Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/m4Sn13r2B6e89v711gZFFtwd28Q.roa
File: m4Sn13r2B6e89v711gZFFtwd28Q.roa (raw, json)
Hash identifier: HICNdYRiG4fbuEwbotJ96JBzd4XRpaey+Z2/16f1pr8=
Subject key identifier: 9B:84:A7:D7:7A:F6:07:A7:BC:F6:FE:F5:D6:06:45:16:DC:1D:DB:C4
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018A4A68024A78B6D3E5CD6320AE5BB8E903
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/m4Sn13r2B6e89v711gZFFtwd28Q.roa
Signing time: Thu 31 Aug 2023 07:04:04 +0000
ROA not before: Thu 31 Aug 2023 07:04:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
193.231.194.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
194.102.106.0/23 maxlen: 23
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.69.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:68:02:4a:78:b6:d3:e5:cd:63:20:ae:5b:b8:e9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 31 07:04:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b84a7d77af607a7bcf6fef5d6064516dc1ddbc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4d:36:a3:d4:cb:59:83:6c:25:6e:c8:c6:4f:
34:12:a6:b7:18:3d:56:b2:f0:6c:d0:be:ec:e1:2f:
66:ef:90:0f:1d:7d:3b:af:a3:34:1f:44:51:a3:c1:
ee:34:1e:d9:ce:97:e1:9a:08:a2:8c:20:13:c1:b7:
2a:57:15:8b:e9:77:d8:d8:90:54:ed:1b:8f:be:f3:
d5:41:6f:22:56:7e:aa:7a:c4:e1:fa:23:b4:8d:9c:
f3:ca:7c:74:ac:f2:78:d1:d8:ac:6e:93:69:1b:9d:
cf:16:7a:21:c6:dc:11:bb:52:e2:c5:98:2b:c0:4a:
4c:8f:ec:fc:00:d1:02:b6:6f:aa:df:54:10:3f:e2:
95:1c:90:7a:48:00:97:db:a4:50:89:be:95:a6:89:
cc:fb:c1:79:54:87:64:b5:ed:e5:be:5a:01:48:09:
4a:f2:d4:85:6b:27:2c:00:52:8b:2d:86:4f:4c:a7:
ab:7e:95:53:15:83:51:6c:6f:fd:8d:bc:58:df:75:
9f:81:bc:7d:e8:38:7f:e8:2f:61:af:e3:1d:0a:ed:
e8:df:66:d4:fb:7e:64:3b:99:0a:80:c4:35:eb:ea:
37:86:fb:d1:b6:eb:1a:01:8d:c2:89:dc:ed:61:1f:
c5:8f:b1:e8:12:6f:cb:0d:48:a8:65:e3:ea:14:46:
a8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:84:A7:D7:7A:F6:07:A7:BC:F6:FE:F5:D6:06:45:16:DC:1D:DB:C4
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/m4Sn13r2B6e89v711gZFFtwd28Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.69.0/24
80.96.72.0/24
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.194.0/24
193.231.226.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.106.0/23
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
83:2a:30:d7:52:87:ec:d2:c1:46:60:a7:3e:38:8a:02:09:33:
96:59:db:81:8c:43:fe:63:42:cf:54:24:1b:f7:bb:ee:0a:d3:
bb:76:90:52:bb:bc:2b:b2:c5:81:09:f9:4d:dd:7e:96:ab:68:
a1:bd:81:aa:2e:e5:b2:1f:95:7e:8f:16:aa:04:9d:23:6c:df:
b1:ce:15:26:9e:b2:df:22:cb:96:c3:12:29:cd:a0:24:8f:06:
d1:2b:9e:48:5c:23:27:f0:cf:ab:33:d5:76:87:56:29:a2:40:
a1:99:96:4d:72:b5:8c:03:84:e2:e3:ab:7b:b4:79:26:cc:e7:
45:66:cd:30:a4:35:6e:00:dc:7d:6e:d9:d7:75:c3:06:95:9d:
0e:09:7b:ff:14:a6:ce:40:e5:03:e1:3d:6e:a7:71:cc:6f:07:
2a:d2:bb:1e:69:ee:3f:de:8b:a4:d6:27:5a:e5:f1:bf:c4:85:
c5:28:b2:a8:08:df:ad:63:ea:d6:38:a0:e6:c4:db:ac:10:c3:
cb:2d:ba:fc:cb:e6:d5:98:c3:0a:f9:e0:c1:29:ac:8c:ac:67:
69:d0:8d:ca:55:65:d4:3c:a3:87:6b:3c:ac:b4:89:fe:12:32:
43:b0:7d:da:51:d0:a5:fc:0b:77:e1:1e:ca:fb:36:e4:63:2f:
4b:9e:22:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 6 09:06:49 2023 by rpki-client on console-ams.rpki-client.org