Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/RCVvG9WlJrL47dY0XHhUWSOQuBU.roa
File: RCVvG9WlJrL47dY0XHhUWSOQuBU.roa (raw, json)
Hash identifier: fkEy7bGk5qMrBgrpNZROpF21owFZ4q/XvxKQyvskfaU=
Subject key identifier: 44:25:6F:1B:D5:A5:26:B2:F8:ED:D6:34:5C:78:54:59:23:90:B8:15
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF96476113EC5EDD8D1C6155C0C7DA5
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/RCVvG9WlJrL47dY0XHhUWSOQuBU.roa
Signing time: Mon 02 Jan 2023 00:54:53 +0000
ROA not before: Mon 02 Jan 2023 00:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12716
IP address blocks: 151.251.254.0/24 maxlen: 24
151.251.255.0/24 maxlen: 24
37.63.96.0/22 maxlen: 24
83.97.30.0/24 maxlen: 24
84.252.40.0/23 maxlen: 23
151.251.240.0/24 maxlen: 24
151.251.238.0/24 maxlen: 24
151.251.239.0/24 maxlen: 24
151.251.245.0/24 maxlen: 24
151.251.240.0/20 maxlen: 20
151.251.243.0/24 maxlen: 24
151.251.246.0/24 maxlen: 24
151.251.241.0/24 maxlen: 24
151.251.244.0/24 maxlen: 24
151.251.242.0/24 maxlen: 24
151.251.253.0/24 maxlen: 24
151.251.248.0/24 maxlen: 24
151.251.251.0/24 maxlen: 24
151.251.249.0/24 maxlen: 24
151.251.252.0/24 maxlen: 24
151.251.247.0/24 maxlen: 24
151.251.250.0/24 maxlen: 24
89.215.62.0/23 maxlen: 23
151.251.44.0/22 maxlen: 22
151.251.68.0/22 maxlen: 22
185.224.160.0/23 maxlen: 23
37.63.0.0/20 maxlen: 20
37.63.16.0/22 maxlen: 22
62.204.154.0/23 maxlen: 23
151.251.121.0/24 maxlen: 24
85.118.64.0/22 maxlen: 22
85.118.71.0/24 maxlen: 24
85.118.68.0/23 maxlen: 23
213.226.17.0/24 maxlen: 24
85.118.70.0/24 maxlen: 24
85.118.76.0/22 maxlen: 22
85.118.74.0/24 maxlen: 24
85.118.72.0/23 maxlen: 23
213.226.19.0/24 maxlen: 24
185.151.156.0/22 maxlen: 22
85.118.84.0/24 maxlen: 24
85.118.80.0/22 maxlen: 22
213.226.36.0/24 maxlen: 24
85.118.92.0/24 maxlen: 24
85.118.93.0/24 maxlen: 24
213.226.40.0/24 maxlen: 24
213.226.51.0/24 maxlen: 24
213.226.57.0/24 maxlen: 24
213.226.56.0/24 maxlen: 24
213.226.63.0/24 maxlen: 24
213.226.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:64:76:11:3e:c5:ed:d8:d1:c6:15:5c:0c:7d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44256f1bd5a526b2f8edd6345c7854592390b815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:69:cf:fa:26:19:c3:4a:5c:3d:0a:d9:ce:b4:
13:0a:eb:ec:c4:29:f9:81:04:d1:2d:e8:9f:ac:1f:
d2:c4:f2:47:38:76:90:39:74:74:88:e2:af:cc:7e:
ca:e6:ce:31:5c:2b:ea:d4:8c:fb:a5:58:0d:4e:dc:
42:1e:bb:e6:55:f8:ac:71:77:54:08:ce:2e:3e:e6:
fd:f0:c7:95:f3:ae:c7:d7:19:1e:1d:0b:4c:5b:e2:
36:ec:79:0d:e7:50:40:04:4a:7e:36:b2:b7:2c:d8:
1a:73:65:80:73:c6:52:a6:d4:46:31:1f:fc:a5:c7:
10:fa:e6:78:48:f4:c3:36:ef:9f:ce:f0:78:8d:11:
b7:88:69:0c:63:3d:4b:96:10:67:5b:ec:2f:5d:5e:
86:d0:a4:e8:d0:fe:63:6e:d3:a2:ca:eb:1d:be:8e:
ba:68:fe:d0:4b:63:e8:ee:5e:6d:33:2b:8c:a8:17:
6e:f4:29:a9:01:39:18:c7:a2:00:7b:9b:d4:37:3b:
f8:48:d0:85:03:a7:8e:51:2c:52:b3:25:13:a2:e6:
ed:54:27:a2:ff:53:c6:c6:ab:67:7b:13:9f:eb:b7:
f1:6c:4c:43:87:2c:51:de:0d:de:a9:85:15:37:45:
87:97:2a:54:5b:2d:5b:3f:1c:dc:8c:10:6a:2c:46:
2d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:25:6F:1B:D5:A5:26:B2:F8:ED:D6:34:5C:78:54:59:23:90:B8:15
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/RCVvG9WlJrL47dY0XHhUWSOQuBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.63.0.0-37.63.19.255
37.63.96.0/22
62.204.154.0/23
83.97.30.0/24
84.252.40.0/23
85.118.64.0-85.118.74.255
85.118.76.0-85.118.84.255
85.118.92.0/23
89.215.62.0/23
151.251.44.0/22
151.251.68.0/22
151.251.121.0/24
151.251.238.0-151.251.255.255
185.151.156.0/22
185.224.160.0/23
213.226.17.0/24
213.226.19.0/24
213.226.36.0/24
213.226.40.0/24
213.226.51.0/24
213.226.56.0/23
213.226.59.0/24
213.226.63.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:02:9b:21:47:92:e3:ca:79:28:cd:9e:eb:d7:6b:d9:e6:d7:
2b:58:1a:cc:c5:67:ff:7e:0f:a6:b0:e9:03:29:98:94:98:94:
7b:f9:28:5c:42:6d:f4:be:2b:2a:89:3b:7d:ed:4e:30:1a:08:
76:3f:e7:1d:9b:b7:d8:5c:ef:67:75:54:92:b8:8c:9a:2c:8a:
16:43:69:82:6f:15:27:b5:e6:fa:e4:08:56:d8:6c:0b:c9:5a:
10:26:55:3a:53:34:42:d5:b7:e4:f1:14:52:6c:9f:1e:ce:50:
16:33:41:06:ed:93:a9:d7:8c:42:97:cf:54:d4:ca:7a:85:cb:
57:ba:53:88:97:8d:1f:03:bd:ef:8a:a4:6b:d4:27:3b:47:ed:
9d:4e:9e:6b:53:12:94:46:6e:6b:d8:4d:c2:3f:46:fe:ea:ea:
bb:f5:8c:08:fe:0c:47:ec:cc:b8:a5:43:23:51:c3:a6:56:ed:
a5:d1:9c:d2:2c:67:45:a0:a5:76:03:70:c2:4b:e1:be:ad:e4:
3e:a4:14:c7:8c:89:a9:1b:10:cd:8b:7a:43:ef:bc:06:d9:1b:
41:2f:f8:b8:57:c5:16:4e:a0:00:05:36:26:b5:09:a3:e9:96:
62:7a:e5:63:4b:cb:16:5d:5f:fc:89:58:06:c7:5f:5e:41:7e:
ae:4c:52:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:19 2023 by rpki-client on console-fra.rpki-client.org