Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/9R0SM_1SqECWubcEx-uHjghDzYo.roa
File: 9R0SM_1SqECWubcEx-uHjghDzYo.roa (raw, json)
Hash identifier: SlBUvtfQuvPGVKS/3hjbpDBm8kIwQG3nz+NUzp1WyZE=
Subject key identifier: F5:1D:12:33:FD:52:A8:40:96:B9:B7:04:C7:EB:87:8E:08:43:CD:8A
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018BB99D53EC16B176F6A971D0428E0E4494
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/9R0SM_1SqECWubcEx-uHjghDzYo.roa
Signing time: Fri 10 Nov 2023 14:22:57 +0000
ROA not before: Fri 10 Nov 2023 14:22:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.132.180.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
45.138.180.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:9d:53:ec:16:b1:76:f6:a9:71:d0:42:8e:0e:44:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 10 14:22:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f51d1233fd52a84096b9b704c7eb878e0843cd8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:93:7f:64:c1:fb:9c:1b:f0:4d:b3:b5:ae:d1:
2b:17:d9:c5:9e:84:30:31:22:79:88:0e:1f:23:bc:
d9:b7:36:6b:a1:eb:33:3c:ca:e1:db:5e:12:e2:ee:
ba:9f:50:a6:87:ce:ce:e9:e8:49:b6:15:d4:6b:53:
4d:96:bf:92:5b:49:c8:af:96:9f:b2:25:a3:8b:8e:
06:09:12:e6:3e:24:5d:79:dd:33:c8:0c:3e:ca:55:
84:b0:d5:d4:1b:33:50:30:98:09:27:cc:41:80:6f:
e3:0f:39:88:b1:58:a4:74:35:2b:a4:8d:f5:45:c6:
f4:78:a8:79:9b:3f:4d:4c:fc:cc:3c:fe:53:8e:5d:
6a:f7:52:68:92:1b:07:7c:60:dd:97:d8:25:8b:1b:
a6:08:1c:59:de:57:ed:d9:be:22:a3:10:69:dc:1b:
43:90:d7:17:e3:db:53:1c:27:03:26:7e:1d:9b:ec:
7b:1c:61:21:7c:9c:54:50:4d:72:da:ee:87:f0:19:
e1:24:38:91:de:09:55:21:8c:d6:c5:8d:5c:89:f8:
f6:45:9d:b4:c3:34:69:ed:0c:8f:ce:aa:5f:18:ec:
3d:c5:eb:5a:e5:81:d3:53:b6:6e:7e:dc:df:ea:17:
83:7a:74:d5:7d:16:c1:ad:8f:18:28:19:88:86:f1:
ad:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1D:12:33:FD:52:A8:40:96:B9:B7:04:C7:EB:87:8E:08:43:CD:8A
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/9R0SM_1SqECWubcEx-uHjghDzYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.180.0/22
45.138.180.0/24
45.144.212.0/24
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
82:8c:18:6b:91:9a:c0:56:d1:c9:81:bf:9e:20:c8:8b:46:65:
63:ae:99:a9:0a:a1:6c:0f:76:81:10:d5:dd:b5:0f:44:4a:8f:
66:b1:9e:4d:71:66:5c:68:af:1c:e1:d1:26:93:db:c2:ae:25:
5e:b6:b9:ec:18:54:59:f0:35:af:0c:7e:a1:d5:58:e4:22:69:
0b:bf:3a:30:37:a8:70:ab:7a:d9:34:91:3b:a5:66:19:26:b4:
fc:7f:dd:10:b3:79:a5:5d:48:4d:07:77:57:df:7c:21:f3:90:
50:0d:96:2b:2c:cb:f1:53:71:1e:a8:93:12:9f:ac:3d:32:43:
ee:3d:c9:44:8f:06:9b:f5:2d:6f:19:5b:59:2b:0e:fa:80:9c:
5e:7d:8f:6d:70:72:68:a7:62:83:d4:12:e0:84:45:d5:af:a8:
cf:2a:ec:d6:53:04:dc:05:e0:c2:e9:5b:1e:97:4d:da:12:b7:
ff:c8:d5:b4:35:6d:dd:27:b0:66:b6:0b:be:97:56:61:54:6e:
07:a2:8b:05:bd:0a:51:1b:f3:2d:cc:96:e3:ac:2c:13:c3:7d:
df:d7:cb:cd:a2:3f:d5:76:bf:17:cd:72:24:ab:bd:73:98:5b:
5d:48:93:c3:b1:a4:7a:2b:53:e2:23:1b:eb:a4:a5:6e:8a:bf:
ac:db:31:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 12 13:16:44 2023 by rpki-client on console-ams.rpki-client.org