Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/aDSJJLGd7lkUBoKTZbNBiog1G3c.roa
File: aDSJJLGd7lkUBoKTZbNBiog1G3c.roa (raw, json)
Hash identifier: DtAVUAQyv8LeU6ZJuD/w1tCcPBPONHq1bGH+MxOFCC4=
Subject key identifier: 68:34:89:24:B1:9D:EE:59:14:06:82:93:65:B3:41:8A:88:35:1B:77
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01858675234446933744860E8C6A02E04A6A
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/aDSJJLGd7lkUBoKTZbNBiog1G3c.roa
Signing time: Fri 06 Jan 2023 09:41:41 +0000
ROA not before: Fri 06 Jan 2023 09:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210906
IP address blocks: 159.148.26.0/24 maxlen: 24
85.254.138.0/23 maxlen: 23
85.254.134.0/24 maxlen: 24
85.254.140.0/24 maxlen: 24
85.254.174.0/23 maxlen: 23
85.254.178.0/23 maxlen: 23
85.254.180.0/23 maxlen: 23
85.254.84.0/23 maxlen: 23
85.254.104.0/22 maxlen: 22
85.254.112.0/22 maxlen: 22
85.254.108.0/22 maxlen: 22
85.254.116.0/22 maxlen: 22
85.254.124.0/23 maxlen: 23
85.254.122.0/23 maxlen: 23
85.254.128.0/22 maxlen: 22
85.254.126.0/24 maxlen: 24
217.69.125.0/24 maxlen: 24
217.69.121.0/24 maxlen: 24
217.69.127.0/24 maxlen: 24
217.69.126.0/24 maxlen: 24
85.254.42.0/23 maxlen: 23
85.254.40.0/24 maxlen: 24
85.254.51.0/24 maxlen: 24
85.254.62.0/23 maxlen: 23
85.254.64.0/23 maxlen: 23
85.254.76.0/22 maxlen: 22
85.254.4.0/24 maxlen: 24
85.254.2.0/24 maxlen: 24
85.254.8.0/21 maxlen: 21
85.254.7.0/24 maxlen: 24
159.148.109.0/24 maxlen: 24
159.148.126.0/24 maxlen: 24
159.148.130.0/24 maxlen: 24
159.148.128.0/24 maxlen: 24
159.148.138.0/24 maxlen: 24
159.148.150.0/24 maxlen: 24
159.148.157.0/24 maxlen: 24
159.148.158.0/24 maxlen: 24
159.148.54.0/24 maxlen: 24
159.148.62.0/24 maxlen: 24
159.148.66.0/24 maxlen: 24
159.148.216.0/24 maxlen: 24
159.148.218.0/24 maxlen: 24
159.148.236.0/24 maxlen: 24
159.148.239.0/24 maxlen: 24
159.148.234.0/24 maxlen: 24
159.148.246.0/23 maxlen: 23
159.148.241.0/24 maxlen: 24
159.148.248.0/24 maxlen: 24
185.27.93.0/24 maxlen: 24
185.27.94.0/24 maxlen: 24
185.27.92.0/24 maxlen: 24
185.27.95.0/24 maxlen: 24
159.148.163.0/24 maxlen: 24
159.148.169.0/24 maxlen: 24
159.148.166.0/23 maxlen: 23
159.148.179.0/24 maxlen: 24
159.148.177.0/24 maxlen: 24
159.148.180.0/24 maxlen: 24
159.148.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:86:75:23:44:46:93:37:44:86:0e:8c:6a:02:e0:4a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 6 09:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68348924b19dee591406829365b3418a88351b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:07:b3:bb:2b:8d:40:81:f7:7b:a7:5e:60:3c:
7a:41:e0:1a:c9:54:04:23:93:3d:96:11:e2:1f:61:
53:4d:01:d2:48:08:21:18:df:53:b3:e1:e1:60:b0:
ed:de:eb:88:74:b0:70:2f:9c:24:6c:96:ec:8b:a2:
47:0c:a1:b2:b4:0e:95:14:6d:a0:d9:a2:07:11:a4:
3f:2a:4e:a4:9b:79:b4:7c:5f:24:8d:d0:47:4e:ff:
6d:bd:c4:20:e2:e4:54:ab:09:6f:57:a9:56:f3:50:
90:ff:ad:74:f0:13:13:a9:dd:08:36:1f:16:7e:05:
5d:8d:3b:01:ba:b9:d5:98:ff:f4:ef:14:06:b6:09:
fd:91:0b:22:3d:9d:95:ea:2f:af:1c:ac:f9:58:05:
e9:07:89:eb:30:90:b0:fe:92:ce:80:55:f6:68:a9:
6b:c3:35:d5:1a:c4:8c:4b:b2:eb:ce:5c:31:ef:33:
c7:c2:da:e9:e4:08:7b:54:05:50:c9:e2:b9:5b:69:
4a:76:7b:10:63:5f:05:92:06:83:b2:cc:37:3e:b5:
23:2a:34:96:30:42:53:fe:d8:f6:3d:0d:a9:4b:6a:
29:e3:35:e3:1d:1f:87:4a:45:7c:2c:cd:4f:f6:ef:
f7:d3:6b:15:bd:57:42:2f:2e:cf:73:02:30:b6:df:
e4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:34:89:24:B1:9D:EE:59:14:06:82:93:65:B3:41:8A:88:35:1B:77
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/aDSJJLGd7lkUBoKTZbNBiog1G3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.2.0/24
85.254.4.0/24
85.254.7.0-85.254.15.255
85.254.40.0/24
85.254.42.0/23
85.254.51.0/24
85.254.62.0-85.254.65.255
85.254.76.0/22
85.254.84.0/23
85.254.104.0-85.254.119.255
85.254.122.0-85.254.126.255
85.254.128.0/22
85.254.134.0/24
85.254.138.0-85.254.140.255
85.254.174.0/23
85.254.178.0-85.254.181.255
159.148.26.0/24
159.148.54.0/24
159.148.62.0/24
159.148.66.0/24
159.148.109.0/24
159.148.126.0/24
159.148.128.0/24
159.148.130.0/24
159.148.138.0/24
159.148.150.0/24
159.148.157.0-159.148.158.255
159.148.163.0/24
159.148.166.0/23
159.148.169.0/24
159.148.177.0/24
159.148.179.0-159.148.180.255
159.148.204.0/24
159.148.216.0/24
159.148.218.0/24
159.148.234.0/24
159.148.236.0/24
159.148.239.0/24
159.148.241.0/24
159.148.246.0-159.148.248.255
185.27.92.0/22
217.69.121.0/24
217.69.125.0-217.69.127.255
Signature Algorithm: sha256WithRSAEncryption
c0:f0:30:8c:6e:ef:1e:10:2b:6a:15:6c:7b:38:a4:2d:ca:e7:
ec:e1:76:a6:dd:0e:82:6f:28:52:60:e2:25:d1:59:d0:ba:ac:
16:60:b0:e1:49:80:73:81:ba:0c:dc:69:7f:80:74:2b:ed:e4:
20:e2:f5:b0:c8:2a:9e:bc:3b:38:f0:9f:72:52:1d:db:ec:74:
85:5c:6b:56:c0:5b:59:69:51:19:59:84:2e:aa:48:bd:31:b1:
9e:f7:f5:95:b7:17:62:c9:6a:c7:1b:70:e7:63:b2:11:f4:13:
28:ac:9e:69:ee:4e:f4:e8:bd:ed:69:9a:61:96:2e:2c:88:ca:
89:b5:28:af:7e:77:1b:88:be:91:ea:05:3c:76:9f:d3:ac:48:
4a:d2:32:98:0d:b4:9f:35:76:e0:8f:d2:a3:15:3f:4b:99:f2:
1d:87:63:f0:63:bf:6a:a0:c2:87:06:71:5b:0a:af:f3:06:08:
d8:cd:8a:dd:02:65:b5:e2:25:cc:a6:f2:48:f2:7b:77:30:b5:
c6:70:82:72:72:c1:98:1e:c7:40:2c:58:32:2c:f9:ed:bf:41:
8c:fd:50:68:c7:17:49:38:f9:c4:78:57:69:69:9e:b9:46:41:
fb:a0:1c:7b:75:f8:bc:c9:20:64:1d:17:fe:1f:d1:e4:28:54:
1a:ad:fe:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org