Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/AJwLVatx6J7keXD81DNdZzDEwmE.roa
File: AJwLVatx6J7keXD81DNdZzDEwmE.roa (raw, json)
Hash identifier: fHueGZaR97PXHKMB8mZQeJTlcIz6iYOsfpNjDe56WR0=
Subject key identifier: 00:9C:0B:55:AB:71:E8:9E:E4:79:70:FC:D4:33:5D:67:30:C4:C2:61
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 01860135CA56537F5937159D989B9D3AD883
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/AJwLVatx6J7keXD81DNdZzDEwmE.roa
Signing time: Mon 30 Jan 2023 05:45:47 +0000
ROA not before: Mon 30 Jan 2023 05:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51684
IP address blocks: 185.16.26.0/24 maxlen: 24
185.16.26.0/23 maxlen: 23
5.181.196.0/24 maxlen: 24
89.46.204.0/23 maxlen: 23
89.46.206.0/24 maxlen: 24
89.46.206.0/23 maxlen: 23
89.46.203.0/24 maxlen: 24
89.46.202.0/23 maxlen: 23
89.46.202.0/24 maxlen: 24
89.46.204.0/24 maxlen: 24
89.46.205.0/24 maxlen: 24
89.46.200.0/24 maxlen: 24
89.46.200.0/23 maxlen: 23
89.46.201.0/24 maxlen: 24
89.46.207.0/24 maxlen: 24
223.25.124.0/24 maxlen: 24
223.25.125.0/24 maxlen: 24
223.25.120.0/24 maxlen: 24
223.25.121.0/24 maxlen: 24
223.25.122.0/24 maxlen: 24
223.25.126.0/24 maxlen: 24
91.217.185.0/24 maxlen: 24
185.254.203.0/24 maxlen: 24
185.254.200.0/24 maxlen: 24
185.254.200.0/23 maxlen: 23
185.254.201.0/24 maxlen: 24
82.199.208.0/23 maxlen: 23
82.199.208.0/24 maxlen: 24
82.199.209.0/24 maxlen: 24
82.199.210.0/24 maxlen: 24
82.199.211.0/24 maxlen: 24
82.199.212.0/23 maxlen: 23
82.199.212.0/24 maxlen: 24
82.199.213.0/24 maxlen: 24
82.199.214.0/23 maxlen: 23
82.199.218.0/23 maxlen: 23
82.199.218.0/24 maxlen: 24
82.199.219.0/24 maxlen: 24
82.199.214.0/24 maxlen: 24
82.199.215.0/24 maxlen: 24
82.199.216.0/24 maxlen: 24
82.199.216.0/23 maxlen: 23
82.199.217.0/24 maxlen: 24
82.199.221.0/24 maxlen: 24
82.199.222.0/24 maxlen: 24
82.199.222.0/23 maxlen: 23
82.199.223.0/24 maxlen: 24
82.199.220.0/24 maxlen: 24
82.199.220.0/23 maxlen: 23
185.247.37.0/24 maxlen: 24
185.247.38.0/24 maxlen: 24
185.247.36.0/24 maxlen: 24
185.247.36.0/23 maxlen: 23
185.95.204.0/23 maxlen: 23
185.95.204.0/24 maxlen: 24
185.95.205.0/24 maxlen: 24
185.95.206.0/24 maxlen: 24
185.95.206.0/23 maxlen: 23
185.95.207.0/24 maxlen: 24
91.213.191.0/24 maxlen: 24
185.247.38.0/23 maxlen: 23
185.247.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:01:35:ca:56:53:7f:59:37:15:9d:98:9b:9d:3a:d8:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Jan 30 05:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=009c0b55ab71e89ee47970fcd4335d6730c4c261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:84:c2:a1:12:92:16:3b:6a:93:15:b7:c7:7c:
b9:35:2a:28:3c:d1:c0:c7:d0:97:9b:3f:2e:e6:07:
29:2a:28:67:fe:b7:6c:25:b6:0e:a7:8b:6d:99:a9:
db:f6:30:53:e3:f8:a1:3c:0d:4c:99:ef:e5:a4:bf:
5e:da:04:94:b9:4a:32:9d:46:8a:e7:92:ff:e3:73:
1d:e4:4b:3a:d0:c8:a1:ff:3b:80:16:0c:ef:35:15:
05:c3:c2:0e:ac:69:f6:0e:ac:21:97:a8:5a:c2:35:
e8:65:ac:7e:80:86:68:00:8a:c7:ff:75:8d:94:63:
1e:36:d0:22:69:cb:88:fa:50:15:70:f6:2b:14:46:
05:ee:78:b2:92:64:9c:5d:02:10:46:57:03:58:32:
22:81:d6:f3:dd:06:73:33:30:ba:b6:bd:49:54:c8:
5c:57:6f:72:e4:30:9b:69:a0:f6:b2:cf:a9:d4:72:
b4:6f:4b:c7:91:ea:30:74:0b:ef:78:43:99:1b:72:
41:54:70:a8:34:1f:77:04:61:e5:4a:8b:a9:fa:0a:
10:f6:3e:38:91:44:6a:0f:4d:e7:b4:1f:17:b1:21:
8e:06:f5:e0:49:68:f3:7e:d5:b4:33:4e:0e:30:7e:
be:21:c0:20:7f:a5:37:70:4c:5d:87:1a:5c:e9:e9:
c1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9C:0B:55:AB:71:E8:9E:E4:79:70:FC:D4:33:5D:67:30:C4:C2:61
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/AJwLVatx6J7keXD81DNdZzDEwmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.196.0/24
82.199.208.0/20
89.46.200.0/21
91.213.191.0/24
91.217.185.0/24
185.16.26.0/23
185.95.204.0/22
185.247.36.0/22
185.254.200.0/23
185.254.203.0/24
223.25.120.0-223.25.122.255
223.25.124.0-223.25.126.255
Signature Algorithm: sha256WithRSAEncryption
50:86:27:59:89:be:0a:c2:7e:2e:ea:71:23:e7:2a:18:74:a9:
45:5d:7d:76:e3:a2:3e:7d:55:e4:80:bc:f3:b1:31:30:20:b7:
79:18:cb:28:31:09:b1:6a:9b:1d:ce:f1:72:c5:75:90:5c:de:
78:d2:82:8c:1a:ba:18:41:3c:73:b2:10:8a:2b:c1:a4:d9:43:
2c:5a:6d:de:0a:b1:6d:66:38:4f:40:8c:6a:65:2f:5d:7a:e0:
21:91:1e:77:45:d2:39:70:0b:03:a1:e2:ef:7d:15:dd:8c:2e:
57:b9:04:89:5f:b0:d7:54:c8:eb:8d:a1:00:44:a5:ec:f6:1f:
58:f3:a3:5b:e7:21:aa:77:e9:d1:c3:4d:9d:da:82:0b:34:fc:
8d:59:13:c7:3f:fe:6a:24:ac:ee:1a:da:89:f1:5c:fd:de:19:
3d:86:89:db:65:e6:3a:a1:ed:6f:85:26:46:04:b2:d1:f6:d8:
03:9b:b5:e2:6b:85:5d:95:18:35:98:87:5b:55:87:52:14:63:
b9:64:9e:ec:44:0c:7a:30:73:8f:5e:df:74:27:e3:95:36:b9:
fa:64:ba:c3:27:c8:38:d4:56:a3:04:a3:da:ad:b2:f9:c4:ce:
32:33:99:c5:2e:d1:f8:25:81:41:d0:ed:81:1c:d2:4d:19:33:
55:62:57:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 23 08:07:21 2023 by rpki-client on console-fra.rpki-client.org