Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ojo6VkvbmJmurRD85fb6-MGgcMc.roa
File: ojo6VkvbmJmurRD85fb6-MGgcMc.roa (raw, json)
Hash identifier: q53epv4bp+T/R2eXhb50Bb9BBcsIKdYndRmM3SF1MME=
Subject key identifier: A2:3A:3A:56:4B:DB:98:99:AE:AD:10:FC:E5:F6:FA:F8:C1:A0:70:C7
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018B3D5311BD97A680E2BE13A8E6182C990C
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ojo6VkvbmJmurRD85fb6-MGgcMc.roa
Signing time: Tue 17 Oct 2023 11:08:55 +0000
ROA not before: Tue 17 Oct 2023 11:08:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:2100::/40 maxlen: 40
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:53:11:bd:97:a6:80:e2:be:13:a8:e6:18:2c:99:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Oct 17 11:08:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a23a3a564bdb9899aead10fce5f6faf8c1a070c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f4:07:0d:1f:63:2b:90:9e:6e:e7:1c:aa:a6:
1f:90:80:91:38:82:35:69:ea:51:e5:89:28:8b:42:
bc:b4:c5:ba:da:35:85:23:8b:b1:7f:72:65:4b:8c:
96:82:6c:cd:a8:8d:4f:c8:a4:33:71:3c:b0:37:b8:
2e:7f:e8:db:ee:c9:1c:c8:0d:51:c6:18:8a:cf:fa:
fe:89:39:81:c4:5d:d0:f2:43:3d:f0:bb:a6:fc:42:
42:6e:34:4d:e3:28:16:bc:2b:73:b1:ee:a3:49:5f:
31:93:d7:8d:c7:2c:22:b4:4d:2a:30:2d:bc:36:d2:
0f:a6:76:4f:bd:71:10:e8:ba:36:b7:51:82:9a:89:
00:f0:7e:0a:7a:4d:8b:8e:99:88:86:d1:7c:10:e7:
b8:fe:95:62:27:62:fb:a9:10:68:e5:cd:37:65:0e:
f0:d4:24:57:22:11:4b:8c:54:7b:57:c1:dc:21:db:
95:b7:b5:a0:71:78:63:5f:84:95:63:80:e5:09:9d:
0f:9b:78:4f:1e:d2:b6:a6:92:4f:b3:1e:e1:d9:e6:
4a:90:35:96:ee:30:1a:21:38:25:db:37:c5:28:92:
99:f6:09:56:68:e2:a2:19:bf:b8:1e:df:b0:f6:6e:
c5:98:88:38:d2:0f:ff:a4:11:9e:78:de:e0:fe:c7:
a6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3A:3A:56:4B:DB:98:99:AE:AD:10:FC:E5:F6:FA:F8:C1:A0:70:C7
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/ojo6VkvbmJmurRD85fb6-MGgcMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2328::/48
2a0c:9a40:2400::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2dff:ffff:ffff:ffff:ffff:ffff
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
35:8d:48:df:0b:e7:a7:a8:63:92:1f:a7:fe:85:d0:7a:20:df:
db:07:2a:6e:83:0d:a1:ab:10:45:94:df:52:ce:d8:61:5f:b9:
3d:3f:50:af:bd:db:7d:39:89:a6:c5:9e:97:f0:66:bd:c4:c4:
fa:16:14:de:86:b7:fa:82:e1:69:8b:e3:ae:31:20:01:c5:56:
cf:d9:9d:15:9d:b4:cb:21:56:0d:6c:93:72:ec:fa:81:a9:de:
9b:76:e9:53:f6:73:78:aa:dd:48:b8:a1:a2:c2:99:d4:3f:f9:
f6:bd:1a:70:72:cf:6d:4c:bf:48:fd:8d:6c:c4:ce:79:5d:5a:
ae:51:57:c3:83:d1:39:7b:e2:34:a7:a7:ac:b3:cd:ca:a2:48:
95:19:ab:48:cc:08:0a:37:0a:5e:f8:23:1f:3e:24:f9:be:12:
b0:1e:75:a0:c5:0c:21:69:52:90:79:04:95:e9:37:7c:b0:a7:
ea:1e:91:60:a2:d8:1a:e7:f6:dc:16:7d:65:72:1b:8e:49:e8:
b5:10:a2:be:89:b4:e7:66:74:5a:c4:02:d6:1e:3c:ec:33:49:
1a:9a:39:16:ce:60:7f:e1:90:9d:d5:d6:58:57:1a:9a:74:c4:
9e:d1:7f:c0:ac:54:2a:b4:51:45:92:37:ab:21:2b:88:78:45:
f0:1a:44:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 21 00:37:30 2023 by rpki-client on console-ams.rpki-client.org