Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/AGhIyaeJX6_LIuE1CG1nb8pPGag.roa
File: AGhIyaeJX6_LIuE1CG1nb8pPGag.roa (raw, json)
Hash identifier: tnH8ugU/wc2eO3qaFuG17zHZfurGNAOR2TzERt8zJiE=
Subject key identifier: 00:68:48:C9:A7:89:5F:AF:CB:22:E1:35:08:6D:67:6F:CA:4F:19:A8
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 01857271402787A2480A50A4B47771DA2BFD
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/AGhIyaeJX6_LIuE1CG1nb8pPGag.roa
Signing time: Mon 02 Jan 2023 12:25:02 +0000
ROA not before: Mon 02 Jan 2023 12:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198605
IP address blocks: 77.234.40.0/21 maxlen: 24
77.234.40.0/24 maxlen: 24
37.156.184.0/22 maxlen: 24
195.74.76.0/24 maxlen: 24
185.189.94.0/24 maxlen: 24
185.189.92.0/22 maxlen: 24
69.94.64.0/20 maxlen: 24
91.213.143.0/24 maxlen: 24
185.167.64.0/24 maxlen: 24
185.51.228.0/22 maxlen: 24
5.45.56.0/21 maxlen: 24
2a0b:e180::/29 maxlen: 45
2001:67c:284::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:40:27:87:a2:48:0a:50:a4:b4:77:71:da:2b:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 2 12:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=006848c9a7895fafcb22e135086d676fca4f19a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:19:37:10:c4:88:be:31:97:5d:10:a4:9c:00:
1c:f1:dc:9f:5f:a8:26:46:7f:90:81:4c:ba:7f:b5:
7e:c8:fc:fd:93:b9:75:76:ac:fc:dd:fd:ad:2e:58:
22:de:aa:ba:83:55:54:ad:86:63:fa:5d:3e:3e:fd:
00:4b:46:fd:b6:db:3f:8c:f4:02:0b:23:72:fe:88:
e0:94:8d:81:8d:79:52:4f:d2:d9:cf:7e:16:23:03:
06:54:8b:8a:0f:c7:77:6b:e0:ea:26:a1:3a:46:ac:
ba:a0:5b:de:3b:d0:80:34:9e:a0:93:a1:a0:c0:31:
26:86:45:eb:6b:9f:d1:55:d6:43:da:ff:99:31:65:
9d:ac:79:47:02:53:3e:15:32:db:8c:7d:a8:79:4c:
99:fa:a5:33:93:61:b6:22:31:c1:7e:89:e5:87:62:
5e:f2:53:6b:c0:45:e7:78:ad:db:e9:f1:a6:aa:82:
64:59:a1:1d:05:6e:6a:1c:e4:24:7f:83:29:be:4f:
63:21:bb:95:fa:f8:d3:aa:01:5c:2e:48:d0:98:ec:
e3:77:6c:9a:37:76:29:97:0c:55:25:ef:42:6a:cd:
a6:95:03:0a:c4:6c:d7:25:98:06:d6:cb:25:6d:dc:
00:89:89:f7:5f:12:10:45:4e:9f:3a:b4:bc:c4:6b:
8a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:68:48:C9:A7:89:5F:AF:CB:22:E1:35:08:6D:67:6F:CA:4F:19:A8
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/AGhIyaeJX6_LIuE1CG1nb8pPGag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.56.0/21
37.156.184.0/22
69.94.64.0/20
77.234.40.0/21
91.213.143.0/24
185.51.228.0/22
185.167.64.0/24
185.189.92.0/22
195.74.76.0/24
IPv6:
2001:67c:284::/48
2a0b:e180::/29
Signature Algorithm: sha256WithRSAEncryption
0d:50:93:e2:a9:60:7a:44:1e:8d:86:e2:85:0d:2e:d0:a6:cd:
83:e9:5d:0f:49:0c:a4:fe:af:2b:7a:37:a6:be:ea:ca:90:55:
4c:10:54:98:24:46:94:7b:ef:f0:30:2d:a6:98:c7:d9:eb:f8:
9e:a6:2d:3b:21:a2:4e:51:aa:83:ba:50:71:67:b1:fd:9f:94:
eb:c5:6c:9b:d2:1b:16:dd:42:2a:52:37:02:10:d3:78:c3:8f:
91:87:59:19:fe:4a:1c:92:4c:b9:c2:20:0e:3d:61:51:71:fb:
5a:c0:11:59:05:54:75:50:3c:52:8d:15:2f:67:39:48:69:da:
a8:ea:a5:d4:37:e7:10:f7:b9:62:74:ba:be:7a:2f:77:54:4f:
f0:57:56:c2:12:b5:99:70:5a:48:ba:80:e0:6a:48:64:b3:82:
c3:81:3e:6f:7d:fd:ed:69:82:96:e7:81:93:24:03:c4:5f:ce:
17:a4:4e:ed:df:6d:f6:fd:4b:f9:24:1a:2b:27:a2:3b:f6:a0:
a5:7e:75:95:b2:5a:e6:e5:d7:05:01:3d:87:8b:43:0f:3c:d9:
84:70:34:22:3c:42:83:34:35:9e:10:2a:6c:33:e1:6b:96:3b:
4f:4e:ea:25:62:f9:cf:28:54:54:dd:b6:70:f7:0b:6b:0f:cb:
c9:a0:57:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org