Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/0XpZxt1878bH0kckpeOuQs7LQ4I.roa
File: 0XpZxt1878bH0kckpeOuQs7LQ4I.roa (raw, json)
Hash identifier: cejSgLxiKaPASqhV3qrcIZuSOvPR5sfUsSqUz4tkG2I=
Subject key identifier: D1:7A:59:C6:DD:7C:EF:C6:C7:D2:47:24:A5:E3:AE:42:CE:CB:43:82
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018B4F8BFC8023EEA4A6DE7C967D03F3854C
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/0XpZxt1878bH0kckpeOuQs7LQ4I.roa
Signing time: Sat 21 Oct 2023 00:04:16 +0000
ROA not before: Sat 21 Oct 2023 00:04:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:9d00::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:2100::/40 maxlen: 40
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4f:8b:fc:80:23:ee:a4:a6:de:7c:96:7d:03:f3:85:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Oct 21 00:04:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d17a59c6dd7cefc6c7d24724a5e3ae42cecb4382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3f:1a:0f:db:d2:88:87:84:6b:b8:48:1b:cf:
1d:26:2f:fc:b5:1b:83:67:bd:4b:e7:b5:59:1c:bc:
aa:36:90:59:58:98:c8:cb:1a:d1:13:92:42:e2:6e:
a3:20:e9:33:36:92:a8:2b:da:85:86:84:d0:4e:1e:
1c:d5:a1:9b:f6:fe:e0:c0:5a:77:8b:e7:8a:69:08:
b7:7c:c0:b7:14:d9:a1:af:08:ad:ab:33:ac:d8:e7:
f6:03:06:2a:3b:be:1d:0e:fa:95:f3:a0:c0:a9:c7:
bc:eb:0b:fe:be:6c:47:60:95:6e:c2:ad:85:88:bf:
2f:11:12:1c:5e:7a:ff:5b:73:c9:e6:65:f7:9d:a7:
96:db:1e:04:70:55:cd:ab:6f:2e:64:cb:fa:51:a6:
e7:aa:3c:00:1a:06:67:11:54:ec:70:12:84:ef:95:
33:88:f3:c4:52:8c:f8:d4:4e:6f:2a:c8:02:d0:c3:
f8:fa:f0:d3:80:c9:b0:6e:19:71:1f:06:d1:46:a6:
9a:af:3c:2b:ce:18:7b:c7:3b:d1:1c:94:f2:ba:c8:
8e:0d:21:61:4f:ea:14:00:da:9a:e8:21:4c:60:fa:
12:da:bd:13:9a:db:f4:33:63:8b:cb:e1:81:18:3a:
74:f0:24:04:fe:ee:67:7d:cb:31:f9:ce:c9:5c:dd:
fd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7A:59:C6:DD:7C:EF:C6:C7:D2:47:24:A5:E3:AE:42:CE:CB:43:82
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/0XpZxt1878bH0kckpeOuQs7LQ4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2328::/48
2a0c:9a40:2400::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2dff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:9d00::/40
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
49:13:4b:77:21:06:d7:35:f7:6a:77:e5:de:58:a3:6e:cb:ed:
28:00:3b:fc:25:c5:f0:a4:8e:68:de:a0:f8:ac:22:8f:8c:f5:
9a:cc:c5:ee:78:0b:af:23:58:b2:55:c9:cb:f4:13:97:26:0d:
94:e5:be:03:24:ea:56:66:40:a0:ce:15:c5:02:10:80:3e:ac:
90:c0:13:b8:4c:7a:b1:bd:16:ec:51:59:46:e1:76:7d:69:c0:
7c:43:5c:4f:11:d1:1d:f8:a4:39:10:59:bd:53:f5:34:df:21:
61:3f:64:f1:5e:7f:55:ab:42:82:e1:22:0b:84:dc:8a:6d:38:
fd:21:6e:a7:29:73:80:72:12:0d:84:f4:87:50:8b:82:9d:b5:
ca:71:f1:71:6f:6f:d1:7c:82:ed:24:d7:c8:02:6c:7d:b9:96:
84:d4:16:e4:00:3f:8a:7d:78:fa:6b:7b:60:2d:1d:64:81:c9:
70:d6:86:01:b5:46:3c:08:98:c6:c3:49:37:be:01:13:72:1f:
39:fe:59:80:bc:9c:be:66:85:cc:e5:f7:82:5b:d8:52:06:cd:
ce:0a:fb:55:7e:d0:d7:24:b2:21:ac:c5:9b:2a:60:3a:45:e1:
ce:cb:21:cf:1e:6d:58:8f:9b:4a:47:18:b9:26:19:a7:08:99:
83:95:e3:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 23 10:45:31 2023 by rpki-client on console-ams.rpki-client.org