Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/Fb3ci5FkzIUIb5ZUpj6e2wlm7Rw.roa
File: Fb3ci5FkzIUIb5ZUpj6e2wlm7Rw.roa (raw, json)
Hash identifier: 9zPnj1H8wLaPxPIcVPneQJtzb1b6eelsL4a2tZnDp4Q=
Subject key identifier: 15:BD:DC:8B:91:64:CC:85:08:6F:96:54:A6:3E:9E:DB:09:66:ED:1C
Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Certificate serial: 0188C13396C182768190503269C2087794BB
Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/Fb3ci5FkzIUIb5ZUpj6e2wlm7Rw.roa
Signing time: Thu 15 Jun 2023 22:36:03 +0000
ROA not before: Thu 15 Jun 2023 22:36:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 149.255.39.0/24 maxlen: 24
45.158.38.0/24 maxlen: 24
45.158.36.0/23 maxlen: 32
45.158.39.0/24 maxlen: 24
37.72.168.0/21 maxlen: 32
37.72.172.0/23 maxlen: 23
37.72.171.0/24 maxlen: 24
37.72.170.0/23 maxlen: 23
37.72.170.0/24 maxlen: 24
37.72.174.0/23 maxlen: 23
194.126.172.0/22 maxlen: 24
194.126.172.0/24 maxlen: 24
194.126.175.0/24 maxlen: 24
194.126.173.0/24 maxlen: 24
94.100.16.0/20 maxlen: 32
94.100.16.0/24 maxlen: 24
94.100.17.0/24 maxlen: 24
94.100.23.0/24 maxlen: 24
94.100.24.0/24 maxlen: 24
94.100.21.0/24 maxlen: 24
94.100.22.0/24 maxlen: 24
94.100.19.0/24 maxlen: 24
94.100.20.0/24 maxlen: 24
94.100.18.0/24 maxlen: 24
94.100.30.0/24 maxlen: 24
94.100.31.0/24 maxlen: 24
94.100.28.0/24 maxlen: 24
94.100.29.0/24 maxlen: 24
94.100.26.0/24 maxlen: 24
94.100.27.0/24 maxlen: 24
94.100.25.0/24 maxlen: 24
217.79.240.0/24 maxlen: 24
217.79.242.0/23 maxlen: 24
217.79.240.0/20 maxlen: 24
149.255.37.0/24 maxlen: 24
149.255.38.0/24 maxlen: 24
149.255.32.0/21 maxlen: 32
149.255.35.0/24 maxlen: 24
149.255.36.0/24 maxlen: 32
178.236.176.0/20 maxlen: 24
89.233.104.0/24 maxlen: 24
89.233.104.0/21 maxlen: 24
89.233.105.0/24 maxlen: 24
89.233.106.0/24 maxlen: 24
89.233.107.0/24 maxlen: 24
46.21.144.0/24 maxlen: 24
46.21.145.0/24 maxlen: 24
46.21.144.0/20 maxlen: 32
46.21.151.0/24 maxlen: 24
46.21.152.0/24 maxlen: 24
46.21.150.0/24 maxlen: 24
46.21.148.0/24 maxlen: 24
46.21.146.0/24 maxlen: 24
46.21.147.0/24 maxlen: 24
46.21.158.0/23 maxlen: 23
46.21.156.0/24 maxlen: 24
46.21.157.0/24 maxlen: 24
46.21.153.0/24 maxlen: 24
195.242.152.0/23 maxlen: 24
195.242.153.0/24 maxlen: 24
2a02:748:f000::/36 maxlen: 36
2a02:748:e000::/35 maxlen: 35
2a02:748::/35 maxlen: 35
2a02:748:c000::/35 maxlen: 35
2a02:748::/32 maxlen: 48
2a0f:5180::/32 maxlen: 32
2a02:748:6000::/48 maxlen: 48
2a0f:5180::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c1:33:96:c1:82:76:81:90:50:32:69:c2:08:77:94:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Validity
Not Before: Jun 15 22:36:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15bddc8b9164cc85086f9654a63e9edb0966ed1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:92:10:22:28:8f:72:fe:5d:8e:e3:60:a2:b0:
4c:70:ee:22:36:84:a6:1a:31:e2:65:b9:26:90:7d:
43:fc:46:34:09:d1:0c:51:44:14:ed:6a:c1:31:9b:
ab:72:e9:86:05:b1:2f:35:4f:43:8d:00:38:18:2c:
48:47:8f:25:0f:c4:77:2e:75:e0:dc:1a:20:29:97:
18:fc:2f:5d:b6:79:01:30:e9:08:2c:56:62:f1:ff:
cb:fe:26:90:c3:e1:fa:cf:3e:12:91:39:14:8e:d0:
76:80:69:5b:c8:9a:50:bc:97:46:e3:31:d5:dc:61:
56:93:c2:56:af:94:4e:71:7d:f7:c4:9e:c0:b5:1a:
f8:4a:99:b7:68:3e:6c:62:1d:b3:5f:81:dd:24:ad:
f8:53:5e:58:88:10:73:c9:96:ad:5b:ca:a0:1e:e1:
06:d8:1a:0b:26:bb:ef:c9:19:48:4a:70:13:56:f1:
34:c1:d6:87:3a:e4:9f:e3:1b:2b:e7:53:bc:cb:e0:
f2:d1:ef:75:c5:11:5f:ff:68:b5:d1:5b:ab:d5:8b:
09:eb:76:b0:38:9f:6b:64:af:79:64:41:ac:62:c8:
ef:0e:b8:53:ba:f1:a0:c9:88:ea:59:87:82:00:18:
84:52:9e:ca:b0:f3:94:b3:85:d8:f3:bd:e5:e9:2b:
67:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BD:DC:8B:91:64:CC:85:08:6F:96:54:A6:3E:9E:DB:09:66:ED:1C
X509v3 Authority Key Identifier:
keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/Fb3ci5FkzIUIb5ZUpj6e2wlm7Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.168.0/21
45.158.36.0/22
46.21.144.0/20
89.233.104.0/21
94.100.16.0/20
149.255.32.0/21
178.236.176.0/20
194.126.172.0/22
195.242.152.0/23
217.79.240.0/20
IPv6:
2a02:748::/32
2a0f:5180::/29
Signature Algorithm: sha256WithRSAEncryption
2c:d7:cf:aa:e8:fb:61:b0:7a:3e:c7:3c:8f:b0:68:8d:45:54:
6b:f5:47:70:fe:c8:2a:e3:19:80:77:b8:9e:b0:6f:d4:e4:eb:
71:7c:29:8e:bd:70:09:20:81:39:71:66:88:0a:f4:cb:ea:d3:
d7:06:0a:63:96:5d:0d:01:47:b8:25:90:b3:76:3f:60:58:13:
51:05:3c:45:06:41:0e:36:2d:03:be:1d:48:2f:eb:d6:1f:40:
f9:32:67:cf:b7:4c:1b:31:c2:ce:cd:07:3b:2e:26:ea:45:f7:
c4:a7:8b:12:9f:2b:ef:2c:30:dd:91:86:10:96:b5:a1:64:f3:
f5:96:ca:90:89:ee:44:ff:b5:94:a2:de:a7:63:b0:c0:6d:f3:
c3:78:88:fa:29:dd:ea:a8:d8:bb:57:d7:50:cd:b8:1c:68:ae:
f2:37:d5:31:d3:98:8a:f6:6d:66:48:bc:41:54:ed:fd:c6:10:
47:0e:67:1e:db:f5:77:a4:95:b0:c2:b0:34:7f:0e:91:1f:af:
cc:60:64:c6:ef:32:6a:e0:11:02:3a:76:ea:41:c1:52:9d:7d:
2d:91:41:a3:99:88:0e:3d:26:d1:0a:64:2f:8b:64:53:9e:25:
fc:7e:14:d6:57:4e:38:07:f9:9d:a0:a8:80:dd:45:da:d6:83:
ae:2c:62:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 21:02:55 2023 by rpki-client on console-fra.rpki-client.org