Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/SEmofaUcLEygNU-frNANbPiZixg.roa
File: SEmofaUcLEygNU-frNANbPiZixg.roa (raw, json)
Hash identifier: nX9sFBBiFjYiIU2Z9aRcpc2KMy7+Nwq7M3p3AXQ/TtA=
Subject key identifier: 48:49:A8:7D:A5:1C:2C:4C:A0:35:4F:9F:AC:D0:0D:6C:F8:99:8B:18
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 0186449DF524A0D1531596CE8732535AA01C
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/SEmofaUcLEygNU-frNANbPiZixg.roa
Signing time: Sun 12 Feb 2023 07:54:07 +0000
ROA not before: Sun 12 Feb 2023 07:54:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202422
IP address blocks: 139.28.6.0/24 maxlen: 24
95.85.76.0/24 maxlen: 24
92.223.102.0/24 maxlen: 24
80.93.209.0/24 maxlen: 24
80.93.210.0/24 maxlen: 24
5.188.36.0/24 maxlen: 24
80.93.219.0/24 maxlen: 24
80.93.218.0/24 maxlen: 24
80.93.214.0/24 maxlen: 24
80.93.215.0/24 maxlen: 24
80.93.217.0/24 maxlen: 24
80.93.223.0/24 maxlen: 24
92.38.148.0/24 maxlen: 24
92.38.155.0/24 maxlen: 24
92.38.173.0/24 maxlen: 24
5.188.148.0/24 maxlen: 24
92.38.186.0/23 maxlen: 24
92.38.181.0/24 maxlen: 24
92.38.186.0/24 maxlen: 24
92.38.180.0/24 maxlen: 24
5.8.24.0/24 maxlen: 24
78.111.105.0/24 maxlen: 24
78.111.99.0/24 maxlen: 24
78.111.102.0/24 maxlen: 24
103.215.218.0/24 maxlen: 24
217.195.193.0/24 maxlen: 24
92.38.187.0/24 maxlen: 24
5.188.169.0/24 maxlen: 24
5.188.168.0/24 maxlen: 24
5.188.190.0/24 maxlen: 24
146.185.236.0/24 maxlen: 24
146.185.237.0/24 maxlen: 24
37.9.33.0/24 maxlen: 24
37.9.32.0/24 maxlen: 24
146.185.248.0/24 maxlen: 24
217.195.205.0/24 maxlen: 24
146.185.216.0/24 maxlen: 24
146.185.217.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:44:9d:f5:24:a0:d1:53:15:96:ce:87:32:53:5a:a0:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Feb 12 07:54:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4849a87da51c2c4ca0354f9facd00d6cf8998b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:51:f8:a5:03:51:0f:65:e2:41:99:9d:a8:3a:
db:bb:96:98:08:22:44:96:91:aa:fe:79:71:c7:b7:
81:b4:75:26:a4:67:76:4f:79:89:18:5e:2e:32:7c:
88:83:7e:f2:9f:f0:ba:56:fd:29:c7:78:8e:b0:bd:
27:9e:bd:fc:12:98:80:2c:22:10:29:fd:6d:d4:41:
9a:d5:1b:0a:57:fc:03:3e:61:2d:d5:34:08:3c:ac:
49:fd:0b:70:a6:10:ac:63:ca:38:09:21:09:77:f5:
5a:47:63:e6:b8:ef:76:26:8d:af:06:32:29:ce:7b:
81:e9:0f:c3:b2:3a:2c:6f:98:83:26:46:5c:1c:04:
e7:91:61:e5:4b:e0:ae:d8:4e:fc:21:93:c6:cc:b9:
27:29:28:c6:24:2e:2b:f8:3b:4f:88:22:a3:38:a4:
aa:a3:2d:b3:01:99:14:8c:ca:d9:91:88:63:10:3d:
b5:7a:8d:04:0c:e6:98:6f:d5:25:fb:a7:5a:2c:47:
1b:0c:f1:36:f4:b5:9b:65:42:54:72:0c:b8:52:0c:
76:29:fa:e5:71:78:d0:13:2a:99:7c:11:b9:62:11:
ba:7b:3f:ce:0c:1f:1d:4d:1e:5c:c3:76:99:47:9e:
1c:54:9e:9e:db:80:17:07:61:13:1a:d8:5b:17:49:
a8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:49:A8:7D:A5:1C:2C:4C:A0:35:4F:9F:AC:D0:0D:6C:F8:99:8B:18
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/SEmofaUcLEygNU-frNANbPiZixg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.24.0/24
5.188.36.0/24
5.188.148.0/24
5.188.168.0/23
5.188.190.0/24
37.9.32.0/23
78.111.99.0/24
78.111.102.0/24
78.111.105.0/24
80.93.209.0-80.93.210.255
80.93.214.0/23
80.93.217.0-80.93.219.255
80.93.223.0/24
92.38.148.0/24
92.38.155.0/24
92.38.173.0/24
92.38.180.0/23
92.38.186.0/23
92.223.102.0/24
95.85.76.0/24
103.215.218.0/24
139.28.6.0/24
146.185.216.0/23
146.185.236.0/23
146.185.248.0/24
217.195.193.0/24
217.195.205.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ae:ed:cc:74:18:fc:82:a2:61:02:06:ed:a8:35:c9:5b:b3:
80:44:1c:93:d5:38:ff:51:dc:99:fb:f5:09:61:08:89:14:b7:
f2:fb:8e:fa:b3:2d:c4:19:02:14:bb:eb:50:71:d2:e1:1e:ea:
8e:4d:af:c3:c7:1e:49:2a:f3:a1:99:03:af:c2:6c:d7:50:82:
b4:e1:38:51:87:91:6a:4f:7f:2f:bb:ce:2d:d0:06:13:bb:07:
b9:4a:16:a5:20:fb:7d:0d:da:c3:ce:01:b7:4e:06:18:b8:29:
f8:50:41:26:24:a4:ff:ec:6d:66:bb:9f:bf:13:ac:63:2b:15:
3d:63:64:d6:57:86:d8:f2:13:39:53:9e:e0:81:c6:f9:fb:a3:
a5:eb:22:d4:5a:e9:fb:aa:f8:92:38:0b:df:0e:75:be:aa:6c:
81:ba:ee:e9:d1:ec:ee:f3:7d:35:da:a3:bc:af:50:ed:d4:ff:
38:91:ce:7d:b2:c3:17:8f:ee:6b:18:7e:11:a3:8d:7f:a3:6e:
d9:f5:b9:32:2e:1e:9c:f9:6e:11:fb:c2:b4:97:ab:4b:09:9f:
24:4c:31:27:f4:14:9d:34:58:38:ae:fe:43:13:2d:c5:4b:45:
1d:ab:12:d7:90:f4:83:33:28:5b:bd:aa:91:c5:26:05:b2:af:
7e:f7:65:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:56 2023 by rpki-client on console-ams.rpki-client.org