Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RiLL8bQCp0F9YkNnozcs95-ggVM.roa
File: RiLL8bQCp0F9YkNnozcs95-ggVM.roa (raw, json)
Hash identifier: +YbKSipZYgtvvsarmUd8jt4XFfQhQueRBYq0wiR3Qdg=
Subject key identifier: 46:22:CB:F1:B4:02:A7:41:7D:62:43:67:A3:37:2C:F7:9F:A0:81:53
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14E8CC14E3C4E5DBE9C97121C8CA78
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RiLL8bQCp0F9YkNnozcs95-ggVM.roa
Signing time: Sun 01 Jan 2023 20:45:19 +0000
ROA not before: Sun 01 Jan 2023 20:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 81.181.68.0/23 maxlen: 24
194.102.36.0/22 maxlen: 24
81.181.72.0/23 maxlen: 24
217.156.16.0/23 maxlen: 24
80.97.40.0/21 maxlen: 24
81.181.104.0/21 maxlen: 24
85.122.120.0/22 maxlen: 22
85.122.124.0/22 maxlen: 24
217.156.48.0/22 maxlen: 24
81.181.14.0/23 maxlen: 24
81.181.26.0/23 maxlen: 24
194.102.148.0/23 maxlen: 24
194.102.160.0/23 maxlen: 24
85.121.48.0/21 maxlen: 24
194.102.174.0/23 maxlen: 24
194.102.180.0/22 maxlen: 24
85.120.224.0/21 maxlen: 24
80.97.96.0/23 maxlen: 24
217.156.94.0/23 maxlen: 24
80.96.54.0/23 maxlen: 24
80.96.102.0/23 maxlen: 24
85.121.168.0/22 maxlen: 24
194.102.224.0/22 maxlen: 24
80.96.44.0/23 maxlen: 24
81.180.98.0/23 maxlen: 24
85.121.232.0/21 maxlen: 24
194.105.12.0/22 maxlen: 24
194.153.230.0/23 maxlen: 24
81.180.228.0/23 maxlen: 24
194.153.244.0/23 maxlen: 24
85.120.84.0/23 maxlen: 24
81.180.254.0/23 maxlen: 24
81.180.174.0/23 maxlen: 24
85.121.208.0/21 maxlen: 24
80.96.156.0/22 maxlen: 24
194.153.225.0/24 maxlen: 24
193.226.76.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e8:cc:14:e3:c4:e5:db:e9:c9:71:21:c8:ca:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4622cbf1b402a7417d624367a3372cf79fa08153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:d8:f9:e2:ad:13:d7:3f:3e:85:0c:00:2b:
da:32:d6:c2:74:8b:51:5f:b6:44:02:17:71:f8:b1:
73:24:bf:45:02:8d:c4:e6:21:a4:5e:88:07:3e:65:
26:88:6f:c7:40:0a:00:a8:2e:27:3e:49:47:a4:be:
29:69:a6:dc:a9:a8:f8:92:64:c0:bc:5e:bb:f9:91:
c9:08:f1:98:61:de:44:58:08:e8:59:77:17:f6:6f:
58:c2:cf:92:08:7d:9c:67:82:6d:3b:08:6f:46:fa:
07:be:b8:36:0d:8e:d5:2a:a7:37:0b:07:9c:8f:09:
cc:4f:88:70:96:c9:fc:b5:9b:78:11:89:5d:66:e0:
0a:05:ac:f4:d0:eb:01:5d:af:8a:07:6d:68:1e:43:
07:2d:6c:b1:39:d3:d0:8e:0c:d2:1a:24:c4:62:57:
7e:f9:18:f0:b6:1d:e5:f5:9c:1e:c1:ca:61:f5:2f:
e7:0a:67:03:8d:8c:5f:bf:49:c8:d4:e0:6f:5b:78:
4a:ad:96:c1:da:89:a0:d7:33:85:a9:df:e6:91:5e:
b4:67:b0:c1:63:ed:4f:d3:35:b9:52:bf:88:55:e0:
9b:04:a7:5c:cb:c8:8d:38:80:c3:e8:c7:b2:18:ab:
a7:22:91:3d:e2:5a:5b:39:cd:df:0f:f4:8b:f1:7f:
88:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:22:CB:F1:B4:02:A7:41:7D:62:43:67:A3:37:2C:F7:9F:A0:81:53
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/RiLL8bQCp0F9YkNnozcs95-ggVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.44.0/23
80.96.54.0/23
80.96.102.0/23
80.96.156.0/22
80.97.40.0/21
80.97.96.0/23
81.180.98.0/23
81.180.174.0/23
81.180.228.0/23
81.180.254.0/23
81.181.14.0/23
81.181.26.0/23
81.181.68.0/23
81.181.72.0/23
81.181.104.0/21
85.120.84.0/23
85.120.224.0/21
85.121.48.0/21
85.121.168.0/22
85.121.208.0/21
85.121.232.0/21
85.122.120.0/21
193.226.76.0/22
194.102.36.0/22
194.102.148.0/23
194.102.160.0/23
194.102.174.0/23
194.102.180.0/22
194.102.224.0/22
194.105.12.0/22
194.153.225.0/24
194.153.230.0/23
194.153.244.0/23
217.156.16.0/23
217.156.48.0/22
217.156.94.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:34:29:70:a6:f2:42:09:9d:12:a9:30:47:7d:32:98:2a:5d:
71:dd:d3:d5:72:43:04:7f:9a:b0:12:ff:3b:e8:de:ab:b4:2b:
ef:cb:5d:68:ea:2c:86:4f:96:ad:91:29:28:8b:35:a7:9c:36:
b8:54:de:67:1c:12:75:e2:14:e7:05:88:b3:f5:be:2d:95:da:
14:d1:b0:e6:d7:f5:07:93:b3:3a:45:91:27:43:8b:77:1b:18:
13:2a:b8:66:8a:68:2e:75:87:9f:84:94:cf:a3:f8:4e:6c:25:
d1:bf:b3:69:47:34:ac:35:1b:46:57:a9:7d:a1:12:c6:c6:5d:
95:14:3e:f3:3c:9f:73:f7:35:de:3b:05:78:d3:2f:ae:22:f4:
90:58:cd:ef:11:9b:76:a4:37:04:2a:8b:31:c8:88:57:19:d8:
ff:b9:9d:97:6e:df:2a:88:0c:d5:3e:e5:cc:b4:af:9f:97:24:
44:66:84:52:61:e2:f3:c8:5c:c0:03:34:1d:79:68:78:55:ce:
ac:19:18:34:ea:3d:6b:4c:0b:64:b9:ce:f1:71:6f:f3:58:51:
9f:8c:9e:bf:97:e6:07:eb:ca:b9:d0:01:a0:93:48:ce:e8:8c:
b0:02:8d:20:f7:5b:ad:75:77:49:47:5b:22:b2:ab:be:a5:98:
d8:ea:a8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 12:22:43 2023 by rpki-client on console-ams.rpki-client.org