Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/w31P2pj-2eHa6UM_uAlfuxSFfyk.roa
File: w31P2pj-2eHa6UM_uAlfuxSFfyk.roa (raw, json)
Hash identifier: SLfmz73TQqRtuyngRCJ3nNjKqQMnDQmI2lyaVumgPqE=
Subject key identifier: C3:7D:4F:DA:98:FE:D9:E1:DA:E9:43:3F:B8:09:5F:BB:14:85:7F:29
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018581C6B75978B207E33953E65ADE26C2BA
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/w31P2pj-2eHa6UM_uAlfuxSFfyk.roa
Signing time: Thu 05 Jan 2023 11:52:41 +0000
ROA not before: Thu 05 Jan 2023 11:52:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 85.254.71.0/24 maxlen: 24
85.254.75.0/24 maxlen: 24
85.254.76.0/24 maxlen: 24
85.254.73.0/24 maxlen: 24
85.254.74.0/24 maxlen: 24
85.254.76.0/22 maxlen: 22
85.254.74.0/23 maxlen: 23
85.254.141.0/24 maxlen: 24
85.254.151.0/24 maxlen: 24
85.254.149.0/24 maxlen: 24
85.254.152.0/22 maxlen: 22
85.254.170.0/24 maxlen: 24
85.254.176.0/23 maxlen: 23
80.81.61.0/24 maxlen: 24
85.254.84.0/23 maxlen: 23
85.254.80.0/22 maxlen: 22
85.254.94.0/24 maxlen: 24
85.254.98.0/23 maxlen: 23
85.254.96.0/22 maxlen: 22
85.254.96.0/23 maxlen: 23
85.254.92.0/22 maxlen: 22
85.254.92.0/23 maxlen: 23
85.254.95.0/24 maxlen: 24
85.254.92.0/24 maxlen: 24
85.254.93.0/24 maxlen: 24
85.254.104.0/21 maxlen: 21
85.254.103.0/24 maxlen: 24
85.254.101.0/24 maxlen: 24
85.254.102.0/24 maxlen: 24
85.254.100.0/24 maxlen: 24
85.254.112.0/21 maxlen: 21
85.254.124.0/23 maxlen: 23
159.148.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:81:c6:b7:59:78:b2:07:e3:39:53:e6:5a:de:26:c2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 5 11:52:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c37d4fda98fed9e1dae9433fb8095fbb14857f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:b5:36:17:52:db:b9:57:03:af:ac:ef:09:
93:d3:95:64:43:f3:44:4b:08:d5:e2:77:f6:82:a5:
ba:c5:9c:32:2d:ec:d5:dd:3e:f9:47:ae:74:7c:e0:
b6:d0:ba:c8:6b:0c:bf:b3:55:f4:5c:df:0f:73:00:
33:d4:0e:49:ed:4a:5e:7d:d4:f8:db:40:98:6e:5f:
bf:00:f1:c1:79:70:99:84:a1:b1:a6:b7:4a:9b:aa:
8a:08:69:29:83:d3:b3:6f:6d:5f:95:a9:bd:15:73:
92:75:f8:7b:13:cc:c7:d1:93:c4:80:7d:3a:92:c5:
8d:cf:04:09:e8:dc:95:31:86:4e:97:6b:7a:e5:20:
2b:6b:0c:39:6c:f7:74:f3:98:46:6d:a4:fd:5d:e8:
d9:c3:62:b9:ce:9d:b0:0c:f9:3e:4e:e2:84:b3:8f:
52:cc:ba:12:60:43:22:4a:a0:12:11:3c:26:05:03:
8e:5b:44:aa:1e:c4:24:93:10:08:d5:e2:7f:b5:c8:
27:c7:f3:a1:a4:f9:b7:fe:3e:7e:c5:9e:a2:50:a1:
85:06:e1:27:a5:ab:4c:06:f0:3b:3b:f2:cf:e3:5e:
6e:98:1b:31:f0:05:f8:fe:5c:29:46:1f:b0:2e:c6:
9b:23:91:60:ba:10:07:12:9a:0a:d1:8a:e9:fe:cf:
d5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7D:4F:DA:98:FE:D9:E1:DA:E9:43:3F:B8:09:5F:BB:14:85:7F:29
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/w31P2pj-2eHa6UM_uAlfuxSFfyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.81.61.0/24
85.254.71.0/24
85.254.73.0-85.254.85.255
85.254.92.0-85.254.119.255
85.254.124.0/23
85.254.141.0/24
85.254.149.0/24
85.254.151.0-85.254.155.255
85.254.170.0/24
85.254.176.0/23
159.148.249.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:cc:b2:21:7d:5d:fd:35:f8:c9:a7:d7:cf:ab:a6:22:e8:db:
97:62:af:c6:98:c8:3f:2f:ea:32:38:a1:1e:d7:31:2d:03:5f:
68:10:47:a3:d9:3f:27:a1:17:37:33:58:d3:e3:44:bd:e4:29:
96:12:85:85:a8:45:c0:f2:c9:4b:f0:b0:d8:50:f3:4d:83:54:
06:3f:66:34:51:2c:80:bf:76:46:cb:c1:42:a4:8b:da:ab:4b:
30:13:67:a2:1a:bc:00:80:83:e1:ef:12:51:7d:90:38:5a:82:
b5:fd:2f:25:df:e3:b3:38:a9:94:af:d6:3b:d8:86:1a:73:19:
90:6e:ca:03:19:fd:7e:c7:80:05:a0:e9:50:69:9e:e4:ee:56:
f1:2e:43:5a:b5:07:fc:45:bb:36:ba:3d:6e:33:81:73:ee:9f:
1f:51:53:97:86:04:0f:80:55:8f:f4:e1:e4:a5:f6:06:53:82:
79:73:97:38:46:d6:9f:0e:cf:63:f0:84:25:4e:3e:df:e0:a3:
3b:84:8e:87:48:25:99:5f:b5:ce:9d:6a:cc:6f:fc:24:b6:20:
c2:20:bb:df:38:a7:ed:49:29:78:82:d4:ee:64:ae:5e:77:02:
15:f2:c8:8f:27:05:66:9b:ac:fd:c4:9b:fa:8d:8c:65:49:61:
03:66:9c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:46 2023 by rpki-client on console-fra.rpki-client.org