Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/ztMh9Fm3juRg2XaoOjAWaTtJNtc.roa
File: ztMh9Fm3juRg2XaoOjAWaTtJNtc.roa (raw, json)
Hash identifier: EcnPef6vexzX451GWvMOKepOa2yqUEbqJW5or1cdf5U=
Subject key identifier: CE:D3:21:F4:59:B7:8E:E4:60:D9:76:A8:3A:30:16:69:3B:49:36:D7
Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774
Certificate serial: 0186FE408777694A3F40DA46F3AA5D8109D7
Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/ztMh9Fm3juRg2XaoOjAWaTtJNtc.roa
Signing time: Mon 20 Mar 2023 09:01:27 +0000
ROA not before: Mon 20 Mar 2023 09:01:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 212.95.96.0/19 maxlen: 24
92.252.0.0/17 maxlen: 24
212.6.64.0/18 maxlen: 24
212.68.64.0/19 maxlen: 24
85.16.0.0/16 maxlen: 24
95.33.0.0/16 maxlen: 24
85.8.64.0/18 maxlen: 24
213.252.128.0/18 maxlen: 24
37.138.0.0/16 maxlen: 24
82.149.160.0/19 maxlen: 24
90.153.0.0/17 maxlen: 24
89.166.128.0/17 maxlen: 24
213.168.192.0/19 maxlen: 24
80.66.0.0/19 maxlen: 24
62.89.160.0/19 maxlen: 24
213.183.160.0/19 maxlen: 24
91.96.0.0/15 maxlen: 24
31.150.0.0/16 maxlen: 24
80.228.0.0/16 maxlen: 24
87.245.0.0/18 maxlen: 24
89.233.64.0/19 maxlen: 24
31.184.0.0/18 maxlen: 24
91.248.0.0/15 maxlen: 24
213.182.96.0/19 maxlen: 24
31.187.112.0/20 maxlen: 24
213.170.160.0/19 maxlen: 24
178.142.0.0/16 maxlen: 24
188.118.128.0/18 maxlen: 24
2a00:1470::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:40:87:77:69:4a:3f:40:da:46:f3:aa:5d:81:09:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774
Validity
Not Before: Mar 20 09:01:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ced321f459b78ee460d976a83a3016693b4936d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:53:32:c3:8d:2f:95:91:bf:13:7b:01:41:1f:
68:4b:6c:c3:b9:dc:b7:8f:51:3a:77:98:d8:98:11:
0a:35:53:f4:58:9e:c2:bc:0d:3b:f3:fa:c6:df:f0:
98:60:81:70:a8:e1:af:57:1f:e0:f6:47:57:53:77:
f6:33:ed:96:3f:f4:67:26:17:59:c1:19:b3:23:e8:
3e:52:bc:5f:5c:1e:53:97:d2:8a:39:a1:a7:5a:41:
88:6e:1c:c9:f8:e0:3a:75:e2:51:b2:4a:f5:44:25:
ea:4f:15:61:b6:06:eb:05:f1:ca:36:4b:b7:43:05:
a2:a5:4e:36:f4:09:2e:db:b6:e8:0b:3e:2c:5e:c2:
8c:8a:51:d2:30:a4:8c:06:2a:76:6f:ee:12:36:71:
f5:20:7c:c9:ca:8e:ff:ec:d0:e1:b6:13:e3:7c:35:
f5:d7:49:87:f3:91:5e:51:ec:2f:90:fd:fe:a9:6b:
a6:8f:51:42:57:c7:25:22:08:7f:8a:c6:83:79:fe:
ab:81:94:47:8c:03:8a:29:1a:6a:6d:e3:11:13:f8:
9d:c4:6c:c8:8a:54:65:eb:74:8c:bc:04:19:f6:43:
7b:92:cc:44:75:a6:f5:e0:2e:62:e9:61:6d:21:51:
9d:13:61:0a:0f:d6:59:00:8d:f1:b5:0f:d2:f9:f3:
4f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D3:21:F4:59:B7:8E:E4:60:D9:76:A8:3A:30:16:69:3B:49:36:D7
X509v3 Authority Key Identifier:
keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/ztMh9Fm3juRg2XaoOjAWaTtJNtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.150.0.0/16
31.184.0.0/18
31.187.112.0/20
37.138.0.0/16
62.89.160.0/19
80.66.0.0/19
80.228.0.0/16
82.149.160.0/19
85.8.64.0/18
85.16.0.0/16
87.245.0.0/18
89.166.128.0/17
89.233.64.0/19
90.153.0.0/17
91.96.0.0/15
91.248.0.0/15
92.252.0.0/17
95.33.0.0/16
178.142.0.0/16
188.118.128.0/18
212.6.64.0/18
212.68.64.0/19
212.95.96.0/19
213.168.192.0/19
213.170.160.0/19
213.182.96.0/19
213.183.160.0/19
213.252.128.0/18
IPv6:
2a00:1470::/32
Signature Algorithm: sha256WithRSAEncryption
a9:33:1f:47:01:02:8f:02:63:83:61:c9:51:02:51:9b:4d:8f:
d5:9d:ca:c5:26:3c:0b:1d:1f:4f:ab:5a:9b:c5:fc:99:b7:63:
60:85:23:8a:ba:68:9f:0f:85:7c:2a:ae:53:57:4d:3a:0f:0e:
2d:e9:b1:9f:e8:93:83:92:2a:18:8d:e9:23:0f:3c:24:2f:3d:
c9:9e:6b:08:c9:09:0f:ce:9d:56:7e:78:bc:a1:a7:1d:9f:53:
45:6a:e5:43:f9:87:42:08:b0:1f:cf:89:df:5e:0a:8c:a9:37:
60:65:8b:f3:41:49:af:ba:4f:73:ef:14:0a:15:23:13:82:7c:
1d:e4:06:aa:2b:15:a6:ec:08:c2:e8:ca:f4:b7:6c:8a:ae:c7:
7e:33:98:87:9a:ca:f3:2b:8f:43:19:72:a4:ca:54:af:26:7f:
43:c0:8f:6e:d3:de:37:84:5f:c5:55:40:ea:af:66:4d:ee:a3:
5b:35:d7:4c:5b:3b:9b:5d:d0:c5:85:a7:96:bf:44:41:98:43:
14:0b:df:b6:62:b5:ca:b3:93:81:54:6f:46:ef:22:18:c5:7b:
ec:b6:0a:76:78:54:2a:5e:92:20:7f:de:8c:63:a1:43:72:0e:
ce:9f:0f:cf:69:d9:13:4e:07:bf:ee:96:93:d5:99:6a:1b:62:
a2:af:01:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:48 2023 by rpki-client on console-fra.rpki-client.org