Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/HI95u6rvGEvX_V8YJybLqQJdbxM.roa
File: HI95u6rvGEvX_V8YJybLqQJdbxM.roa (raw, json)
Hash identifier: l3U0LmJAt3KFiQRMRVzVDE02Gi+kmKn6fNf4fszC/MU=
Subject key identifier: 1C:8F:79:BB:AA:EF:18:4B:D7:FD:5F:18:27:26:CB:A9:02:5D:6F:13
Certificate issuer: /CN=37ed49efac9795987771acdc77a0e228904277ad
Certificate serial: 018979A903D29319BA572DF121D336E47DEF
Authority key identifier: 37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/HI95u6rvGEvX_V8YJybLqQJdbxM.roa
Signing time: Fri 21 Jul 2023 18:14:26 +0000
ROA not before: Fri 21 Jul 2023 18:14:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 89.221.204.0/24 maxlen: 24
89.221.203.0/24 maxlen: 24
89.221.206.0/24 maxlen: 24
81.22.193.0/24 maxlen: 24
178.130.17.0/24 maxlen: 24
178.130.16.0/24 maxlen: 24
178.130.20.0/24 maxlen: 24
178.130.19.0/24 maxlen: 24
178.130.18.0/24 maxlen: 24
178.130.23.0/24 maxlen: 24
178.130.22.0/24 maxlen: 24
178.130.21.0/24 maxlen: 24
178.130.48.0/24 maxlen: 24
178.130.47.0/24 maxlen: 24
178.130.46.0/24 maxlen: 24
178.130.51.0/24 maxlen: 24
178.130.50.0/24 maxlen: 24
178.130.49.0/24 maxlen: 24
178.130.52.0/24 maxlen: 24
178.130.55.0/24 maxlen: 24
178.130.54.0/24 maxlen: 24
178.130.53.0/24 maxlen: 24
178.130.58.0/24 maxlen: 24
178.130.57.0/24 maxlen: 24
178.130.56.0/24 maxlen: 24
178.130.62.0/24 maxlen: 24
178.130.61.0/24 maxlen: 24
178.130.60.0/24 maxlen: 24
178.130.63.0/24 maxlen: 24
178.130.59.0/24 maxlen: 24
109.172.9.0/24 maxlen: 24
109.172.8.0/24 maxlen: 24
109.172.17.0/24 maxlen: 24
109.172.16.0/24 maxlen: 24
109.172.19.0/24 maxlen: 24
109.172.18.0/24 maxlen: 24
109.172.23.0/24 maxlen: 24
109.172.22.0/24 maxlen: 24
109.172.21.0/24 maxlen: 24
109.172.20.0/24 maxlen: 24
109.172.31.0/24 maxlen: 24
109.172.30.0/24 maxlen: 24
109.172.37.0/24 maxlen: 24
109.172.36.0/24 maxlen: 24
109.172.38.0/24 maxlen: 24
109.172.39.0/24 maxlen: 24
92.61.71.0/24 maxlen: 24
92.61.70.0/24 maxlen: 24
92.61.65.0/24 maxlen: 24
109.172.117.0/24 maxlen: 24
109.172.116.0/24 maxlen: 24
109.172.120.0/24 maxlen: 24
109.172.124.0/24 maxlen: 24
109.172.123.0/24 maxlen: 24
109.172.122.0/24 maxlen: 24
109.172.121.0/24 maxlen: 24
109.172.125.0/24 maxlen: 24
109.172.127.0/24 maxlen: 24
109.172.126.0/24 maxlen: 24
109.172.54.0/24 maxlen: 24
109.172.55.0/24 maxlen: 24
109.172.78.0/24 maxlen: 24
109.172.79.0/24 maxlen: 24
109.172.96.0/24 maxlen: 24
109.172.98.0/24 maxlen: 24
109.172.97.0/24 maxlen: 24
109.172.101.0/24 maxlen: 24
109.172.100.0/24 maxlen: 24
92.61.64.0/24 maxlen: 24
109.172.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:79:a9:03:d2:93:19:ba:57:2d:f1:21:d3:36:e4:7d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ed49efac9795987771acdc77a0e228904277ad
Validity
Not Before: Jul 21 18:14:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c8f79bbaaef184bd7fd5f182726cba9025d6f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:e8:c6:b4:f4:a6:0f:20:e4:14:bb:ed:c3:
a1:6e:7a:cf:64:31:66:4d:eb:f9:78:aa:79:4e:e3:
aa:65:77:cd:9f:06:5a:af:f9:58:b4:b8:76:f3:4e:
88:e7:4c:a9:7f:80:38:6d:13:38:01:d3:34:b8:44:
f9:39:94:df:c8:f2:40:ca:d6:08:d0:5f:19:3a:70:
43:34:ab:96:91:73:26:e9:57:be:6f:3f:05:f9:67:
e0:c9:20:29:81:5f:d5:7d:7a:92:8e:be:72:ae:45:
b4:5f:67:25:89:13:c8:22:69:9e:02:43:1b:ff:9f:
c5:e7:ff:69:a7:70:12:69:23:b5:0a:7c:fa:c4:46:
a2:9c:bf:f5:7f:e3:22:60:1d:1b:25:58:7b:56:bd:
d4:78:56:d7:8e:b7:2c:9f:fb:64:dc:9e:e0:48:10:
fc:5d:97:c5:bb:72:9b:9c:2a:99:df:62:8f:be:7d:
c3:c0:cd:3d:3c:a6:7a:ed:6b:c1:ba:91:6c:ce:ed:
f9:a9:78:99:fa:e9:77:6d:4a:83:34:db:28:30:51:
ef:58:8c:c0:a0:f9:5b:b1:30:96:12:eb:63:bd:61:
77:72:8c:77:52:b7:7c:e7:ec:01:c2:ca:36:6a:21:
52:04:ab:73:bd:f8:14:64:2b:ca:f6:cf:7d:06:d8:
54:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:8F:79:BB:AA:EF:18:4B:D7:FD:5F:18:27:26:CB:A9:02:5D:6F:13
X509v3 Authority Key Identifier:
keyid:37:ED:49:EF:AC:97:95:98:77:71:AC:DC:77:A0:E2:28:90:42:77:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N-1J76yXlZh3cazcd6DiKJBCd60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/HI95u6rvGEvX_V8YJybLqQJdbxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/2171be-b083-479b-a580-6a06b7502bd7/1/N-1J76yXlZh3cazcd6DiKJBCd60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.193.0/24
89.221.203.0-89.221.204.255
89.221.206.0/24
92.61.64.0/23
92.61.70.0/23
109.172.8.0/23
109.172.16.0/21
109.172.30.0/23
109.172.36.0/22
109.172.54.0/23
109.172.78.0/23
109.172.96.0-109.172.101.255
109.172.116.0/23
109.172.120.0/21
178.130.16.0/21
178.130.46.0-178.130.63.255
Signature Algorithm: sha256WithRSAEncryption
05:0d:0c:94:3c:56:4e:cd:79:c8:96:f4:ed:e3:0b:f6:7e:fe:
b1:51:da:1c:3c:27:00:49:c2:f2:50:b7:38:d8:f1:ba:a0:c0:
5e:4c:3d:cc:a1:5b:d7:36:ec:63:2c:1d:fa:2f:01:1c:bf:03:
a0:68:1b:49:06:09:13:e4:7a:3b:25:65:65:b4:91:d1:84:ca:
90:ea:81:2b:2d:46:c5:1c:f4:c8:c7:c7:96:fa:6a:8d:ff:ca:
50:3b:d0:11:7d:5e:fe:64:0a:6d:e8:d7:1f:c8:b5:d3:40:45:
8f:3e:c4:6f:16:fd:ef:18:cd:c8:96:af:e0:c7:9e:eb:95:93:
44:ba:9f:39:85:8d:30:06:d1:36:4e:bb:98:54:48:d3:1a:97:
4e:fd:d4:e7:f1:3b:06:93:59:7c:ef:3f:2e:eb:8d:22:2e:1c:
c8:c3:19:71:36:46:02:e0:03:34:93:5d:62:46:e2:fb:59:c4:
94:7f:a2:0b:f8:25:24:5e:03:0f:31:7a:5c:4f:9f:69:bd:8e:
a2:ff:74:83:12:5e:d8:87:31:3e:b0:be:90:cc:17:07:c6:da:
6f:35:a8:f7:2e:ff:5b:04:36:17:e1:c2:f8:50:12:6d:5b:9f:
53:57:14:21:f5:b6:b0:ae:cc:26:3f:74:03:2d:53:f4:2b:5b:
9c:79:d9:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:30:59 2024 by rpki-client on console-fra.rpki-client.org