Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/KK-cMZbSGifoltg_ec-hlcVg7KE.roa
File: KK-cMZbSGifoltg_ec-hlcVg7KE.roa (raw, json)
Hash identifier: kA3mRjWUFfxvKEcPyJ0/uLx92urFdF6hTV+RSZTGmsk=
Subject key identifier: 28:AF:9C:31:96:D2:1A:27:E8:96:D8:3F:79:CF:A1:95:C5:60:EC:A1
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 01856CCAF4DB2A0D78F44FB014FB695DD774
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/KK-cMZbSGifoltg_ec-hlcVg7KE.roa
Signing time: Sun 01 Jan 2023 10:05:18 +0000
ROA not before: Sun 01 Jan 2023 10:05:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 185.208.78.0/23 maxlen: 24
185.208.78.0/24 maxlen: 24
185.208.79.0/24 maxlen: 24
185.83.112.0/22 maxlen: 22
185.83.112.0/23 maxlen: 23
185.83.112.0/24 maxlen: 24
185.83.113.0/24 maxlen: 24
185.83.114.0/24 maxlen: 24
185.83.114.0/23 maxlen: 24
185.83.115.0/24 maxlen: 24
5.144.130.0/24 maxlen: 24
5.144.132.0/22 maxlen: 22
5.144.128.0/21 maxlen: 21
5.144.128.0/22 maxlen: 22
5.144.128.0/23 maxlen: 23
5.144.131.0/24 maxlen: 24
5.144.132.0/24 maxlen: 24
5.144.128.0/24 maxlen: 24
5.144.129.0/24 maxlen: 24
5.144.132.0/23 maxlen: 24
5.144.130.0/23 maxlen: 24
5.144.135.0/24 maxlen: 24
5.144.133.0/24 maxlen: 24
5.144.134.0/24 maxlen: 24
5.144.134.0/23 maxlen: 24
185.173.104.0/24 maxlen: 24
185.173.104.0/22 maxlen: 24
185.173.105.0/24 maxlen: 24
185.173.106.0/24 maxlen: 24
185.173.107.0/24 maxlen: 24
45.92.95.0/24 maxlen: 24
45.92.92.0/23 maxlen: 24
45.92.92.0/24 maxlen: 24
45.92.92.0/22 maxlen: 24
45.92.93.0/24 maxlen: 24
45.92.94.0/24 maxlen: 24
45.92.94.0/23 maxlen: 24
185.205.203.0/24 maxlen: 24
45.138.132.0/22 maxlen: 24
45.138.132.0/23 maxlen: 24
45.138.132.0/24 maxlen: 24
45.138.133.0/24 maxlen: 24
45.138.134.0/24 maxlen: 24
45.138.135.0/24 maxlen: 24
193.3.231.0/24 maxlen: 24
185.169.6.0/24 maxlen: 24
2a10:5c40::/29 maxlen: 29
2a05:9a00:4::/48 maxlen: 48
2a05:9a00::/29 maxlen: 29
2a05:9a00:1::/48 maxlen: 48
2a05:9a00:1001::/48 maxlen: 48
2a10:6140::/29 maxlen: 29
2a10:b800::/29 maxlen: 29
2a05:9a00:2::/48 maxlen: 48
2a05:9a00:1002::/48 maxlen: 48
2a07:e440::/29 maxlen: 29
2a05:9a00::/48 maxlen: 48
2a05:9a00:1000::/48 maxlen: 48
2a05:9a00:3::/48 maxlen: 48
2a05:9a00:1003::/48 maxlen: 48
2a10:4340::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:f4:db:2a:0d:78:f4:4f:b0:14:fb:69:5d:d7:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Jan 1 10:05:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28af9c3196d21a27e896d83f79cfa195c560eca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:aa:03:66:cb:07:ce:97:a4:b4:8c:18:7e:1e:
70:5e:12:11:a7:c4:de:51:6d:8f:4f:c6:03:04:78:
0b:a8:d6:35:f3:8f:bb:d8:1e:6f:c9:d8:45:d0:74:
87:d4:62:0e:64:e8:68:1a:09:76:d7:40:10:c0:93:
68:c6:9c:41:f8:18:6e:34:bc:80:1f:21:30:bb:04:
ac:70:9e:8d:e2:89:25:3b:ce:6d:6c:b5:d0:17:b9:
38:59:de:73:45:e6:3a:e0:b8:12:2b:f7:be:14:ff:
5f:3d:cc:37:6e:0f:ee:99:44:6e:7e:1d:0b:7c:11:
76:38:90:92:7e:e5:d1:7b:32:75:6d:45:8d:55:53:
e5:a0:e5:38:d3:bc:a8:c4:29:a7:a0:55:5b:46:45:
89:94:c4:1a:71:0d:1f:24:dc:13:70:a7:57:0d:50:
f6:e7:7e:9d:94:e5:46:44:59:61:ba:c3:ff:ca:b8:
59:2f:4e:df:46:68:5e:34:8d:5e:f3:d9:f4:43:87:
56:89:68:e8:54:df:25:4c:2c:17:30:c1:51:cd:f2:
de:c9:63:91:25:c9:cb:7f:2f:f3:32:55:20:4d:f2:
b1:24:7f:83:a0:b3:83:a2:bd:d4:b9:07:ef:0a:ef:
27:11:d3:32:a4:b8:1e:88:41:fa:04:4b:cd:2e:dd:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:AF:9C:31:96:D2:1A:27:E8:96:D8:3F:79:CF:A1:95:C5:60:EC:A1
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/KK-cMZbSGifoltg_ec-hlcVg7KE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.128.0/21
45.92.92.0/22
45.138.132.0/22
185.83.112.0/22
185.169.6.0/24
185.173.104.0/22
185.205.203.0/24
185.208.78.0/23
193.3.231.0/24
IPv6:
2a05:9a00::/29
2a07:e440::/29
2a10:4340::/29
2a10:5c40::/29
2a10:6140::/29
2a10:b800::/29
Signature Algorithm: sha256WithRSAEncryption
89:06:de:b3:3e:be:82:b4:09:7f:6d:a5:8b:76:7a:b1:c4:52:
ec:5c:66:8c:a7:e9:a1:2b:0f:03:2d:a5:96:14:6b:ff:04:7d:
8a:c4:e9:a7:9d:1c:30:9f:ee:c2:d1:03:94:b1:1f:e2:43:61:
1e:c9:87:72:83:de:81:16:9a:d8:1a:4a:16:ec:f8:34:c5:79:
24:0e:2f:e2:20:a8:45:2c:ba:64:ab:00:8d:f5:ee:c4:bf:26:
06:c8:03:5d:5e:a6:0f:0f:56:68:52:8f:1f:79:9e:e0:42:e8:
48:89:46:bb:e8:7a:22:be:11:1c:43:fb:e9:3f:b3:1a:0c:d1:
90:46:50:5c:44:29:9d:94:71:4a:49:01:b1:c3:d1:a8:d1:4f:
46:50:fd:ed:d8:fb:05:33:7b:1e:31:31:63:8c:4d:e0:06:b6:
00:91:75:d7:87:40:48:9c:c2:d8:8f:22:c0:7b:87:11:e3:a8:
23:fb:0a:ad:3a:5f:1f:ca:09:01:0f:4e:37:c2:7f:3a:8d:04:
1d:8a:cd:b9:20:8c:b4:72:77:35:8b:4f:b3:24:c9:0e:53:19:
6c:77:4f:cf:28:18:c5:7c:58:6e:14:ec:04:ed:da:bc:df:0f:
a7:9c:53:3d:45:06:24:c3:ba:4e:b9:7b:64:76:94:d9:ec:26:
e3:d8:72:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:07 2024 by rpki-client on console-fra.rpki-client.org