Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fyzC7ZcXtOk9bRGvG5GAflxRP1M.roa
File: fyzC7ZcXtOk9bRGvG5GAflxRP1M.roa (raw, json)
Hash identifier: 2FEvcOI0PhbM/27tgKnu30BJjLW7KmsgRVUYkPFGrtA=
Subject key identifier: 7F:2C:C2:ED:97:17:B4:E9:3D:6D:11:AF:1B:91:80:7E:5C:51:3F:53
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018C43EA9078C2BB53C166966425D1C3EF9F
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fyzC7ZcXtOk9bRGvG5GAflxRP1M.roa
Signing time: Thu 07 Dec 2023 10:54:55 +0000
ROA not before: Thu 07 Dec 2023 10:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:43:ea:90:78:c2:bb:53:c1:66:96:64:25:d1:c3:ef:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 7 10:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f2cc2ed9717b4e93d6d11af1b91807e5c513f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:e9:94:2b:20:19:9a:75:ae:86:08:19:b6:
f1:c6:59:1b:1b:b0:05:2b:1f:24:5f:f8:db:4f:fb:
7a:ea:f4:1a:a1:60:04:a5:d1:c3:a8:e4:e1:ed:40:
c6:c5:23:20:44:f0:55:84:f2:05:8f:ab:9a:79:96:
93:84:10:cf:30:e8:85:d4:2d:52:ba:f5:31:64:50:
9a:dc:78:08:7d:bb:54:a9:7e:53:8c:a9:8c:12:a4:
58:ac:8a:93:88:27:87:b1:21:f0:01:55:9b:3a:89:
fe:2c:d8:5d:de:ed:7d:f6:52:fc:17:be:56:a5:af:
7f:43:9e:6e:f7:05:3b:d5:f5:e8:bf:14:26:d3:a1:
a5:66:a3:7f:91:d9:f0:5c:a7:bd:2b:08:12:e6:30:
df:46:fe:19:57:70:81:62:9e:57:f0:6a:2e:bc:a8:
99:78:a2:5c:14:63:0a:c2:f4:7d:3f:bb:43:e2:d7:
fb:a6:1a:8f:5e:72:27:b6:9f:ae:bb:e4:2b:76:df:
0a:74:77:0a:d6:cd:6f:37:7e:aa:b5:06:3b:f9:a2:
fb:53:42:68:15:97:5a:a5:8c:90:69:a5:d9:18:6d:
1a:cd:c8:1f:83:4d:3c:bf:97:f2:2f:02:46:94:44:
9a:d4:c8:e9:60:1a:1d:f8:e4:5c:03:66:94:a0:5f:
d3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2C:C2:ED:97:17:B4:E9:3D:6D:11:AF:1B:91:80:7E:5C:51:3F:53
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/fyzC7ZcXtOk9bRGvG5GAflxRP1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2328::/48
2a0c:9a40:2400::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2dff:ffff:ffff:ffff:ffff:ffff
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
72:3b:b4:ce:9d:1d:27:31:0a:ef:a5:e8:af:de:8f:92:07:75:
85:21:0f:71:1c:22:da:b1:d0:63:a7:bc:9c:16:db:de:b6:4a:
23:53:34:4c:06:5e:ae:9f:ce:e8:79:ca:69:d3:4e:1a:dc:1f:
e5:b1:83:27:60:79:39:fb:5c:ca:97:ca:c2:df:9d:2d:60:0a:
75:23:71:5d:9d:34:5a:6b:2e:e0:e9:8c:19:25:53:ff:22:51:
de:b9:20:6b:d6:20:14:78:a4:81:af:22:cb:3a:ab:bc:15:ed:
07:92:ea:aa:ab:aa:b6:f3:03:5b:39:cf:5b:87:15:4e:71:b1:
17:49:26:cd:ba:ed:5f:cc:a6:3a:a7:fa:2d:f1:1d:1f:d5:0b:
ff:11:d7:c5:5b:1d:04:9f:38:2e:9f:1c:d6:9a:3f:d7:17:ba:
14:53:31:1a:35:16:a5:9d:bd:fc:bc:7d:13:6b:fa:8a:cc:47:
52:37:7f:1e:52:62:55:97:c6:1b:31:ff:1e:32:8a:4a:ca:85:
b7:0d:66:e2:e0:ef:43:03:06:11:33:7f:08:ff:4a:2a:54:b2:
e1:7b:02:4b:c8:c3:21:eb:29:51:32:13:c8:3d:0b:fd:0f:81:
a3:de:de:86:e1:70:c2:7a:ab:7a:b7:a6:ae:d6:9e:32:8e:8e:
ea:ad:a1:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:36:57 2024 by rpki-client on console-fra.rpki-client.org