Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/CIU3sVX9SXuhMHzXe2laBwIKt5Y.roa
File: CIU3sVX9SXuhMHzXe2laBwIKt5Y.roa (raw, json)
Hash identifier: aNoCSuc2Hd+jUA9d+fqUFe4XYS1lxLa9yEi5xFcWcYE=
Subject key identifier: 08:85:37:B1:55:FD:49:7B:A1:30:7C:D7:7B:69:5A:07:02:0A:B7:96
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 01857190A53A3E73C229FCD0ACB23A88715B
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/CIU3sVX9SXuhMHzXe2laBwIKt5Y.roa
Signing time: Mon 02 Jan 2023 08:19:42 +0000
ROA not before: Mon 02 Jan 2023 08:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 89.191.96.0/19 maxlen: 32
91.188.32.0/19 maxlen: 32
185.7.236.0/22 maxlen: 32
85.115.96.0/19 maxlen: 32
79.132.64.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
62.84.0.0/19 maxlen: 32
185.144.184.0/22 maxlen: 32
188.112.128.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
91.123.64.0/20 maxlen: 32
87.226.0.0/17 maxlen: 32
217.198.224.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
94.30.128.0/17 maxlen: 32
195.62.128.0/19 maxlen: 32
217.199.96.0/19 maxlen: 32
217.24.64.0/20 maxlen: 32
79.135.128.0/19 maxlen: 32
37.148.168.0/21 maxlen: 32
80.254.208.0/20 maxlen: 32
91.142.0.0/20 maxlen: 32
85.234.160.0/19 maxlen: 32
109.110.0.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:90:a5:3a:3e:73:c2:29:fc:d0:ac:b2:3a:88:71:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 2 08:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=088537b155fd497ba1307cd77b695a07020ab796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:e0:7d:e5:fe:92:99:16:8c:ec:4d:44:5c:
1e:5a:14:4b:f0:2c:1e:1e:3e:f9:9a:02:86:3b:36:
be:bb:a7:e5:21:a4:b3:4d:c8:67:73:72:e2:68:4c:
8e:37:d1:a2:d7:24:4d:16:2b:2b:36:5d:5c:b2:4e:
9d:78:8a:e5:8b:e2:0b:30:38:30:55:c3:6d:66:98:
01:70:35:c9:0c:1f:c8:18:60:31:d9:87:07:68:b9:
aa:d0:60:d9:55:d3:0e:ca:93:b5:f3:19:da:09:4a:
6a:b4:aa:f7:3c:a3:a4:b2:15:af:1e:c1:9b:e4:86:
90:22:9b:c6:eb:05:9f:54:25:3d:b7:3d:62:2f:9b:
19:ae:63:38:7d:9b:f5:04:b3:b5:b0:a4:bd:37:b5:
8d:b7:0e:7c:e4:a9:a1:64:8a:c2:a2:74:46:91:ed:
43:3a:a3:41:01:f0:a0:fd:21:24:c9:89:7e:bb:bb:
c8:82:b4:36:42:54:c5:c3:5f:28:5c:4b:11:99:75:
e3:70:04:8b:1a:be:e8:cf:89:c5:3f:7e:fc:41:86:
d9:58:cb:17:c4:8c:29:51:eb:71:22:54:7c:ea:bd:
a1:05:21:8f:bb:7d:cf:f6:5e:7c:a5:dd:47:9f:bd:
2a:cd:19:81:58:b3:0b:11:b0:e2:3d:ab:67:29:2b:
c4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:85:37:B1:55:FD:49:7B:A1:30:7C:D7:7B:69:5A:07:02:0A:B7:96
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/CIU3sVX9SXuhMHzXe2laBwIKt5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.168.0/21
62.84.0.0/19
77.38.128.0/17
79.132.64.0/19
79.135.128.0/19
80.254.208.0/20
85.115.96.0/19
85.234.160.0/19
87.226.0.0/17
89.18.192.0/19
89.191.96.0/19
89.201.0.0/17
91.123.64.0/20
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
185.7.236.0/22
185.144.184.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.24.64.0/20
217.198.224.0/20
217.199.96.0/19
Signature Algorithm: sha256WithRSAEncryption
55:39:e3:7b:cd:5a:58:35:51:29:b1:11:f2:9c:ec:80:b9:2b:
46:ab:3b:7e:5c:93:6a:65:7a:0c:f7:0b:78:b5:0d:90:53:af:
9c:98:71:99:22:c1:b7:aa:d7:55:8e:f4:00:db:95:34:4f:f2:
f7:29:13:2b:df:93:ab:d5:90:96:9b:cc:75:87:dc:79:49:b4:
8a:0d:2e:c0:a1:2c:f4:4e:90:24:c6:da:0b:d0:ee:36:12:4a:
80:5b:d3:ad:15:27:b2:c1:c5:57:ba:58:40:1c:dd:4d:89:e5:
01:51:05:6f:fb:5a:21:4a:90:35:fb:fd:9f:0b:4e:fa:6e:0a:
0c:f4:6f:b7:dc:46:c1:fe:9e:de:2e:61:23:8d:4c:03:cd:ba:
7c:9a:27:fa:e8:f1:ee:5a:7d:9c:76:15:81:25:3d:e7:85:4e:
62:67:76:69:8e:eb:ea:11:38:80:8d:c0:fa:45:41:cb:90:ef:
c9:0f:66:7a:10:14:13:1f:6f:bf:b2:e0:eb:1b:0c:3e:7e:a6:
c0:42:e2:24:71:47:9a:60:4e:21:09:45:08:d1:6f:1c:5a:e0:
19:40:7c:78:1f:f1:c6:88:1a:04:ec:5d:f3:ea:93:1e:ac:9f:
bb:d3:27:e1:c6:7a:7f:5e:67:1d:e7:f8:fd:2b:8b:9c:75:14:
18:80:67:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:53 2023 by rpki-client on console-fra.rpki-client.org