Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bAPHjoQ5nXJ2Tad6eKU2jnBy2tE.roa
File: bAPHjoQ5nXJ2Tad6eKU2jnBy2tE.roa (raw, json)
Hash identifier: LQeDgaC/1/hBYUWW1lglQgWqnFW6csOKdu0fRNlFpRU=
Subject key identifier: 6C:03:C7:8E:84:39:9D:72:76:4D:A7:7A:78:A5:36:8E:70:72:DA:D1
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018B8B7E0E8CEC12962679B2FC83B7DD0A40
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bAPHjoQ5nXJ2Tad6eKU2jnBy2tE.roa
Signing time: Wed 01 Nov 2023 15:26:16 +0000
ROA not before: Wed 01 Nov 2023 15:26:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.213.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:7e:0e:8c:ec:12:96:26:79:b2:fc:83:b7:dd:0a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 1 15:26:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c03c78e84399d72764da77a78a5368e7072dad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ac:13:c7:8f:3e:a3:ec:ec:f6:9e:5a:21:aa:
88:8e:61:1d:0b:04:a5:41:60:0a:eb:f6:86:9c:3d:
c4:e0:1e:5d:f7:10:20:b0:f7:3c:98:8d:73:7e:85:
0a:a4:e8:e6:77:bc:f4:d6:b9:ec:33:6e:ef:5c:46:
41:ee:6b:d1:42:05:7d:c7:6f:b1:b4:04:f7:55:e3:
fc:c8:e4:e8:4d:26:18:1c:be:bb:5c:98:dd:78:6e:
ae:8b:2e:7a:a4:ac:71:01:6a:f6:c0:6d:ff:c1:e3:
d2:11:48:f5:54:71:a4:fc:63:6e:50:59:5a:d0:07:
5f:12:d0:a4:c1:5c:8f:e9:ea:bd:1e:c9:e6:da:a1:
22:bf:df:16:e8:9e:49:d4:b2:4b:e3:21:a3:e8:57:
0a:b9:f5:24:16:c6:14:09:73:13:c4:a1:54:42:e7:
b8:14:94:8d:66:14:6c:6f:9e:4c:f0:a0:40:f0:8e:
d7:df:10:cd:7a:98:ac:58:79:61:37:e9:61:35:d0:
0a:42:d4:80:b9:73:ff:aa:af:ab:b5:4c:d6:e5:69:
80:63:bb:65:d5:bc:cb:87:90:35:d4:ec:80:f2:e9:
71:d1:ad:0a:36:c9:37:1a:c4:3e:98:b5:98:fe:65:
18:7e:27:c0:85:dd:29:3c:38:87:20:c0:a8:ff:0b:
30:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:03:C7:8E:84:39:9D:72:76:4D:A7:7A:78:A5:36:8E:70:72:DA:D1
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/bAPHjoQ5nXJ2Tad6eKU2jnBy2tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.144.212.0/23
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
86:7f:e3:b9:ab:c0:3a:b0:45:bf:70:28:89:8b:bb:62:35:89:
b2:a5:b7:b8:b4:50:4e:4a:fd:bd:ae:60:28:66:ee:03:3f:cc:
62:b8:39:bc:8f:83:54:c5:01:7a:c0:9c:62:f0:07:16:fb:fd:
fc:5f:0c:b3:04:72:5d:f9:ae:44:67:5d:99:75:1c:74:38:b6:
fb:8b:ee:ec:db:5b:7d:f2:ae:23:9d:01:af:30:a8:2d:74:16:
82:81:93:08:f3:04:76:b0:a1:bd:bd:52:63:d0:2a:18:bf:c0:
18:1e:08:47:55:ef:f1:68:bc:58:e4:cc:66:86:22:da:0c:13:
a4:c5:3e:17:17:d1:dd:b7:a3:38:77:5c:b9:98:92:a7:ae:2f:
02:3c:9b:27:f4:85:0b:96:11:43:99:50:57:2f:64:ea:26:88:
72:18:58:43:b4:6c:95:a1:0d:da:47:e1:2a:28:43:9b:4c:ce:
b6:e0:f2:7d:be:ec:b5:8f:a5:45:91:69:46:9f:88:17:33:a9:
19:7f:9c:87:ef:e7:41:65:78:2b:a6:db:21:78:bc:58:40:f2:
db:71:24:d4:15:17:0f:86:ab:f2:a7:4d:97:11:d5:46:21:d0:
b5:99:6e:b8:c9:27:f0:6c:87:00:35:5d:4d:e8:fb:78:3c:34:
9f:67:43:54
-----BEGIN CERTIFICATE-----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Generated at Thu Nov 2 05:31:28 2023 by rpki-client on console-fra.rpki-client.org