Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/CC-gvBR2w9O8Sw_dA4foyuynNkU.roa
File: CC-gvBR2w9O8Sw_dA4foyuynNkU.roa (raw, json)
Hash identifier: QI6vDYYw/ps/10FtAmD2Wt4vP0dK6KxlMMJtPxkLAAs=
Subject key identifier: 08:2F:A0:BC:14:76:C3:D3:BC:4B:0F:DD:03:87:E8:CA:EC:A7:36:45
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0185ED38B00120C57EBD628EB2C5CABAA3DD
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/CC-gvBR2w9O8Sw_dA4foyuynNkU.roa
Signing time: Thu 26 Jan 2023 08:36:33 +0000
ROA not before: Thu 26 Jan 2023 08:36:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34450
IP address blocks: 89.43.42.0/24 maxlen: 24
89.43.44.0/24 maxlen: 24
89.43.40.0/24 maxlen: 24
89.43.41.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.73.0/24 maxlen: 24
89.39.252.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
85.204.125.0/24 maxlen: 24
85.204.127.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
89.33.163.0/24 maxlen: 24
89.37.136.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:38:b0:01:20:c5:7e:bd:62:8e:b2:c5:ca:ba:a3:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 26 08:36:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=082fa0bc1476c3d3bc4b0fdd0387e8caeca73645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:57:58:ea:76:49:5b:82:62:d1:01:b6:bc:ab:
a9:31:35:51:35:f6:46:8a:eb:38:6e:f9:d6:7e:e9:
9c:bc:d7:38:c2:ca:57:37:8d:46:da:f1:27:83:94:
06:c7:c0:98:8a:e5:ac:60:76:49:60:fc:57:a2:79:
65:a5:7d:da:fa:c7:71:19:80:25:ad:5e:36:84:23:
34:d8:d6:3b:ac:04:30:38:66:83:91:35:96:35:10:
4d:01:3f:17:18:2c:54:a7:22:63:96:cf:d1:ca:cf:
17:e1:26:a9:67:0b:e1:69:c9:8c:43:4d:70:c9:4a:
72:58:f2:82:68:81:55:40:33:3b:85:e1:3f:76:4e:
6d:44:2a:6c:fd:76:03:59:ec:e1:1e:6b:bc:e8:83:
20:02:1b:9d:c9:3a:eb:ab:69:49:66:b7:2a:78:b0:
c1:51:cf:a4:9b:78:45:c4:66:e9:34:3f:4e:0e:b4:
cd:5f:4a:93:6c:13:b3:07:a6:39:c0:18:38:81:59:
14:f9:25:04:04:be:7a:90:40:2b:e5:88:cc:ae:22:
7a:1c:2b:1b:0d:09:4a:d9:82:a6:16:7a:a2:5b:ef:
49:1e:79:d3:71:48:be:fa:ae:c1:a3:ef:2b:56:37:
69:7a:94:2a:f0:26:33:84:17:bb:68:c1:ef:55:2a:
ef:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2F:A0:BC:14:76:C3:D3:BC:4B:0F:DD:03:87:E8:CA:EC:A7:36:45
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/CC-gvBR2w9O8Sw_dA4foyuynNkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
85.204.127.0/24
86.106.80.0/24
89.33.163.0/24
89.34.8.0/21
89.37.136.0/24
89.39.252.0/24
89.43.40.0-89.43.42.255
89.43.44.0/24
89.43.73.0/24
93.113.158.0/24
93.114.55.0/24
93.114.99.0/24
188.213.18.0/24
188.215.72.0/23
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
bd:a0:28:cb:94:01:ce:d2:f3:f1:a5:2d:9e:9d:6b:c9:2b:0b:
c9:53:2c:99:50:e5:9c:18:39:6f:d4:e3:6c:87:18:be:5f:4e:
59:7c:f3:74:99:1a:4f:da:46:87:65:4f:20:64:66:34:0c:95:
96:83:a4:ef:e6:14:8b:47:dc:2c:5f:3e:13:64:b7:49:a1:c8:
d8:3e:b7:c2:44:24:e5:23:cc:a3:8c:8d:82:82:8b:f9:a7:f4:
60:b4:9a:71:db:bd:ff:55:0b:0f:04:d5:98:0f:36:a4:d5:2f:
93:cd:63:7e:27:6f:ed:8e:c6:db:35:51:ce:4a:15:ad:9a:29:
0b:1e:3a:28:38:5a:2c:96:88:a1:8f:d3:2f:ea:38:3f:5a:f3:
3d:5b:86:68:94:3c:43:39:83:f5:1d:e6:7e:f5:13:87:6c:a5:
5e:cb:6e:4f:86:ab:aa:bf:7d:3f:db:aa:38:75:8f:0d:49:1c:
cb:74:83:03:ea:f1:d0:8c:86:2a:06:db:d0:eb:a3:fc:f4:35:
3c:b9:af:5e:40:7e:92:93:8d:13:21:63:2a:9e:38:99:d7:7b:
65:b1:b7:9e:11:bc:2a:b2:b3:50:2b:24:b6:25:86:56:19:b0:
ed:65:ff:75:74:ec:72:26:e3:e5:a6:a3:be:9b:be:4c:95:c5:
0b:bf:9e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org