Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/iaklK1nrXwYpyrcqEAa-5-9xRiY.roa
File: iaklK1nrXwYpyrcqEAa-5-9xRiY.roa (raw, json)
Hash identifier: DSyT0Rz7jOyNkQnkAJILzDHjzs0O3fk+sP49T8Ah7gA=
Subject key identifier: 89:A9:25:2B:59:EB:5F:06:29:CA:B7:2A:10:06:BE:E7:EF:71:46:26
Certificate issuer: /CN=112ba797577ea60a561af9a4598c45060e3b7088
Certificate serial: 01869D27FDE73C429B0AC65DBCC4C1BD8812
Authority key identifier: 11:2B:A7:97:57:7E:A6:0A:56:1A:F9:A4:59:8C:45:06:0E:3B:70:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESunl1d-pgpWGvmkWYxFBg47cIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/iaklK1nrXwYpyrcqEAa-5-9xRiY.roa
Signing time: Wed 01 Mar 2023 12:31:29 +0000
ROA not before: Wed 01 Mar 2023 12:31:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34779
IP address blocks: 93.103.224.0/19 maxlen: 19
93.103.160.0/19 maxlen: 19
91.246.224.0/19 maxlen: 19
93.103.192.0/19 maxlen: 19
89.233.112.0/20 maxlen: 20
194.28.108.0/22 maxlen: 22
89.212.0.0/18 maxlen: 18
84.255.209.0/24 maxlen: 24
84.255.210.0/24 maxlen: 24
188.159.224.0/19 maxlen: 19
188.230.160.0/19 maxlen: 19
84.255.192.0/18 maxlen: 18
188.230.128.0/19 maxlen: 19
93.103.0.0/19 maxlen: 19
89.212.128.0/18 maxlen: 18
93.103.32.0/19 maxlen: 19
188.230.192.0/19 maxlen: 19
193.138.32.0/20 maxlen: 20
193.138.32.0/19 maxlen: 24
89.212.64.0/18 maxlen: 18
193.138.48.0/21 maxlen: 21
193.138.56.0/22 maxlen: 22
193.138.62.0/24 maxlen: 24
193.138.63.0/24 maxlen: 24
193.138.60.0/23 maxlen: 23
188.230.224.0/19 maxlen: 19
93.103.96.0/19 maxlen: 19
46.248.64.0/19 maxlen: 19
185.179.48.0/22 maxlen: 22
89.212.23.160/27 maxlen: 27
119.12.128.0/20 maxlen: 20
93.103.128.0/19 maxlen: 19
93.103.64.0/19 maxlen: 19
89.212.192.0/18 maxlen: 18
185.49.116.0/22 maxlen: 22
2a01:263::/32 maxlen: 32
2a01:261::/32 maxlen: 32
2a01:264::/32 maxlen: 32
2a01:267::/32 maxlen: 32
2a01:260::/32 maxlen: 32
2a01:266::/32 maxlen: 32
2a01:265::/32 maxlen: 32
2a01:262::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:27:fd:e7:3c:42:9b:0a:c6:5d:bc:c4:c1:bd:88:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112ba797577ea60a561af9a4598c45060e3b7088
Validity
Not Before: Mar 1 12:31:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89a9252b59eb5f0629cab72a1006bee7ef714626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a5:fa:e9:df:51:aa:7f:fb:0a:d5:49:1f:9f:
ae:3d:80:bb:af:7b:23:9a:70:91:1f:1c:61:32:04:
5c:77:ad:93:8e:16:0e:d1:2b:1d:41:f7:70:ad:ca:
17:d3:28:89:4f:69:8f:dd:3f:fe:a7:78:1a:fb:d8:
6a:25:a1:ab:40:2b:39:39:9f:f7:b1:5d:63:43:3a:
6a:6f:ef:2d:05:0f:42:76:97:55:bd:c2:73:3a:a4:
28:1f:26:3b:64:76:18:df:36:fd:69:25:02:01:b8:
4c:e1:82:67:45:6f:98:7f:10:0b:fd:70:73:af:9b:
f1:9c:11:ba:e2:8e:34:66:65:04:a1:6e:67:11:4e:
a0:8f:73:5b:29:8d:27:b4:83:ba:48:b9:4c:93:72:
30:fd:6b:dd:92:1f:54:b4:45:5f:cf:58:e6:44:6a:
81:34:fe:13:a9:01:e5:34:c0:a6:0c:9b:c7:f6:14:
ab:41:7f:2e:b2:ef:0f:5a:dd:25:92:2b:53:ff:ab:
ba:ea:c1:2e:7e:66:2f:1a:c7:82:06:1f:e0:a9:a2:
80:5e:53:a7:84:01:93:9b:eb:3e:93:e0:8f:ac:55:
16:5b:19:3b:e6:fa:7f:ea:a1:ed:96:2f:2c:2e:95:
a6:bc:68:b6:18:3f:57:4c:5a:cf:cb:1b:62:f4:0e:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A9:25:2B:59:EB:5F:06:29:CA:B7:2A:10:06:BE:E7:EF:71:46:26
X509v3 Authority Key Identifier:
keyid:11:2B:A7:97:57:7E:A6:0A:56:1A:F9:A4:59:8C:45:06:0E:3B:70:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESunl1d-pgpWGvmkWYxFBg47cIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/iaklK1nrXwYpyrcqEAa-5-9xRiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/de5c5d-5812-4fe8-b3c0-6bc443f35544/1/ESunl1d-pgpWGvmkWYxFBg47cIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.248.64.0/19
84.255.192.0/18
89.212.0.0/16
89.233.112.0/20
91.246.224.0/19
93.103.0.0/16
119.12.128.0/20
185.49.116.0/22
185.179.48.0/22
188.159.224.0/19
188.230.128.0/17
193.138.32.0/19
194.28.108.0/22
IPv6:
2a01:260::/29
Signature Algorithm: sha256WithRSAEncryption
85:c8:ad:6a:bf:78:63:11:80:2b:b6:b0:a0:ca:5c:b3:18:71:
2f:55:ab:60:a6:94:d4:43:a6:9f:b8:2b:94:2e:44:3d:ac:f3:
f3:39:a8:69:ae:f1:4c:4c:61:91:2c:e0:93:40:54:5d:67:a4:
7a:cf:4b:eb:12:27:d5:66:1c:e6:4a:78:26:3c:f7:71:86:9a:
e6:55:11:03:c7:35:33:57:27:65:02:ae:a4:8c:8b:0c:73:e7:
c1:7f:74:35:38:ab:27:92:e6:4d:a1:e3:56:ec:c5:e7:70:d8:
42:b2:90:ed:ad:0d:09:fb:34:88:d9:03:77:a5:78:3b:e8:31:
90:b8:c1:3e:e7:b9:82:6f:d4:be:0b:94:f6:4f:da:98:4e:4e:
8e:fa:a3:95:71:78:c8:c8:44:80:06:e0:6f:be:60:06:5a:13:
91:9b:fb:93:8a:c2:6e:65:c4:36:2c:1b:26:59:d5:c7:e9:f8:
43:97:ce:3a:b1:7e:81:21:94:1e:9c:69:61:ac:f0:14:8b:f7:
f0:4b:20:f6:36:2d:38:7e:01:66:0c:15:2f:c1:18:fa:b1:67:
bc:ae:75:e3:da:4c:f0:e2:39:c4:86:22:c9:5b:44:89:06:dc:
9d:5b:6c:28:35:12:48:df:2a:7e:89:e9:74:c1:88:47:f3:5d:
85:07:4b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 11:02:06 2023 by rpki-client on console-fra.rpki-client.org