Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/1-eK8BdEjCE8nxR4As-X8DMXXtss.roa
File: 1-eK8BdEjCE8nxR4As-X8DMXXtss.roa (raw, json)
Hash identifier: nzGnKdQlCIC4GMnwdrc/GZp/wKEjalYwgACwhfNncHU=
Subject key identifier: F9:E2:BC:05:D1:23:08:4F:27:C5:1E:00:B3:E5:FC:0C:C5:D7:B6:CB
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 018981A64C3EC0345B42473A0E1C811A5EC1
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/1-eK8BdEjCE8nxR4As-X8DMXXtss.roa
Signing time: Sun 23 Jul 2023 07:28:26 +0000
ROA not before: Sun 23 Jul 2023 07:28:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51684
IP address blocks: 185.16.26.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
5.181.196.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.203.0/24 maxlen: 24
89.46.202.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.200.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.201.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
223.25.123.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
185.254.200.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.201.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.217.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.223.0/24 maxlen: 24
82.199.220.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
185.247.37.0/24 maxlen: 24
185.247.38.0/24 maxlen: 24
185.247.36.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:81:a6:4c:3e:c0:34:5b:42:47:3a:0e:1c:81:1a:5e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jul 23 07:28:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9e2bc05d123084f27c51e00b3e5fc0cc5d7b6cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8b:e0:94:37:12:d9:60:34:37:c8:0b:62:8b:
0a:eb:14:e6:66:3c:4c:57:1c:5c:c9:7d:03:8e:e1:
c5:c5:74:d9:69:f8:8a:8a:5f:59:11:65:54:0d:63:
08:ec:17:1a:e5:17:27:57:40:3f:ad:2b:10:1d:f3:
e8:51:fe:b8:09:35:3f:4d:26:7a:e1:d9:7d:0c:e8:
8d:d4:c6:ee:fb:da:c6:33:ae:9b:9e:80:6a:ce:0a:
a8:a3:a1:1a:2a:a9:97:29:e8:8b:6f:f2:f5:78:00:
49:40:35:60:05:8f:42:5c:32:ed:0d:e9:70:9d:0c:
8e:02:13:77:1c:cb:54:14:54:4f:32:17:eb:33:0b:
f4:ef:51:69:b9:57:86:f4:b0:96:09:3b:3b:7b:17:
db:52:90:37:82:66:26:08:9f:d6:f3:80:e7:22:ad:
f0:64:d4:0c:7e:c5:1b:b2:a4:9d:c5:0c:b9:70:a5:
92:be:60:c1:1c:a1:70:0f:ce:25:ef:99:8a:e1:dc:
20:f7:7e:e4:fd:99:58:11:bb:0c:53:01:ae:dc:cf:
a1:a5:fb:28:d1:73:48:e2:71:ba:bd:3f:d5:70:0a:
3c:eb:29:27:39:a5:36:29:36:95:8a:70:d7:7f:97:
1b:a3:e5:97:e3:22:e9:e6:1a:54:ee:b9:81:31:e7:
6d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E2:BC:05:D1:23:08:4F:27:C5:1E:00:B3:E5:FC:0C:C5:D7:B6:CB
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/1-eK8BdEjCE8nxR4As-X8DMXXtss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0/24
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
223.25.120.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
b0:40:c2:03:d9:18:e9:84:81:31:d8:54:5b:aa:23:ae:56:5f:
00:65:65:ef:eb:71:42:dd:ff:d3:64:82:de:e0:2f:8a:5d:46:
8b:8c:57:08:88:09:4c:ac:43:ba:d4:11:8c:c5:86:d7:a7:73:
31:f7:ae:ba:32:84:be:ed:bf:2d:b1:b4:5c:00:8d:76:85:53:
58:d7:29:52:fe:31:37:0f:dd:86:b2:e9:03:e3:0a:94:f4:52:
1c:d0:93:a9:69:14:f3:b0:e4:04:9c:21:73:37:ca:7b:a7:25:
54:53:6c:b7:6a:cc:75:77:4b:7c:7a:66:eb:cf:32:85:61:0f:
dd:18:8f:90:47:65:4d:7e:75:8e:9b:ce:4e:91:46:3c:fd:20:
e8:e2:f8:1c:63:b6:26:d1:ae:25:86:dd:8b:dc:99:3e:61:43:
93:bf:34:2e:34:8d:67:3e:a1:57:70:6b:b1:85:5c:0b:8e:e3:
5f:51:44:f4:fc:01:3e:46:62:84:77:fb:1e:81:20:bc:a4:75:
0f:ec:3f:c5:c4:1e:0a:c2:cf:62:8b:8a:3a:e3:08:5e:cf:4f:
15:17:51:89:85:3d:12:2e:f0:0e:03:c7:53:26:77:60:b8:07:
97:cb:4d:59:19:39:e5:0b:c8:c9:8e:1b:22:6e:c5:4d:ce:e0:
5b:3e:cf:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 28 12:43:35 2023 by rpki-client on console-fra.rpki-client.org