Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/qUPsllwYZHmZhskto0UYkD6LrAI.roa
File: qUPsllwYZHmZhskto0UYkD6LrAI.roa (raw, json)
Hash identifier: GMar7xDfgUNHSn9CLlaRT7afRDHsIVc+jPMiNR6tLnA=
Subject key identifier: A9:43:EC:96:5C:18:64:79:99:86:C9:2D:A3:45:18:90:3E:8B:AC:02
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018834BCBE43D47D13683C993BB3F36007E1
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/qUPsllwYZHmZhskto0UYkD6LrAI.roa
Signing time: Fri 19 May 2023 15:59:24 +0000
ROA not before: Fri 19 May 2023 15:59:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 40
2a0c:9a40:2200::/40 maxlen: 40
2a0c:9a40:2100::/40 maxlen: 40
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:34:bc:be:43:d4:7d:13:68:3c:99:3b:b3:f3:60:07:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: May 19 15:59:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a943ec965c1864799986c92da34518903e8bac02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fb:70:35:fc:14:25:89:79:0a:5e:25:9a:89:
10:ea:9a:b4:4a:8a:43:f5:39:5b:da:43:8f:63:59:
6e:31:67:8c:8c:4f:35:35:f9:dd:85:bf:be:42:c2:
90:a8:89:1c:5f:07:de:82:aa:7a:04:99:d3:8b:e8:
04:28:43:37:6b:55:3d:0b:90:81:3c:79:bb:b9:66:
6e:00:be:e1:c5:36:0d:65:f3:8a:61:ea:26:d1:21:
6c:0d:dd:fa:47:42:09:95:4c:d0:21:d2:cf:ec:ee:
90:06:31:b8:38:54:34:82:65:ff:09:df:ca:f2:59:
07:75:18:34:23:f3:38:d5:ba:64:f7:3d:74:f8:10:
27:a7:ac:07:c6:63:f6:e9:24:90:6a:87:b2:50:94:
fc:c1:a3:55:06:18:78:f8:99:43:d9:29:72:7c:0f:
ce:c7:71:58:d4:8f:8b:f8:96:db:ee:eb:7d:56:51:
a6:21:38:5e:b9:50:23:bb:35:9a:26:9d:be:64:a4:
3a:4c:6d:c8:4e:e5:54:ef:03:4a:08:a2:fe:5f:4d:
86:74:97:81:da:30:82:3c:d4:e9:c6:65:a8:48:1c:
54:d6:1e:d6:68:bc:37:f4:69:7d:a3:63:92:a0:4c:
73:0e:83:e0:e8:c4:7d:eb:e0:84:1e:e2:5a:b1:74:
9c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:43:EC:96:5C:18:64:79:99:86:C9:2D:A3:45:18:90:3E:8B:AC:02
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/qUPsllwYZHmZhskto0UYkD6LrAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2400::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::/40
2a0c:9a40:2c00::/39
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
3b:38:71:18:6d:2b:61:e7:41:70:e8:e7:c4:c1:ba:b4:81:f6:
fd:52:c4:38:25:04:ec:db:3d:80:03:fb:68:32:a1:0c:52:21:
ce:45:eb:67:55:46:f8:55:d5:5c:3e:bd:cd:18:b5:61:9f:50:
b4:94:42:b3:1c:31:5e:48:79:f0:a1:80:03:7a:01:a8:5e:8d:
ae:ab:cf:fb:87:75:e6:39:db:5c:f2:d0:a0:db:4a:53:01:79:
4e:24:a7:8d:4d:41:2f:3d:26:04:53:1d:42:13:de:54:13:84:
c3:03:1b:d8:6b:60:ae:ce:06:17:75:60:ff:1b:e2:61:0a:e6:
27:7d:62:62:38:fe:84:c4:37:ee:9c:0b:9f:96:53:86:43:77:
9e:5a:d4:83:84:8a:7a:a6:43:99:c5:01:05:6a:7d:06:d7:af:
cd:85:46:82:fb:d6:58:3c:45:bb:a3:ff:07:ea:d5:69:0f:31:
ed:a3:16:22:d7:c2:c6:07:62:83:68:83:31:bb:5b:bb:c5:73:
55:04:37:1e:12:81:f1:18:52:c9:cc:d2:85:1b:05:b1:91:ff:
80:62:aa:15:9d:e7:e9:11:5c:15:a4:1b:20:8d:2a:e4:0e:55:
17:4c:18:be:0d:9b:f5:11:97:a0:99:8d:74:83:0a:3b:5f:4d:
86:7c:e0:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 25 21:59:20 2023 by rpki-client on console-fra.rpki-client.org