Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Y_S7F2A_qHenLscb5pDYGnayyvs.roa
File: Y_S7F2A_qHenLscb5pDYGnayyvs.roa (raw, json)
Hash identifier: rG2QSkz/oDfr4HDIe6x2v0w1j8sp4lwTBDRGOXCIaZo=
Subject key identifier: 63:F4:BB:17:60:3F:A8:77:A7:2E:C7:1B:E6:90:D8:1A:76:B2:CA:FB
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018B4364E1C42EE7CF1BA6CF5F8D6A448B0B
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Y_S7F2A_qHenLscb5pDYGnayyvs.roa
Signing time: Wed 18 Oct 2023 15:26:06 +0000
ROA not before: Wed 18 Oct 2023 15:26:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 45.94.171.0/24 maxlen: 24
2.56.109.0/24 maxlen: 24
2.56.108.0/24 maxlen: 24
2.56.110.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
193.30.241.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
45.144.213.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
45.138.183.0/24 maxlen: 24
45.81.114.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
45.81.113.0/24 maxlen: 24
45.81.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:43:64:e1:c4:2e:e7:cf:1b:a6:cf:5f:8d:6a:44:8b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 18 15:26:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63f4bb17603fa877a72ec71be690d81a76b2cafb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:aa:0d:0a:9e:bb:19:3e:de:7c:4e:89:e9:15:
64:45:aa:73:0d:f5:86:fd:89:02:f8:53:c8:68:c8:
ba:64:25:e2:69:c1:ab:30:18:d7:ee:74:ec:7d:d4:
6f:06:a9:a0:3b:b2:b0:81:88:2f:31:60:3e:0b:69:
d5:26:e8:08:52:21:3d:d3:d5:df:90:3d:8b:44:07:
68:d7:17:e2:14:72:2b:79:19:31:b3:fe:57:21:6a:
c4:f1:cd:75:9f:e5:8f:b3:e4:7e:d8:03:d5:6d:48:
98:74:08:35:c8:56:99:97:71:ac:1b:41:ae:b6:4f:
7c:58:2e:92:94:79:80:5e:33:f8:38:9b:c0:63:97:
c0:7f:aa:06:7b:98:f6:2e:83:6b:9d:50:a7:48:70:
ad:4d:29:cd:09:93:d5:e7:c1:fd:c2:14:6c:ed:97:
2b:f3:b3:cd:ee:9e:76:b8:b7:4f:89:84:bc:cd:43:
1a:f9:fa:bf:5b:e9:fa:f2:3d:9a:5c:2f:26:b7:39:
e8:e5:48:56:92:c7:03:e3:4f:e4:3f:ad:a4:4f:b5:
af:de:9d:27:ee:58:87:c9:8c:6c:2c:96:0d:0a:ea:
b1:ad:0c:3e:81:26:15:a5:87:cb:18:65:22:a6:78:
28:ce:e3:ce:4c:f2:6d:80:e5:58:0a:35:60:22:1c:
bb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F4:BB:17:60:3F:A8:77:A7:2E:C7:1B:E6:90:D8:1A:76:B2:CA:FB
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Y_S7F2A_qHenLscb5pDYGnayyvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0-2.56.110.255
45.81.113.0-45.81.115.255
45.88.139.0/24
45.94.171.0/24
45.138.183.0/24
45.144.213.0/24
77.83.39.0/24
85.209.120.0/23
193.30.241.0/24
195.62.24.0/24
195.177.95.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:b0:21:b7:21:25:dd:a6:19:b7:f1:4f:5f:97:7c:8a:02:26:
c0:73:96:e0:d8:17:74:4b:fb:dc:f5:4b:6f:ca:07:77:89:da:
3a:0d:64:16:0c:12:2d:b7:f1:0b:cb:5f:e4:91:12:3b:80:dd:
5e:19:38:9f:10:78:77:62:5d:6b:7a:76:73:cf:d3:21:89:f1:
92:43:16:f5:7a:b0:ee:fa:18:23:cf:d7:71:3f:8d:99:05:01:
6a:03:df:f0:d3:e2:61:63:20:ed:e7:97:9d:dd:fc:0f:51:c2:
eb:37:10:cd:3f:76:dc:05:78:50:76:fe:3a:e5:e5:d8:8e:f5:
30:b4:36:3f:9a:4a:b1:ea:10:bd:d3:cb:c0:ec:c4:99:31:9c:
48:de:24:8e:0e:b9:36:e4:c3:75:c5:7b:20:4e:f3:5e:67:4a:
9c:44:47:a5:d9:10:92:81:46:cd:70:75:17:8a:0d:b2:38:8e:
e7:76:92:c9:b5:a8:26:bb:74:01:48:e1:fc:4b:27:89:d3:73:
8c:97:05:68:69:88:55:cb:7d:46:b0:c4:4f:49:74:ed:58:e1:
f9:b1:b1:fe:1e:8d:f5:05:c3:61:34:be:24:df:09:cc:f3:38:
aa:35:0a:79:6e:53:c9:61:ed:3f:15:7e:d7:c1:cf:2e:06:43:
c4:77:9c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 30 11:50:15 2023 by rpki-client on console-fra.rpki-client.org