Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/cXjOVRhlHgDrJaZQYlwMle2-jw4.roa
File: cXjOVRhlHgDrJaZQYlwMle2-jw4.roa (raw, json)
Hash identifier: olL073trHu16WP5nL9mCT0orB1y+XlAvbowHkoY+HgA=
Subject key identifier: 71:78:CE:55:18:65:1E:00:EB:25:A6:50:62:5C:0C:95:ED:BE:8F:0E
Certificate issuer: /CN=f3b90781dbbebdb8ec42baf66488059ea5866aac
Certificate serial: 018AB6AC437353C9540028AF0E15AA81BA4D
Authority key identifier: F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/cXjOVRhlHgDrJaZQYlwMle2-jw4.roa
Signing time: Thu 21 Sep 2023 07:37:37 +0000
ROA not before: Thu 21 Sep 2023 07:37:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61266
IP address blocks: 185.10.244.0/22 maxlen: 22
2a03:6947:1700::/40 maxlen: 40
2a03:6947:f00::/40 maxlen: 40
2a03:6947:300::/40 maxlen: 40
2a03:6947:1100::/40 maxlen: 40
2a03:6947:e00::/40 maxlen: 40
2a03:6947:500::/40 maxlen: 40
2a03:6947:400::/40 maxlen: 40
2a03:6947:1200::/40 maxlen: 40
2a03:6947:900::/40 maxlen: 40
2a03:6947:1d00::/40 maxlen: 40
2a03:6947:a00::/40 maxlen: 40
2a03:6947:1b00::/40 maxlen: 40
2a03:6947:1300::/40 maxlen: 40
2a03:6947:1900::/40 maxlen: 40
2a03:6940::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:ac:43:73:53:c9:54:00:28:af:0e:15:aa:81:ba:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b90781dbbebdb8ec42baf66488059ea5866aac
Validity
Not Before: Sep 21 07:37:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7178ce5518651e00eb25a650625c0c95edbe8f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:25:95:dd:98:8a:66:b7:6d:f9:68:1d:53:c9:
32:34:4d:d0:06:73:4d:6e:d0:58:84:a8:00:41:ec:
3a:6f:ab:b7:f5:c8:60:37:6e:fb:94:35:1c:8c:ed:
7f:07:0e:e5:5a:47:b4:2f:13:e9:d5:d0:5c:97:5e:
e9:f9:cd:2d:7c:8b:89:4c:07:19:88:8c:21:c6:c2:
b5:98:b1:cb:03:01:c2:aa:9e:64:8e:a8:f4:08:77:
4c:98:3e:b6:b8:1b:57:72:c8:db:85:89:ac:44:89:
02:2e:9a:ae:25:2e:5c:2c:d3:26:8f:fb:93:8b:55:
4f:31:3c:44:5d:e2:0f:d3:2e:85:6e:2d:74:27:0c:
f6:c6:35:a1:0e:4b:0d:8a:a2:5f:c4:65:78:58:c0:
57:fd:e1:95:86:5c:48:01:01:94:e7:5a:bb:c9:63:
1b:b6:cc:f0:cd:37:ab:4b:2b:80:f4:85:19:38:1d:
1a:ae:b7:1b:f2:1b:e2:1e:89:ef:1c:84:28:5c:fd:
b7:bb:29:de:02:25:2b:b2:80:5c:d9:2e:56:12:df:
0a:c6:8f:19:2d:7b:a3:ba:9d:f1:64:fa:6b:c8:99:
f9:f7:53:4b:95:bf:fe:12:72:69:59:b6:a2:c9:48:
25:ef:4c:31:b2:a5:01:91:71:3b:f9:c7:c5:c3:e1:
ea:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:78:CE:55:18:65:1E:00:EB:25:A6:50:62:5C:0C:95:ED:BE:8F:0E
X509v3 Authority Key Identifier:
keyid:F3:B9:07:81:DB:BE:BD:B8:EC:42:BA:F6:64:88:05:9E:A5:86:6A:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87kHgdu-vbjsQrr2ZIgFnqWGaqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/cXjOVRhlHgDrJaZQYlwMle2-jw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8c5808-3165-41dc-90a0-3ef5eb7c8598/1/87kHgdu-vbjsQrr2ZIgFnqWGaqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.244.0/22
IPv6:
2a03:6940::/32
2a03:6947:300::-2a03:6947:5ff:ffff:ffff:ffff:ffff:ffff
2a03:6947:900::-2a03:6947:aff:ffff:ffff:ffff:ffff:ffff
2a03:6947:e00::/39
2a03:6947:1100::-2a03:6947:13ff:ffff:ffff:ffff:ffff:ffff
2a03:6947:1700::/40
2a03:6947:1900::/40
2a03:6947:1b00::/40
2a03:6947:1d00::/40
Signature Algorithm: sha256WithRSAEncryption
2b:58:58:fb:97:77:a9:19:e1:6f:2c:f1:69:f6:9c:8e:fe:d2:
cb:fc:10:0c:dd:bf:ac:a9:af:07:46:cf:41:8c:b4:11:1b:2f:
d8:99:05:14:cc:3a:1e:c7:43:96:26:04:c3:f0:a0:8c:ea:7c:
40:8b:ac:a8:8a:f5:b2:4d:f4:e6:c5:6a:c4:20:25:48:4a:34:
80:8f:27:ac:46:06:52:3a:eb:85:aa:03:e0:46:19:e7:01:ce:
b2:9f:c0:18:fe:d3:f5:3c:2c:85:58:90:f3:48:b1:c7:0e:57:
f2:60:11:00:fd:b3:c7:24:e1:15:63:d5:55:d4:46:4c:ec:fb:
ec:21:6d:3e:84:4f:73:ea:8d:54:d1:a3:d0:91:fb:05:b7:51:
3e:d2:e0:c7:a2:51:51:43:e8:7f:f9:24:55:c0:8d:5e:08:40:
8e:bf:b7:cc:92:5d:05:a2:7e:53:4a:c0:fb:b5:0c:de:c6:09:
37:3e:25:54:ed:35:a3:b6:16:af:17:ee:fc:3e:63:2c:0f:8b:
7f:ad:33:1a:33:80:c8:2d:8f:78:9a:71:5d:7a:17:b2:e5:b9:
14:98:2b:bf:c5:46:36:26:32:5a:fa:3a:f9:25:12:9f:64:f3:
30:ea:69:53:fd:cb:bb:6e:83:34:f3:90:8c:11:a8:6f:e8:f3:
4e:29:d2:06
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Oct 26 10:34:39 2023 by rpki-client on console-ams.rpki-client.org