Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/SVgbId8G2keOTd9PVwo2qmnAnEY.roa
File: SVgbId8G2keOTd9PVwo2qmnAnEY.roa (raw, json)
Hash identifier: iJue4pn+q2JB6vMw5mnGvqJl7y/8z7v1EzqOQ5TYeKg=
Subject key identifier: 49:58:1B:21:DF:06:DA:47:8E:4D:DF:4F:57:0A:36:AA:69:C0:9C:46
Certificate issuer: /CN=297c508d23b38315bbf45b726d22050a46127b8c
Certificate serial: 018C7D33A73FF3A69F986B3EC12F9DDF55F1
Authority key identifier: 29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/SVgbId8G2keOTd9PVwo2qmnAnEY.roa
Signing time: Mon 18 Dec 2023 13:53:06 +0000
ROA not before: Mon 18 Dec 2023 13:53:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34177
IP address blocks: 185.132.116.0/22 maxlen: 22
83.142.144.0/21 maxlen: 21
91.90.96.0/21 maxlen: 21
62.193.32.0/19 maxlen: 19
82.210.0.0/19 maxlen: 19
78.31.40.0/21 maxlen: 21
83.118.192.0/19 maxlen: 19
80.245.16.0/20 maxlen: 20
178.16.160.0/20 maxlen: 20
176.57.32.0/21 maxlen: 21
95.141.96.0/20 maxlen: 20
194.213.124.0/23 maxlen: 23
82.210.32.0/19 maxlen: 19
94.228.176.0/20 maxlen: 20
185.213.160.0/22 maxlen: 22
62.244.112.0/22 maxlen: 22
5.133.68.0/22 maxlen: 22
195.200.160.0/19 maxlen: 19
62.244.117.0/24 maxlen: 24
62.244.119.0/24 maxlen: 24
212.106.96.0/19 maxlen: 19
185.18.208.0/22 maxlen: 22
195.15.128.0/18 maxlen: 18
185.5.108.0/22 maxlen: 22
185.81.52.0/22 maxlen: 22
62.244.84.0/22 maxlen: 22
62.244.88.0/23 maxlen: 23
62.244.86.0/23 maxlen: 23
62.244.89.0/24 maxlen: 24
62.244.96.0/22 maxlen: 22
185.19.48.0/22 maxlen: 22
195.49.132.0/22 maxlen: 22
159.180.224.0/19 maxlen: 19
185.4.44.0/22 maxlen: 22
78.109.240.0/20 maxlen: 20
185.41.4.0/22 maxlen: 22
2001:ab8::/29 maxlen: 32
2a01:4e00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7d:33:a7:3f:f3:a6:9f:98:6b:3e:c1:2f:9d:df:55:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297c508d23b38315bbf45b726d22050a46127b8c
Validity
Not Before: Dec 18 13:53:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49581b21df06da478e4ddf4f570a36aa69c09c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3a:f4:d5:f3:fc:20:6e:c0:b1:10:3f:24:9f:
e8:d9:3e:33:86:2a:2a:3b:08:85:22:37:61:f6:59:
e0:71:26:6e:73:3c:dd:01:33:c7:95:d2:c7:0e:c2:
3b:37:bb:bb:04:bb:8e:d8:5e:19:29:42:fe:8b:0e:
9e:69:bd:8f:33:a7:6b:e9:8b:c2:b9:61:60:f4:26:
db:35:ff:98:d5:99:57:69:9b:01:49:12:d3:41:8a:
10:d5:05:3e:d8:de:b3:5f:3a:61:bb:be:29:3e:c5:
d3:03:8b:e9:ec:e0:20:91:f7:52:94:ed:7b:f8:b7:
db:a2:ac:60:81:2c:bf:d4:53:a0:cc:e7:e5:b3:34:
a5:43:b0:5b:84:75:61:1b:cf:75:71:6e:47:44:5f:
d4:f7:f6:61:d6:75:cd:32:52:f7:70:aa:f9:52:a9:
a0:67:fc:50:07:7f:98:9f:a4:59:4f:46:68:fd:c6:
f3:8f:69:ec:4d:1e:e7:1d:f0:5a:7c:6d:18:c2:b3:
73:ac:ba:27:ea:76:25:d2:7e:2f:c1:54:24:88:94:
fa:0a:b9:45:b9:7e:0f:13:e4:47:a1:e3:4f:df:f1:
cd:16:44:ce:57:f2:df:15:97:8d:0c:c2:37:c5:eb:
1b:f2:83:cf:f5:a4:1e:60:84:99:d7:e4:b4:35:93:
12:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:58:1B:21:DF:06:DA:47:8E:4D:DF:4F:57:0A:36:AA:69:C0:9C:46
X509v3 Authority Key Identifier:
keyid:29:7C:50:8D:23:B3:83:15:BB:F4:5B:72:6D:22:05:0A:46:12:7B:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXxQjSOzgxW79FtybSIFCkYSe4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/SVgbId8G2keOTd9PVwo2qmnAnEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/8abeed-f53b-4776-a8e2-36e9a79bd950/1/KXxQjSOzgxW79FtybSIFCkYSe4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.68.0/22
62.193.32.0/19
62.244.84.0-62.244.89.255
62.244.96.0/22
62.244.112.0/22
62.244.117.0/24
62.244.119.0/24
78.31.40.0/21
78.109.240.0/20
80.245.16.0/20
82.210.0.0/18
83.118.192.0/19
83.142.144.0/21
91.90.96.0/21
94.228.176.0/20
95.141.96.0/20
159.180.224.0/19
176.57.32.0/21
178.16.160.0/20
185.4.44.0/22
185.5.108.0/22
185.18.208.0/22
185.19.48.0/22
185.41.4.0/22
185.81.52.0/22
185.132.116.0/22
185.213.160.0/22
194.213.124.0/23
195.15.128.0/18
195.49.132.0/22
195.200.160.0/19
212.106.96.0/19
IPv6:
2001:ab8::/29
2a01:4e00::/32
Signature Algorithm: sha256WithRSAEncryption
19:c6:58:02:6a:45:16:ab:a4:b5:7f:6d:9e:56:47:b6:ef:ee:
0e:c2:45:c9:28:bc:3b:26:7d:ee:97:ff:0e:1a:39:ff:e2:dc:
ea:6d:c8:11:ea:f7:b1:f3:23:fe:b0:cb:81:bd:9a:b7:3d:bf:
35:38:c0:49:33:ee:c6:e8:10:fd:4a:e5:9b:54:20:72:88:3c:
1c:ff:3b:cc:24:00:77:1c:b4:bd:93:25:69:aa:b7:7b:d5:06:
d3:99:99:4a:c5:e0:21:40:6d:a4:ab:8c:7f:1f:d9:eb:d2:9f:
7f:87:5c:b1:6a:de:a0:1f:c4:6f:a4:3f:32:9f:c2:3d:b1:47:
94:5a:e4:53:02:da:6a:ab:ae:8a:f6:8d:82:53:e8:6b:46:26:
b0:07:10:ec:eb:a3:fa:e3:54:c0:2c:57:08:07:42:2e:30:e5:
42:f1:06:d5:2f:eb:9f:b2:94:3c:0e:72:7a:44:8e:6e:58:68:
78:8c:8a:09:79:59:cd:1a:ba:4f:b9:24:29:03:d9:2a:79:d3:
46:9a:c1:ea:be:f8:bb:2d:4f:92:92:3e:93:69:16:1f:be:7d:
a6:c3:4f:37:a0:1b:b3:3f:e6:56:98:72:e8:15:13:50:8d:d5:
c7:67:4d:e2:c2:77:bf:39:ce:d8:3c:df:d2:44:df:51:4f:fc:
1e:17:c6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:27 2024 by rpki-client on console-fra.rpki-client.org