Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/k2gsc3qLZlu20w5Bs-wJRLfpWV4.roa
File: k2gsc3qLZlu20w5Bs-wJRLfpWV4.roa (raw, json)
Hash identifier: HtequvRd0hRwf4s9sg5f8V1RU98hBKQEK6WCTXXuP6Q=
Subject key identifier: 93:68:2C:73:7A:8B:66:5B:B6:D3:0E:41:B3:EC:09:44:B7:E9:59:5E
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 0185711E5161BD6AC8A282482D90228D34A0
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/k2gsc3qLZlu20w5Bs-wJRLfpWV4.roa
Signing time: Mon 02 Jan 2023 06:14:50 +0000
ROA not before: Mon 02 Jan 2023 06:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 89.191.96.0/19 maxlen: 32
91.188.32.0/19 maxlen: 32
185.7.236.0/22 maxlen: 32
85.115.96.0/19 maxlen: 32
79.132.64.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
62.84.0.0/19 maxlen: 32
188.112.128.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
91.123.64.0/20 maxlen: 32
87.226.0.0/17 maxlen: 32
217.198.224.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
94.30.128.0/17 maxlen: 32
195.62.128.0/19 maxlen: 32
217.199.96.0/19 maxlen: 32
217.24.64.0/20 maxlen: 32
37.148.168.0/21 maxlen: 32
80.254.208.0/20 maxlen: 32
91.142.0.0/20 maxlen: 32
85.234.160.0/19 maxlen: 32
109.110.0.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:51:61:bd:6a:c8:a2:82:48:2d:90:22:8d:34:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Jan 2 06:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93682c737a8b665bb6d30e41b3ec0944b7e9595e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c4:88:3d:68:ea:4d:29:0f:45:c3:44:2c:00:
24:f1:c6:7a:33:99:45:73:eb:22:be:f2:42:82:f7:
bb:e3:14:35:d7:e5:bb:7d:0b:59:8e:b9:4a:ab:d5:
9e:64:4d:91:02:8d:98:21:29:ba:62:7a:ca:dd:6d:
b3:26:25:02:70:ef:e1:8c:96:75:b2:48:1e:7c:e2:
08:ad:74:ce:c7:23:53:9c:e0:05:64:f0:72:b6:d6:
fc:10:0a:04:67:3d:69:00:1a:39:62:e7:53:8a:23:
eb:b0:28:18:88:53:d9:4c:fc:6e:eb:87:52:9e:7b:
36:4d:9e:fa:de:58:cb:12:6f:c0:e1:2b:f8:fe:8f:
53:84:63:a4:8b:e3:4b:b0:1b:ad:94:d5:09:80:05:
52:4e:4d:7c:76:93:1c:08:a2:4b:49:e2:e9:e1:91:
16:d8:50:cf:7e:29:cb:b2:e6:3f:8e:ac:03:c8:08:
80:52:c9:b8:a8:f7:9c:79:9a:e1:77:7b:33:e3:1f:
f9:09:d5:f5:06:da:98:c5:ec:e4:47:79:92:94:3b:
ea:4f:c6:63:d9:5f:d4:26:80:90:22:ba:c5:08:bc:
26:5b:86:0b:65:ba:31:ab:14:47:ad:d9:25:60:53:
89:b8:aa:ce:9c:46:db:bc:08:1a:e5:ed:e1:06:ab:
cd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:68:2C:73:7A:8B:66:5B:B6:D3:0E:41:B3:EC:09:44:B7:E9:59:5E
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/k2gsc3qLZlu20w5Bs-wJRLfpWV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.168.0/21
62.84.0.0/19
77.38.128.0/17
79.132.64.0/19
80.254.208.0/20
85.115.96.0/19
85.234.160.0/19
87.226.0.0/17
89.18.192.0/19
89.191.96.0/19
89.201.0.0/17
91.123.64.0/20
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
185.7.236.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.24.64.0/20
217.198.224.0/20
217.199.96.0/19
Signature Algorithm: sha256WithRSAEncryption
95:c5:e8:a7:ad:38:a0:f6:b5:ac:f3:28:3b:20:a0:77:d2:1f:
74:c2:1d:13:35:b4:56:d4:d8:92:8a:e2:7b:d8:75:81:7a:fa:
94:ec:0b:1f:15:fc:20:44:8e:31:3d:dc:b7:1a:31:30:08:8f:
ef:20:f5:09:7f:81:42:f8:81:84:b8:8d:5f:3b:c6:28:45:72:
7a:26:0b:f2:8e:8d:38:a5:ad:95:7e:67:29:86:8f:cd:47:4a:
5f:e0:0b:c7:a3:7a:99:22:c4:ee:60:cb:d2:ed:57:04:56:67:
92:da:65:b6:de:61:a6:53:93:53:dc:b9:d6:ff:57:71:55:07:
cf:37:96:87:c3:4d:e3:74:47:70:4c:c5:58:97:fd:fe:5d:13:
af:a5:e8:3e:f9:25:2e:08:85:83:9b:80:4c:75:62:e9:6e:8d:
8c:18:29:5c:73:20:1c:bf:f7:21:dd:3c:11:70:87:8e:8d:cf:
10:50:cb:4f:12:29:f2:75:62:ae:44:68:41:ae:ec:6e:5a:d3:
a0:72:fc:57:50:1f:ae:f7:07:b3:9a:50:9a:b7:ab:bf:58:18:
01:4b:0e:22:3a:10:6b:03:c8:52:6e:9c:b8:ef:bc:46:a1:65:
99:b1:3d:bd:ec:26:82:6e:ee:c7:d0:4e:ac:ee:fb:b3:33:4b:
19:7e:3e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:47 2023 by rpki-client on console-ams.rpki-client.org