Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UNoY9Brm2Je0lRV5gwdpEy6bE9g.roa
File: UNoY9Brm2Je0lRV5gwdpEy6bE9g.roa (raw, json)
Hash identifier: BMeU8RQ0hj1PBPTM1UM5pYhV7hq9ssVqOWXTISHJQuE=
Subject key identifier: 50:DA:18:F4:1A:E6:D8:97:B4:95:15:79:83:07:69:13:2E:9B:13:D8
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018A2120048336191AE2535E714FF07D1F2F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UNoY9Brm2Je0lRV5gwdpEy6bE9g.roa
Signing time: Wed 23 Aug 2023 06:41:00 +0000
ROA not before: Wed 23 Aug 2023 06:41:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 31.169.124.0/22 maxlen: 24
87.120.196.0/24 maxlen: 24
87.120.205.0/24 maxlen: 24
87.120.108.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
185.207.14.0/23 maxlen: 24
87.121.47.0/24 maxlen: 24
185.218.137.0/24 maxlen: 24
87.120.219.0/24 maxlen: 24
87.120.216.0/24 maxlen: 24
87.120.222.0/24 maxlen: 24
85.208.139.0/24 maxlen: 24
109.206.236.0/24 maxlen: 24
193.8.184.0/22 maxlen: 24
194.113.36.0/22 maxlen: 24
212.87.220.0/22 maxlen: 24
212.87.222.0/23 maxlen: 24
83.143.113.0/24 maxlen: 24
193.168.196.0/22 maxlen: 24
45.128.97.0/24 maxlen: 24
45.128.99.0/24 maxlen: 24
193.148.56.0/22 maxlen: 24
45.149.235.0/24 maxlen: 24
185.252.179.0/24 maxlen: 24
87.121.98.0/24 maxlen: 24
45.84.88.0/24 maxlen: 24
93.123.30.0/23 maxlen: 24
45.89.244.0/24 maxlen: 24
45.95.0.0/22 maxlen: 24
45.88.66.0/24 maxlen: 24
87.120.88.0/24 maxlen: 24
94.125.100.0/22 maxlen: 24
87.120.92.0/24 maxlen: 24
45.91.193.0/24 maxlen: 24
31.13.247.0/24 maxlen: 24
87.120.36.0/24 maxlen: 24
87.121.216.0/22 maxlen: 24
5.253.56.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:20:04:83:36:19:1a:e2:53:5e:71:4f:f0:7d:1f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 23 06:41:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50da18f41ae6d897b4951579830769132e9b13d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:19:bc:2a:59:6e:6c:4c:ea:14:58:37:cb:53:
e1:22:8f:19:14:9e:09:83:fb:55:c7:9f:49:84:3a:
1a:3d:4b:5d:ba:cf:d4:91:45:92:39:69:b1:06:28:
31:11:f8:ea:67:0c:46:c4:75:20:f1:06:b2:bf:f6:
d3:f5:cd:d4:b0:ab:44:32:c3:5b:0d:38:06:cf:f1:
ca:84:a1:be:36:b3:18:58:de:b0:e5:0f:e8:63:ba:
a3:ff:05:be:b2:22:85:71:1a:e8:f5:97:b9:d8:27:
eb:1d:eb:27:b3:c1:f4:02:4d:a3:8e:ff:d8:b6:89:
5d:e2:65:50:27:aa:d7:a0:37:11:3a:a3:79:a0:00:
b5:1a:49:1a:22:1c:d5:d9:c3:81:c7:27:04:7c:97:
3a:6d:5f:2f:2e:97:2d:bc:76:95:5a:32:fb:03:0d:
2b:71:e3:f2:fe:dc:01:14:4d:a8:8c:d8:08:c0:98:
00:7b:78:22:da:ec:55:08:d9:ce:23:b5:4e:59:7f:
90:7d:cc:7e:06:23:8e:09:76:1b:74:39:d3:c2:d2:
cc:92:a6:7e:27:6a:c6:0f:b8:d8:28:66:0a:f5:cf:
d5:e3:15:d1:b5:9b:3b:c9:fa:5c:ac:5b:d7:6c:1b:
3b:af:b6:67:34:2e:48:fc:ca:f7:85:3b:70:5c:c3:
e4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:DA:18:F4:1A:E6:D8:97:B4:95:15:79:83:07:69:13:2E:9B:13:D8
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/UNoY9Brm2Je0lRV5gwdpEy6bE9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.56.0/22
31.13.247.0/24
31.169.124.0/22
45.84.88.0/24
45.88.66.0/24
45.89.244.0/24
45.91.193.0/24
45.95.0.0/22
45.128.97.0/24
45.128.99.0/24
45.149.235.0/24
83.143.113.0/24
85.208.139.0/24
87.120.36.0/24
87.120.88.0/24
87.120.92.0/24
87.120.108.0/24
87.120.196.0/24
87.120.205.0/24
87.120.216.0/24
87.120.219.0/24
87.120.222.0/24
87.121.47.0/24
87.121.98.0/24
87.121.216.0/22
93.123.30.0/23
94.125.100.0/22
109.206.236.0/24
109.206.242.0/24
185.207.14.0/23
185.218.137.0/24
185.246.222.0/24
185.252.179.0/24
193.8.184.0/22
193.148.56.0/22
193.168.196.0/22
194.113.36.0/22
212.87.220.0/22
Signature Algorithm: sha256WithRSAEncryption
78:b0:02:0d:cd:8f:39:9d:5a:9d:d2:60:98:9b:27:27:28:0d:
15:f8:b5:5a:5f:ad:0e:4f:f2:54:fd:f0:5f:34:d8:cc:f2:f4:
32:5d:74:18:e5:8f:80:4d:77:ac:78:3a:ca:40:b5:17:da:63:
3c:90:30:90:5a:a5:35:ce:e7:67:5f:a6:c4:56:86:07:88:93:
07:a2:e0:0a:4c:81:d1:b4:22:78:e8:32:4f:84:3c:66:5e:f3:
cc:e4:ee:f5:9a:30:1e:04:1a:45:8d:62:79:ca:8d:e9:ac:37:
38:29:46:4c:49:d7:b2:f2:db:51:2f:96:59:c7:15:b5:97:66:
d6:03:01:d1:9a:e0:5d:e3:71:b1:1c:62:0e:50:a5:39:2e:fe:
0f:16:4c:d6:d7:82:83:1d:bd:5f:86:42:fb:cb:ee:f8:a7:99:
44:90:ef:a2:c8:96:61:a1:95:ae:c4:c6:de:fc:d7:39:d9:6e:
7b:53:f7:29:4f:95:3f:43:c6:d7:7d:e3:88:e5:de:08:45:36:
04:20:ad:62:47:8d:0c:56:c0:0c:3a:68:fd:0f:6d:24:fb:d0:
3e:27:69:e4:dc:6e:0a:e4:0a:e3:1b:ff:65:0d:da:98:80:46:
c0:fe:2a:14:10:3d:29:f2:a3:b6:0c:72:2d:51:17:74:7e:3e:
1a:b7:5c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 10:09:33 2023 by rpki-client on console-ams.rpki-client.org