Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/fzre5IaAXxTvF5etnaQIDNxoFLo.roa
File: fzre5IaAXxTvF5etnaQIDNxoFLo.roa (raw, json)
Hash identifier: UekEP+lrePgXbT7bu/Ra6nI9cDW0oZ+Oq2UQjlHMxLo=
Subject key identifier: 7F:3A:DE:E4:86:80:5F:14:EF:17:97:AD:9D:A4:08:0C:DC:68:14:BA
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 0185BEB97485F7F6EB549E1FF3CC68859752
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/fzre5IaAXxTvF5etnaQIDNxoFLo.roa
Signing time: Tue 17 Jan 2023 07:55:03 +0000
ROA not before: Tue 17 Jan 2023 07:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 85.254.71.0/24 maxlen: 24
85.254.75.0/24 maxlen: 24
85.254.76.0/24 maxlen: 24
85.254.73.0/24 maxlen: 24
85.254.74.0/24 maxlen: 24
85.254.76.0/22 maxlen: 22
85.254.74.0/23 maxlen: 23
85.254.141.0/24 maxlen: 24
85.254.151.0/24 maxlen: 24
85.254.149.0/24 maxlen: 24
85.254.152.0/22 maxlen: 22
85.254.170.0/24 maxlen: 24
85.254.176.0/23 maxlen: 23
80.81.61.0/24 maxlen: 24
85.254.84.0/23 maxlen: 23
85.254.80.0/22 maxlen: 22
85.254.94.0/24 maxlen: 24
85.254.98.0/23 maxlen: 23
85.254.96.0/22 maxlen: 22
85.254.96.0/23 maxlen: 23
85.254.92.0/22 maxlen: 22
85.254.92.0/23 maxlen: 23
85.254.95.0/24 maxlen: 24
85.254.92.0/24 maxlen: 24
85.254.93.0/24 maxlen: 24
85.254.104.0/21 maxlen: 21
85.254.101.0/24 maxlen: 24
85.254.102.0/24 maxlen: 24
85.254.100.0/24 maxlen: 24
85.254.112.0/21 maxlen: 21
85.254.124.0/23 maxlen: 23
159.148.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:b9:74:85:f7:f6:eb:54:9e:1f:f3:cc:68:85:97:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 17 07:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f3adee486805f14ef1797ad9da4080cdc6814ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4c:98:cd:bf:b3:4e:7c:95:11:5b:a2:a4:c3:
2b:9f:67:86:61:4a:33:2d:3a:dd:01:a3:a6:f2:a3:
24:a7:53:da:76:5f:59:bb:01:b4:de:6c:6e:3c:45:
0f:2f:4c:e3:47:0b:3e:b0:f6:a0:66:1f:02:92:85:
e3:36:c6:fa:1e:1f:7d:87:ee:40:ab:52:ec:04:61:
30:9f:23:70:13:61:2e:5f:b7:e4:80:d6:d0:67:b1:
8f:23:3a:e9:c5:5e:e3:c4:db:73:ef:d7:d9:a3:6c:
09:93:03:04:43:c8:18:39:26:26:5f:61:78:d4:0d:
f0:a8:37:2a:1c:40:fb:d9:84:d6:71:08:ed:ed:5d:
ec:f6:e0:5c:40:98:75:24:9b:70:6b:b2:12:e8:ff:
1e:bd:f0:fc:14:52:e6:a0:b0:0e:4d:a4:15:90:a2:
bc:ce:66:66:13:af:10:da:87:7a:b5:87:f2:d7:78:
27:f2:ef:15:ec:db:14:91:65:36:a6:40:d1:cd:dc:
2f:f5:54:e8:cf:36:d4:58:1d:5c:bc:47:14:6d:a6:
cd:85:50:42:22:e6:dc:d6:07:e0:de:fc:3a:03:8d:
57:98:da:3d:d9:b7:0d:33:de:47:48:03:5a:be:06:
51:99:29:42:84:b3:cb:c9:51:45:e6:a3:b3:0d:a3:
f8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3A:DE:E4:86:80:5F:14:EF:17:97:AD:9D:A4:08:0C:DC:68:14:BA
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/fzre5IaAXxTvF5etnaQIDNxoFLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.61.0/24
85.254.71.0/24
85.254.73.0-85.254.85.255
85.254.92.0-85.254.102.255
85.254.104.0-85.254.119.255
85.254.124.0/23
85.254.141.0/24
85.254.149.0/24
85.254.151.0-85.254.155.255
85.254.170.0/24
85.254.176.0/23
159.148.249.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d0:fa:0f:f9:3b:fa:d4:e4:b7:7f:4e:15:26:b6:c9:bd:57:
a5:19:4e:c2:50:8a:c8:7b:2c:81:6d:63:8a:ba:3f:6e:e3:aa:
43:b7:8c:52:73:fa:42:37:64:6b:aa:bc:fb:e8:56:93:2e:96:
e7:f8:b8:d9:57:dc:b6:69:ab:62:74:05:4e:b0:2d:d1:78:0f:
ef:a3:58:8a:4c:09:59:20:37:dd:6b:0c:a3:87:61:1f:ce:50:
6c:61:2f:1d:08:51:ae:c5:c9:99:7c:07:ac:ca:76:d4:f1:bd:
ae:46:dc:6d:e0:75:77:da:0c:1c:da:2b:bb:b2:b2:ef:dc:73:
3f:55:10:94:91:b3:23:c5:ba:40:68:36:2a:83:e9:86:05:0d:
25:31:b5:f2:ff:1b:55:94:0c:76:e6:d2:e5:69:32:2c:18:64:
77:01:da:ac:1c:37:29:39:f4:b7:cf:4f:61:ea:64:02:c9:82:
ca:24:6c:7b:82:ee:4b:5a:81:63:a9:67:a2:15:3b:58:9e:d7:
3b:31:6d:ca:79:5c:c7:d0:6f:ab:b6:be:0e:10:3d:6d:23:68:
82:e2:54:69:de:60:bd:0f:5e:52:93:ca:70:f8:09:4d:54:ea:
ec:b8:4f:5b:97:cb:b5:c9:11:dc:77:56:7c:15:40:78:17:c1:
d0:8e:00:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:46 2023 by rpki-client on console-fra.rpki-client.org