Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/lpyhMDxkWqV1FGEUEwxk3UXokaY.roa
File: lpyhMDxkWqV1FGEUEwxk3UXokaY.roa (raw, json)
Hash identifier: wmC80kZPyRXslSacdDEKXaiwcePnT7LpZP/MUICfMB4=
Subject key identifier: 96:9C:A1:30:3C:64:5A:A5:75:14:61:14:13:0C:64:DD:45:E8:91:A6
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0185BA718F9AD9A4C6420FEA2A02BB9EF5D8
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/lpyhMDxkWqV1FGEUEwxk3UXokaY.roa
Signing time: Mon 16 Jan 2023 11:58:02 +0000
ROA not before: Mon 16 Jan 2023 11:58:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.73.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Jan 2023 11:56:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ba:71:8f:9a:d9:a4:c6:42:0f:ea:2a:02:bb:9e:f5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 16 11:58:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=969ca1303c645aa575146114130c64dd45e891a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:02:99:da:a1:70:14:62:10:73:7d:7a:51:18:
f9:27:b9:8a:f7:3a:38:20:c1:b4:ad:8f:24:ba:42:
39:8a:f0:e3:21:61:16:e2:eb:b7:bc:50:3a:18:22:
b2:09:c2:bd:25:df:6b:27:4e:67:5f:88:52:5c:56:
10:ee:ed:09:b1:f8:50:11:72:06:71:2e:7b:b9:27:
77:39:a1:32:62:38:56:73:a3:80:f7:f0:19:83:56:
5e:68:46:cb:f0:81:b8:d5:07:67:e1:cb:a6:e8:49:
0d:ad:6b:51:ec:8e:54:10:f2:f7:bb:46:b2:1d:22:
d6:8f:9e:d9:38:70:89:73:cf:08:9c:3d:4e:a2:9b:
b6:33:98:7b:8b:be:fc:88:44:06:fb:b7:9d:3a:8d:
8b:43:48:45:25:ee:72:94:1e:13:06:3b:33:93:9f:
55:98:56:3e:51:c5:26:af:d0:c0:3e:d3:1e:d3:ef:
d1:ca:06:28:91:8b:5d:d5:89:e7:d3:1e:f7:6c:e4:
90:e6:9b:14:b0:45:69:77:b4:c7:42:07:21:90:2f:
f5:53:a7:d8:39:b3:9c:23:f1:fb:a2:23:78:74:fd:
ab:74:db:74:7b:13:c0:fa:91:08:0d:6b:5c:1a:70:
d6:c1:2e:c0:66:ed:94:50:8c:86:17:40:70:2d:d2:
07:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9C:A1:30:3C:64:5A:A5:75:14:61:14:13:0C:64:DD:45:E8:91:A6
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/lpyhMDxkWqV1FGEUEwxk3UXokaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.72.0/23
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.226.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
14:f3:b6:d8:fa:f7:71:c6:6e:ab:f7:2a:43:29:51:90:13:44:
fd:0d:3e:33:94:4d:96:19:7c:7f:42:8c:15:db:bb:3c:33:81:
17:46:cb:39:c7:fa:c1:35:3a:cb:25:e2:eb:c6:84:49:9d:b9:
3f:aa:53:bc:71:1e:7c:2e:63:4e:54:bd:a1:b3:bc:75:f0:1f:
e9:69:0b:a1:a4:3a:f8:70:9a:20:cd:5f:91:fd:19:72:0c:8f:
37:d2:5b:7e:61:d4:d7:ef:77:d6:36:5c:69:d7:d1:f7:13:f4:
1d:b1:74:a3:21:8a:5f:fa:10:d8:5e:66:21:79:35:03:1e:1c:
b8:9d:90:7d:b4:3c:6f:6d:ac:5c:1d:1e:ad:13:56:9f:a7:14:
46:bf:66:5a:b3:5c:f3:c7:ef:c8:0c:70:cd:45:61:5d:de:5e:
68:45:c9:be:33:59:f5:63:22:74:39:a9:24:20:09:6a:a6:3a:
ee:8f:98:0a:9a:28:7b:1c:c7:c7:4f:10:56:7e:5b:20:76:93:
2c:14:4e:31:cf:7e:ef:bd:a7:18:50:f9:99:e2:b3:4d:3a:fc:
e6:a4:8e:bd:61:cf:f1:07:7e:68:f6:98:66:c1:10:4a:9f:ab:
47:34:de:30:7a:38:63:44:ec:14:34:d7:c2:e5:d1:e9:2e:3c:
03:37:85:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org