27:2a:72:63:34:75:63:
26:75:0e:ea:7d:a9:78:8c:3e:6c:af:f0:2b:00:54:d1:99:57:
a9:34:79:b4:98:08:ed:d9:f3:f1:5e:27:d6:cf:87:c5:f3:36:
74:33:f8:0e:bb:74:d0:2b:b6:b9:12:b1:79:82:8d:61:65:2d:
5b:7a:0d:58:11:0f:da:c4:4b:16:04:1f:5c:ef:87:71:68:06:
0c:27:93:a7:81:56:63:27:56:42:8b:b2:c6:dc:9d:31:22:48:
eb:de:2c:9a:e3:f5:47:c6:56:a8:2a:b6:3b:4c:5a:e5:41:38:
46:95:c4:3f:b3:2a:59:2a:0c:b2:b4:09:44:b7:a5:5f:6f:57:
db:9b:d5:3d:a4:a5:ed:5f:bc:10:64:45:67:48:ec:3c:d6:7d:
6c:21:23:24:12:1d:1c:33:08:3b:73:d4:0b:a3:ec:6b:33:2c:
36:08:18:e4:b5:a7:b5:74:21:73:2b:77:17:21:70:8d:0f:47:
66:30:c1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-fra.rpki-client.org