Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/jHEtoQSkDQDpYCHw8pQTXlg8Ke4.roa
File: jHEtoQSkDQDpYCHw8pQTXlg8Ke4.roa (raw, json)
Hash identifier: tomLWYXosWhed8ZA9W8bfou7HlrwA03MBW9d3L8DC+0=
Subject key identifier: 8C:71:2D:A1:04:A4:0D:00:E9:60:21:F0:F2:94:13:5E:58:3C:29:EE
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 0189552986F2261A3E9FEE97884206FAB4B6
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/jHEtoQSkDQDpYCHw8pQTXlg8Ke4.roa
Signing time: Fri 14 Jul 2023 16:08:52 +0000
ROA not before: Fri 14 Jul 2023 16:08:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58305
IP address blocks: 198.105.124.0/23 maxlen: 24
45.43.64.0/19 maxlen: 24
45.43.66.0/23 maxlen: 24
45.43.74.0/23 maxlen: 24
45.43.76.0/22 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
198.105.116.0/23 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
155.254.62.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
107.181.138.0/23 maxlen: 24
107.181.144.0/23 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
107.161.174.0/23 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
162.217.251.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:55:29:86:f2:26:1a:3e:9f:ee:97:88:42:06:fa:b4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jul 14 16:08:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c712da104a40d00e96021f0f294135e583c29ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:45:c6:1d:6a:36:dd:78:71:55:d0:21:3e:95:
53:4b:28:2a:65:77:e5:17:3e:9f:89:8c:9b:af:46:
2f:46:e3:f4:2f:0d:d7:22:7b:74:a5:4a:73:c2:97:
d1:d3:be:06:97:1b:7e:40:cf:9b:be:ba:a1:cd:99:
61:d3:9c:65:f0:95:36:ad:00:eb:15:5c:55:07:45:
39:4c:b3:81:2d:3a:0f:31:3d:30:02:2d:30:b8:bc:
7b:2a:79:dd:fc:b7:fe:43:ae:49:57:33:f2:cd:0a:
e7:4b:09:68:1a:5f:c1:ad:a0:2d:3e:18:5c:0a:6c:
7e:ab:c5:ec:d2:e1:90:a2:40:60:b6:73:02:a6:9e:
3c:88:75:4f:c1:42:51:3d:54:1b:01:50:02:be:fa:
35:e9:82:58:52:c6:d7:37:f1:19:73:18:3a:90:a0:
8a:16:be:af:d3:24:c0:3d:7e:4f:f2:73:b1:f2:df:
2c:d0:1f:5f:8f:8a:f1:2a:c0:e8:f7:e7:df:f6:2f:
3c:a2:b0:d9:ab:2d:1d:cb:93:f3:c3:b0:23:0f:2e:
55:96:93:65:06:ca:d7:1e:82:30:63:ac:b1:df:d2:
4e:aa:a6:bb:1a:49:56:8f:f3:67:c9:ba:c6:1b:be:
5c:66:14:bd:89:1d:90:ce:f5:19:b2:35:08:86:77:
5a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:71:2D:A1:04:A4:0D:00:E9:60:21:F0:F2:94:13:5E:58:3C:29:EE
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/jHEtoQSkDQDpYCHw8pQTXlg8Ke4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.168.0/21
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0/22
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
6d:62:77:60:2f:76:c2:7c:02:f9:e9:0b:68:5b:75:c7:a0:70:
a7:ea:3a:23:3d:22:2b:cc:5f:3a:ff:d7:7c:17:63:a7:a9:fa:
50:91:7b:45:5b:1a:bf:47:82:3f:26:db:00:16:56:3f:e5:25:
ee:ce:b8:36:47:cd:46:91:63:e5:d2:9e:7c:3b:09:54:8e:55:
7f:bc:eb:6f:da:a9:6e:fe:2e:70:b7:14:3f:1b:d2:33:02:63:
c6:6e:3c:f7:cc:de:94:4a:a1:be:9f:62:9a:04:8e:ff:04:8c:
d7:c2:77:d0:fa:c2:64:07:8f:83:5c:95:7b:14:12:b6:0b:84:
22:6e:df:b1:74:dc:be:fe:5a:4a:93:a2:cc:2d:b0:1b:58:1b:
90:b4:eb:44:29:24:11:0a:1c:e1:00:43:a1:53:95:1a:6d:a3:
32:f7:9f:71:91:14:b3:31:79:3a:16:f2:51:e6:eb:d5:6a:38:
c9:50:58:89:3d:5b:88:32:dd:b0:a2:98:24:17:6f:99:fd:f6:
05:cb:40:b3:41:7b:69:80:6d:d4:48:67:9c:1d:94:b5:55:a1:
ab:ff:86:cf:42:79:53:82:89:a2:4e:1d:3f:68:14:de:9c:4f:
04:a7:bb:95:5e:19:d0:b2:05:66:bb:29:5c:e7:34:e3:4c:24:
07:63:d4:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org