Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/XpHb1f-5_rlqcC0_8yTA_q3LquA.roa
File: XpHb1f-5_rlqcC0_8yTA_q3LquA.roa (raw, json)
Hash identifier: HeCoLvbcvYwouRkHOqm719bV7g5iS9SVyclrNuqU4Ks=
Subject key identifier: 5E:91:DB:D5:FF:B9:FE:B9:6A:70:2D:3F:F3:24:C0:FE:AD:CB:AA:E0
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 018572BA4C8BE81D42FDDB6AD258C51093D7
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/XpHb1f-5_rlqcC0_8yTA_q3LquA.roa
Signing time: Mon 02 Jan 2023 13:44:49 +0000
ROA not before: Mon 02 Jan 2023 13:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60304
IP address blocks: 185.33.35.0/24 maxlen: 24
185.33.34.0/24 maxlen: 24
185.33.33.0/24 maxlen: 24
185.33.32.0/24 maxlen: 24
2a04:5900::/48 maxlen: 48
2a04:5901:7::/48 maxlen: 48
2a04:5901:22::/48 maxlen: 48
2a04:5901:18::/48 maxlen: 48
2a04:5901:29::/48 maxlen: 48
2a04:5901:e::/48 maxlen: 48
2a04:5901:1f::/48 maxlen: 48
2a04:5901:4::/48 maxlen: 48
2a04:5901:15::/48 maxlen: 48
2a04:5901:b::/48 maxlen: 48
2a04:5901:1::/48 maxlen: 48
2a04:5901:26::/48 maxlen: 48
2a04:5901:17::/48 maxlen: 48
2a04:5901:d::/48 maxlen: 48
2a04:5900:1::/48 maxlen: 48
2a04:5901:3::/48 maxlen: 48
2a04:5901:28::/48 maxlen: 48
2a04:5901:1e::/48 maxlen: 48
2a04:5901:14::/48 maxlen: 48
2a04:5901:25::/48 maxlen: 48
2a04:5901:a::/48 maxlen: 48
2a04:5901:1b::/48 maxlen: 48
2a04:5901:11::/48 maxlen: 48
2a04:5901:27::/48 maxlen: 48
2a04:5901:c::/48 maxlen: 48
2a04:5901:1d::/48 maxlen: 48
2a04:5901:2::/48 maxlen: 48
2a04:5901:13::/48 maxlen: 48
2a04:5901:9::/48 maxlen: 48
2a04:5900::/32 maxlen: 32
2a04:5901:24::/48 maxlen: 48
2a04:5901:1a::/48 maxlen: 48
2a04:5901:10::/48 maxlen: 48
2a04:5901:21::/48 maxlen: 48
2a04:5901:6::/48 maxlen: 48
2a04:5901:1c::/48 maxlen: 48
2a04:5901:12::/48 maxlen: 48
2a04:5901:23::/48 maxlen: 48
2a04:5901:8::/48 maxlen: 48
2a04:5900::/29 maxlen: 29
2a04:5901:19::/48 maxlen: 48
2a04:5901:f::/48 maxlen: 48
2a04:5901:5::/48 maxlen: 48
2a04:5901::/32 maxlen: 32
2a04:5901:20::/48 maxlen: 48
2a04:5901:16::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:4c:8b:e8:1d:42:fd:db:6a:d2:58:c5:10:93:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Jan 2 13:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e91dbd5ffb9feb96a702d3ff324c0feadcbaae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ff:21:42:d0:6d:ec:f6:19:85:8b:79:54:31:
0b:42:28:a4:b2:d2:d1:ea:b6:a9:99:91:f9:7f:f2:
a5:0e:f7:13:07:20:7e:3f:d8:2a:69:d1:63:50:87:
32:06:26:bc:0e:63:4f:10:6a:33:b6:35:ff:fe:c3:
bc:9e:d3:6c:af:0c:63:59:b6:63:25:7a:75:be:78:
61:f6:03:b4:a8:5a:6b:88:36:e9:6a:f1:3a:28:f0:
18:35:89:b5:ef:f6:23:37:c1:4f:19:55:04:9a:2a:
53:e1:40:94:95:e0:90:3f:8d:64:71:aa:76:12:a0:
35:c5:66:93:e4:b8:21:5e:e9:c5:87:6b:34:7d:79:
f3:96:95:ff:da:48:e7:ad:a2:7d:56:97:fb:41:3b:
76:a9:be:01:ff:df:78:d1:6c:52:0d:92:37:49:b7:
f1:66:bf:07:11:90:6a:f4:67:20:70:08:37:6e:98:
12:83:c0:37:16:b0:0c:2b:00:07:1b:7e:7c:6b:62:
03:31:62:80:53:69:c1:fe:d8:58:fb:e6:6b:66:b6:
f7:87:98:64:29:29:61:7e:f0:fa:1b:30:5d:7c:2b:
e8:81:9b:1f:68:73:79:6c:0a:5c:0b:50:a2:db:d2:
44:7b:16:b1:5f:9f:59:99:e6:73:59:a0:60:35:d1:
f9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:91:DB:D5:FF:B9:FE:B9:6A:70:2D:3F:F3:24:C0:FE:AD:CB:AA:E0
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/XpHb1f-5_rlqcC0_8yTA_q3LquA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.32.0/22
IPv6:
2a04:5900::/29
Signature Algorithm: sha256WithRSAEncryption
0c:b9:1e:ed:94:08:cb:9b:37:b5:53:cc:29:16:b4:d7:e7:16:
54:87:c2:03:f3:fa:16:08:27:3d:80:3d:0f:66:e1:2c:0d:83:
a0:98:c2:fb:9a:d5:81:ce:5b:e9:1d:b0:f0:69:34:7b:31:00:
16:bd:c7:2c:03:2f:4f:fd:43:6b:2d:e1:46:6d:55:b1:94:74:
24:f6:5d:9c:f4:6d:b5:62:6a:dd:78:f9:cf:24:07:22:50:87:
f5:a0:30:47:6e:27:f4:0d:76:4d:7b:ba:a1:14:68:43:10:f6:
5a:8f:9a:e6:72:6f:30:58:6b:20:8a:1c:9d:60:ea:ff:26:b5:
23:ed:ad:00:89:f5:92:99:c7:bf:65:d3:4b:b7:b6:97:c1:21:
c8:1e:09:9e:43:92:7e:7e:d6:5d:d0:41:3e:f9:cb:c0:81:8e:
26:2a:31:f0:87:9b:04:4d:d9:cf:06:d6:a4:62:21:f4:2c:3e:
86:33:29:51:cd:ac:81:c9:ab:1c:02:81:29:dd:07:22:38:11:
4c:1e:9f:fe:2b:08:4b:e0:4b:07:0c:99:e7:7a:36:b8:61:e6:
e6:4b:d2:1f:a6:39:10:98:f8:1c:cd:bd:22:c1:2f:8f:08:86:
0c:5e:98:7d:33:84:cb:25:47:2f:6b:4e:08:04:b5:70:21:ce:
16:99:77:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org