Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/M6m0MTXclWpZISv622XpYGB3bPY.roa
File: M6m0MTXclWpZISv622XpYGB3bPY.roa (raw, json)
Hash identifier: Bh42f3kS2RbYlFAqNFJocjM/M5UzA7QJMNXB/dzAhm0=
Subject key identifier: 33:A9:B4:31:35:DC:95:6A:59:21:2B:FA:DB:65:E9:60:60:77:6C:F6
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 01857278416D06CC4BB7DFD2D8BD687A062D
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/M6m0MTXclWpZISv622XpYGB3bPY.roa
Signing time: Mon 02 Jan 2023 12:32:41 +0000
ROA not before: Mon 02 Jan 2023 12:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 45.94.136.0/24 maxlen: 24
45.94.137.0/24 maxlen: 24
45.94.138.0/24 maxlen: 24
45.94.139.0/24 maxlen: 24
5.253.184.0/23 maxlen: 23
185.114.204.0/24 maxlen: 24
5.253.187.0/24 maxlen: 24
185.114.206.0/23 maxlen: 23
193.135.220.0/22 maxlen: 22
88.214.0.0/24 maxlen: 24
88.214.1.0/24 maxlen: 24
88.214.2.0/24 maxlen: 24
88.214.3.0/24 maxlen: 24
88.218.196.0/22 maxlen: 22
185.219.160.0/24 maxlen: 24
185.219.163.0/24 maxlen: 24
45.81.161.0/24 maxlen: 24
45.81.162.0/24 maxlen: 24
45.81.163.0/24 maxlen: 24
45.130.33.0/24 maxlen: 24
45.130.34.0/23 maxlen: 23
193.111.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:78:41:6d:06:cc:4b:b7:df:d2:d8:bd:68:7a:06:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: Jan 2 12:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33a9b43135dc956a59212bfadb65e96060776cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:24:f2:a6:c4:5d:81:8e:01:b9:b1:bb:d7:40:
22:49:08:56:ad:9d:3e:13:fa:78:f9:a0:48:c5:ae:
e2:cd:00:63:77:7a:c4:63:95:6d:55:5d:95:91:8e:
bf:0b:62:3c:68:43:ff:cd:af:df:1d:9c:1c:0b:f3:
45:6e:07:9d:2f:4f:ea:62:e4:1f:5e:35:24:c2:bf:
99:d2:c7:09:f8:a5:b2:17:2d:78:98:62:84:58:81:
a1:0f:2b:3b:36:de:97:bf:a0:eb:47:af:0b:05:ab:
53:25:5d:8b:66:47:dc:ce:70:09:49:a6:08:38:00:
e5:8c:17:0d:2d:2b:ef:6e:c8:4c:05:28:2b:66:27:
59:2d:ee:29:58:53:5d:74:66:29:4f:e9:36:fe:3b:
1c:7b:b8:3c:5f:8b:89:3a:c9:58:38:ff:a2:b0:f6:
00:2a:c5:a0:80:cb:e5:b7:64:71:a3:7b:ca:66:7e:
e3:bb:dd:8d:69:c7:c1:10:da:dd:9d:57:17:32:43:
cb:36:bd:63:da:b6:f0:81:9f:fe:1d:80:36:f3:aa:
d3:08:5c:b4:6c:bc:83:a5:f6:c0:84:99:28:37:e4:
9a:c9:99:a0:e6:28:0f:1a:1c:78:da:20:b0:3d:c9:
86:14:cb:de:3b:73:51:f2:07:66:2b:15:cc:8f:c7:
51:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A9:B4:31:35:DC:95:6A:59:21:2B:FA:DB:65:E9:60:60:77:6C:F6
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/M6m0MTXclWpZISv622XpYGB3bPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.184.0/23
5.253.187.0/24
45.81.161.0-45.81.163.255
45.94.136.0/22
45.130.33.0-45.130.35.255
88.214.0.0/22
88.218.196.0/22
185.114.204.0/24
185.114.206.0/23
185.219.160.0/24
185.219.163.0/24
193.111.184.0/22
193.135.220.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:94:5f:61:ca:1e:fd:65:14:48:4c:60:2f:ef:7d:af:37:5e:
b7:b0:cd:ce:cd:0c:62:1d:64:9c:db:33:57:b4:f7:a1:64:c2:
b2:4f:d0:4c:14:70:c3:ee:0e:e1:bc:4d:8c:b5:ba:1c:d3:ad:
ad:c0:08:bd:a1:57:23:c6:cf:11:45:bf:25:1e:01:e3:ce:fb:
0c:16:59:68:c3:ff:95:8d:6a:30:44:f3:ac:be:20:5d:6f:ef:
76:ab:62:4f:20:5c:84:00:7e:57:db:b6:13:ca:0f:fa:25:86:
df:f2:c0:40:39:56:39:2f:7f:cf:91:bb:80:6b:05:b5:9f:cb:
ef:f2:9d:3e:bf:e0:6b:96:49:03:d4:58:d5:bd:af:b5:f9:32:
cb:ab:39:97:36:1e:48:32:37:e0:21:cc:ba:54:e6:cd:b8:09:
2c:f9:ba:6f:01:fe:af:a6:ea:a8:6c:a1:bd:f0:3e:c1:d6:f4:
cd:a1:dd:cd:96:2e:83:3d:2a:5a:c5:fa:27:11:d4:a0:d1:ee:
f7:c3:47:6f:24:d0:5e:b8:1f:f8:f9:b8:7f:8e:f6:0b:cc:d2:
1b:b4:06:2e:ce:32:0d:9c:25:29:0c:b9:c9:34:6a:bd:39:db:
5c:ae:be:9d:68:68:99:90:d2:c7:94:49:f8:41:56:c1:d1:35:
6d:62:73:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:49 2023 by rpki-client on console-fra.rpki-client.org