Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/N9ax2MnN0ViCLgWFKXJWrVc1Kf0.roa
File: N9ax2MnN0ViCLgWFKXJWrVc1Kf0.roa (raw, json)
Hash identifier: oqU3+uIevwQI+0A3cy5uX7IyyyQkwvG8t9t4+l69Rck=
Subject key identifier: 37:D6:B1:D8:C9:CD:D1:58:82:2E:05:85:29:72:56:AD:57:35:29:FD
Certificate issuer: /CN=0b8d1bb72791c878550d1b9d8fef564ac3919368
Certificate serial: 018571FA39D2AC1FAE6396EF220FAE3B27F7
Authority key identifier: 0B:8D:1B:B7:27:91:C8:78:55:0D:1B:9D:8F:EF:56:4A:C3:91:93:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C40btyeRyHhVDRudj-9WSsORk2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/N9ax2MnN0ViCLgWFKXJWrVc1Kf0.roa
Signing time: Mon 02 Jan 2023 10:15:02 +0000
ROA not before: Mon 02 Jan 2023 10:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48147
IP address blocks: 185.142.156.0/24 maxlen: 24
185.142.156.0/22 maxlen: 22
185.142.157.0/24 maxlen: 24
185.142.158.0/24 maxlen: 24
185.142.159.0/24 maxlen: 24
185.208.180.0/22 maxlen: 22
185.208.180.0/24 maxlen: 24
185.208.181.0/24 maxlen: 24
185.208.182.0/24 maxlen: 24
185.208.183.0/24 maxlen: 24
185.213.8.0/24 maxlen: 24
185.213.10.0/24 maxlen: 24
2a07:4284::/32 maxlen: 32
2a0b:3cc7::/32 maxlen: 32
2a07:4285::/32 maxlen: 32
2a07:4283::/32 maxlen: 32
2a0b:3cc0::/32 maxlen: 32
2a0b:3cc6::/32 maxlen: 32
2a07:4280::/29 maxlen: 29
2a07:4287::/32 maxlen: 32
2a0b:3cc5::/32 maxlen: 32
2a07:4281::/32 maxlen: 32
2a0b:3cc2::/32 maxlen: 32
2a0b:3cc3::/32 maxlen: 32
2a07:4280::/32 maxlen: 32
2a0b:3cc0::/29 maxlen: 29
2a0b:3cc1::/32 maxlen: 32
2a07:4282::/32 maxlen: 32
2a0b:3cc4::/32 maxlen: 32
2a07:4286::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:39:d2:ac:1f:ae:63:96:ef:22:0f:ae:3b:27:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b8d1bb72791c878550d1b9d8fef564ac3919368
Validity
Not Before: Jan 2 10:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37d6b1d8c9cdd158822e0585297256ad573529fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:78:dd:cd:db:69:55:42:11:6c:c2:05:47:50:
56:63:51:bd:e5:16:ea:5e:d6:08:d8:b6:89:f9:db:
65:00:c1:26:de:05:00:9c:82:ee:bc:9f:e9:29:83:
b3:e0:3f:84:8d:20:17:fd:ba:ee:1b:30:86:05:dd:
42:01:79:70:4a:78:16:db:38:3b:04:40:80:1f:84:
66:0c:13:12:49:2c:ae:1d:1b:05:19:67:b9:44:15:
7f:53:20:15:b8:9f:7f:b1:e9:39:09:17:02:a9:0c:
2d:1f:da:08:50:2c:f9:5a:8e:5a:37:c6:3c:99:e0:
7f:14:18:c9:1d:c1:4c:22:bb:03:97:28:3d:1e:34:
be:0c:49:74:1c:7a:aa:db:e2:c2:0b:b2:d5:b9:60:
81:b1:d2:e6:53:76:ff:50:a4:6a:0d:d0:7b:be:c7:
b5:c2:68:29:14:70:a7:9f:7f:48:ca:ab:06:dd:12:
68:6a:fb:56:c0:b6:80:f2:ac:d4:af:92:ce:32:ad:
07:0a:0f:f9:1b:4c:be:3b:b6:cf:18:f4:b3:81:b0:
29:33:f6:f9:d5:a9:24:5f:5e:91:2a:c9:9b:ab:ea:
68:d1:b3:77:8e:a4:8f:06:42:a7:4a:fa:cc:04:1a:
bc:fd:7e:cd:d8:87:da:49:a0:d0:ac:99:f8:81:62:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D6:B1:D8:C9:CD:D1:58:82:2E:05:85:29:72:56:AD:57:35:29:FD
X509v3 Authority Key Identifier:
keyid:0B:8D:1B:B7:27:91:C8:78:55:0D:1B:9D:8F:EF:56:4A:C3:91:93:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C40btyeRyHhVDRudj-9WSsORk2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/N9ax2MnN0ViCLgWFKXJWrVc1Kf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/0367d0-fa85-4546-b84c-0278c5dc1491/1/C40btyeRyHhVDRudj-9WSsORk2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.156.0/22
185.208.180.0/22
185.213.8.0/24
185.213.10.0/24
IPv6:
2a07:4280::/29
2a0b:3cc0::/29
Signature Algorithm: sha256WithRSAEncryption
11:0a:25:d2:31:9c:fb:2e:59:1a:97:e4:a7:36:ff:c0:7a:eb:
0a:26:3f:57:6f:af:26:2f:76:b1:0a:8c:5b:a6:e7:48:7d:b6:
ee:3e:7a:86:3a:5c:a2:b5:e1:e5:7c:6b:a2:15:2d:ee:1e:e3:
b9:d3:d0:8f:8c:5f:5f:04:85:92:52:1d:5d:ad:76:c8:2c:fe:
5a:b7:f4:f4:4e:a0:2a:be:14:ce:b6:28:1c:c4:94:e7:a5:2e:
f8:70:83:6d:3e:85:58:f5:d0:88:c8:51:bf:82:7f:b9:66:fd:
ba:ec:0b:e5:73:79:03:46:ab:d4:57:18:63:9d:8d:8f:e3:9d:
45:66:c2:b5:87:a4:3e:b7:b0:0d:64:79:ce:9c:69:c1:03:72:
77:f6:df:a9:2b:e7:9a:18:f8:91:2e:96:73:53:4c:63:89:f0:
7a:eb:a0:48:82:19:2f:46:12:2b:0b:2c:61:3f:01:6e:f5:9c:
f4:0a:42:b0:16:3c:0e:5c:09:d3:cb:4d:70:e1:3f:21:06:c5:
ae:d5:3d:b1:59:b5:8a:82:a7:8c:2a:a8:02:fd:07:1c:fa:82:
16:f1:29:67:ba:ba:56:78:a3:97:5f:3b:a2:e5:1c:2d:36:01:
d6:e8:3e:09:24:9a:af:ad:ac:ee:f4:ea:f5:4d:fb:ec:50:d9:
66:92:f3:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 30 09:27:40 2023 by rpki-client on console-ams.rpki-client.org