Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/DjL5VI5KcJqvqP4q2hNM8yEb8-k.roa
File: DjL5VI5KcJqvqP4q2hNM8yEb8-k.roa (raw, json)
Hash identifier: 7yPvnCTGOthUVHM2C2QCsbAtomuC0iaM94GfPOsGGBM=
Subject key identifier: 0E:32:F9:54:8E:4A:70:9A:AF:A8:FE:2A:DA:13:4C:F3:21:1B:F3:E9
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018A45C1D23C9FBF71012AA94B500804A555
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/DjL5VI5KcJqvqP4q2hNM8yEb8-k.roa
Signing time: Wed 30 Aug 2023 09:24:04 +0000
ROA not before: Wed 30 Aug 2023 09:24:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210906
IP address blocks: 159.148.26.0/24 maxlen: 24
85.254.138.0/23 maxlen: 23
85.254.137.0/24 maxlen: 24
85.254.134.0/24 maxlen: 24
85.254.140.0/24 maxlen: 24
85.254.174.0/23 maxlen: 23
85.254.178.0/23 maxlen: 23
85.254.180.0/23 maxlen: 23
85.254.84.0/23 maxlen: 23
85.254.103.0/24 maxlen: 24
85.254.104.0/22 maxlen: 22
85.254.112.0/22 maxlen: 22
85.254.108.0/22 maxlen: 22
85.254.116.0/22 maxlen: 22
85.254.124.0/23 maxlen: 23
85.254.122.0/23 maxlen: 23
85.254.128.0/22 maxlen: 22
85.254.126.0/24 maxlen: 24
217.69.125.0/24 maxlen: 24
217.69.121.0/24 maxlen: 24
217.69.127.0/24 maxlen: 24
217.69.126.0/24 maxlen: 24
85.254.29.0/24 maxlen: 24
85.254.30.0/24 maxlen: 24
85.254.42.0/23 maxlen: 23
85.254.40.0/24 maxlen: 24
85.254.51.0/24 maxlen: 24
85.254.59.0/24 maxlen: 24
85.254.62.0/23 maxlen: 23
85.254.64.0/23 maxlen: 23
85.254.76.0/22 maxlen: 22
85.254.4.0/24 maxlen: 24
85.254.2.0/24 maxlen: 24
85.254.8.0/21 maxlen: 21
85.254.7.0/24 maxlen: 24
159.148.109.0/24 maxlen: 24
159.148.126.0/24 maxlen: 24
159.148.130.0/24 maxlen: 24
159.148.128.0/24 maxlen: 24
159.148.138.0/24 maxlen: 24
159.148.150.0/24 maxlen: 24
159.148.157.0/24 maxlen: 24
159.148.158.0/24 maxlen: 24
159.148.54.0/24 maxlen: 24
159.148.62.0/24 maxlen: 24
159.148.66.0/24 maxlen: 24
159.148.216.0/24 maxlen: 24
159.148.218.0/24 maxlen: 24
159.148.222.0/24 maxlen: 24
159.148.236.0/24 maxlen: 24
159.148.239.0/24 maxlen: 24
159.148.234.0/24 maxlen: 24
159.148.246.0/23 maxlen: 23
159.148.241.0/24 maxlen: 24
159.148.248.0/24 maxlen: 24
185.27.93.0/24 maxlen: 24
185.27.94.0/24 maxlen: 24
185.27.92.0/24 maxlen: 24
185.27.95.0/24 maxlen: 24
159.148.163.0/24 maxlen: 24
159.148.169.0/24 maxlen: 24
159.148.166.0/23 maxlen: 23
159.148.179.0/24 maxlen: 24
159.148.177.0/24 maxlen: 24
159.148.180.0/24 maxlen: 24
159.148.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:c1:d2:3c:9f:bf:71:01:2a:a9:4b:50:08:04:a5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Aug 30 09:24:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e32f9548e4a709aafa8fe2ada134cf3211bf3e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:61:3c:31:78:b1:11:8b:88:d4:ea:7d:e4:e2:
f1:8b:02:0e:f6:cb:81:7c:52:06:15:ec:37:e6:cd:
ce:98:25:23:67:73:c8:32:f3:e3:c1:26:12:82:cb:
b2:56:1a:1b:0e:ae:54:1f:c2:25:6e:84:d3:c0:e1:
6b:ac:1e:1e:83:a5:9b:bf:4d:cd:11:7b:6a:ee:25:
c9:61:83:71:0f:ed:c4:05:86:e2:39:59:28:e1:37:
75:23:3d:8a:9b:96:33:92:13:80:34:96:6a:0a:7f:
01:bf:a4:57:2f:58:62:08:25:a5:12:2a:1d:97:14:
25:a9:66:04:d4:cb:94:49:ce:38:e1:87:a0:b7:45:
ca:4a:af:f7:bc:34:96:12:65:1b:f3:6a:e9:3d:20:
37:4d:09:d1:4c:01:47:39:23:43:e2:fa:07:37:77:
e2:b8:13:54:cf:6e:ff:77:dc:32:8c:01:b2:0c:06:
d8:dd:f5:eb:ae:6e:1a:df:cd:8d:ee:00:2b:df:4f:
1f:92:a4:b9:b2:6f:48:40:de:bb:b4:06:b5:d8:b0:
ea:78:fd:bb:e7:14:d9:dd:18:04:3f:2c:7d:7c:22:
5a:cf:f0:e5:db:65:a1:5a:00:1b:72:35:b3:8d:17:
6d:78:20:af:b4:e0:3f:ad:ce:d3:6f:f7:e7:b0:cd:
b2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:32:F9:54:8E:4A:70:9A:AF:A8:FE:2A:DA:13:4C:F3:21:1B:F3:E9
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/DjL5VI5KcJqvqP4q2hNM8yEb8-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.2.0/24
85.254.4.0/24
85.254.7.0-85.254.15.255
85.254.29.0-85.254.30.255
85.254.40.0/24
85.254.42.0/23
85.254.51.0/24
85.254.59.0/24
85.254.62.0-85.254.65.255
85.254.76.0/22
85.254.84.0/23
85.254.103.0-85.254.119.255
85.254.122.0-85.254.126.255
85.254.128.0/22
85.254.134.0/24
85.254.137.0-85.254.140.255
85.254.174.0/23
85.254.178.0-85.254.181.255
159.148.26.0/24
159.148.54.0/24
159.148.62.0/24
159.148.66.0/24
159.148.109.0/24
159.148.126.0/24
159.148.128.0/24
159.148.130.0/24
159.148.138.0/24
159.148.150.0/24
159.148.157.0-159.148.158.255
159.148.163.0/24
159.148.166.0/23
159.148.169.0/24
159.148.177.0/24
159.148.179.0-159.148.180.255
159.148.204.0/24
159.148.216.0/24
159.148.218.0/24
159.148.222.0/24
159.148.234.0/24
159.148.236.0/24
159.148.239.0/24
159.148.241.0/24
159.148.246.0-159.148.248.255
185.27.92.0/22
217.69.121.0/24
217.69.125.0-217.69.127.255
Signature Algorithm: sha256WithRSAEncryption
7b:7a:1c:44:53:e7:81:32:c0:2b:9d:22:ab:a8:f7:96:85:91:
f1:08:54:32:dd:28:43:17:52:e7:9d:77:3b:75:6f:65:33:83:
06:e1:51:40:ac:d0:f0:c6:34:4e:d7:92:ad:b4:8e:d3:d7:a3:
a1:c6:64:51:76:70:51:04:a9:76:b6:3f:ec:f2:4f:b9:bd:33:
98:2f:d3:35:3a:37:cf:f0:74:99:e3:4a:b5:00:ba:12:95:e3:
60:c3:b4:1a:db:26:f4:06:b9:89:42:5f:7f:42:4b:15:09:5a:
96:ce:23:00:5c:fb:47:d6:7d:9a:6b:7d:b4:00:ee:8c:82:8a:
a7:b6:10:5d:0b:37:30:64:6d:ec:24:43:ad:a1:24:87:f5:ba:
66:c6:4a:c1:05:88:d3:0a:f9:96:98:5b:cf:20:43:f5:0f:9c:
e6:e1:ea:61:8f:e2:82:0c:f2:ea:55:87:36:7c:6a:29:1b:05:
2b:94:42:d0:94:21:27:35:a4:de:f7:b2:74:44:51:41:f9:88:
4e:9c:5c:d0:17:ad:eb:84:83:38:e1:de:64:84:00:4f:0a:cd:
90:bb:de:3a:74:d7:86:80:3a:59:37:6b:5e:6a:07:44:4f:ba:
00:f7:b4:2c:30:11:28:ce:7f:8b:da:45:86:df:30:6d:3e:c8:
ec:52:22:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org