Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/msyOcvlceB5aBykJX0XJiuV5wKs.roa
File: msyOcvlceB5aBykJX0XJiuV5wKs.roa (raw, json)
Hash identifier: bBJ+7Mfw995g0Oo9A+GxBWMaemMSWuEVuIfU2AMk50Y=
Subject key identifier: 9A:CC:8E:72:F9:5C:78:1E:5A:07:29:09:5F:45:C9:8A:E5:79:C0:AB
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 018587E702A0C2B3325A11950632D6F2C3BD
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/msyOcvlceB5aBykJX0XJiuV5wKs.roa
Signing time: Fri 06 Jan 2023 16:25:41 +0000
ROA not before: Fri 06 Jan 2023 16:25:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202422
IP address blocks: 95.85.76.0/24 maxlen: 24
92.223.102.0/24 maxlen: 24
80.93.209.0/24 maxlen: 24
80.93.210.0/24 maxlen: 24
5.188.36.0/24 maxlen: 24
80.93.219.0/24 maxlen: 24
80.93.218.0/24 maxlen: 24
80.93.214.0/24 maxlen: 24
80.93.215.0/24 maxlen: 24
80.93.217.0/24 maxlen: 24
80.93.223.0/24 maxlen: 24
92.38.148.0/24 maxlen: 24
92.38.155.0/24 maxlen: 24
92.38.173.0/24 maxlen: 24
5.188.148.0/24 maxlen: 24
92.38.186.0/23 maxlen: 24
92.38.181.0/24 maxlen: 24
92.38.186.0/24 maxlen: 24
92.38.180.0/24 maxlen: 24
5.8.24.0/24 maxlen: 24
78.111.105.0/24 maxlen: 24
78.111.99.0/24 maxlen: 24
78.111.102.0/24 maxlen: 24
78.111.101.0/24 maxlen: 24
103.215.218.0/24 maxlen: 24
217.195.193.0/24 maxlen: 24
92.38.187.0/24 maxlen: 24
5.188.169.0/24 maxlen: 24
5.188.168.0/24 maxlen: 24
5.188.190.0/24 maxlen: 24
146.185.236.0/24 maxlen: 24
146.185.237.0/24 maxlen: 24
37.9.33.0/24 maxlen: 24
37.9.32.0/24 maxlen: 24
146.185.248.0/24 maxlen: 24
217.195.205.0/24 maxlen: 24
146.185.216.0/24 maxlen: 24
146.185.217.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:87:e7:02:a0:c2:b3:32:5a:11:95:06:32:d6:f2:c3:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Jan 6 16:25:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9acc8e72f95c781e5a0729095f45c98ae579c0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:b3:25:1e:4b:e2:68:99:b1:25:5a:da:29:
ea:96:45:1f:c5:5a:98:98:59:0a:e6:bf:46:63:ca:
a9:b3:96:10:1c:eb:76:40:cb:01:f7:09:9c:08:95:
a0:30:c8:71:19:6d:66:3b:32:65:4b:52:c3:44:13:
2d:cb:56:27:b6:42:66:88:59:02:49:f9:fb:0e:3b:
24:29:90:98:ce:87:32:60:14:20:06:08:9a:26:49:
16:3a:70:b5:8b:ad:76:de:1b:72:b4:81:29:06:aa:
56:ae:8e:b2:01:e2:98:f3:83:f6:79:5a:e2:7e:69:
56:b6:02:5f:c1:89:73:94:43:d8:a5:a3:21:f4:67:
72:9d:aa:6b:7f:b8:19:db:37:ee:e5:6a:df:df:01:
83:0a:07:a7:31:d6:69:33:25:5d:6f:4a:c4:27:c5:
7d:3b:6a:9d:1c:9f:06:81:1a:28:58:16:59:ac:d8:
9a:10:96:0d:20:72:d8:cf:34:67:c0:7a:2d:ec:2a:
c8:26:2e:7b:38:b3:c9:e2:d2:92:c9:81:c7:55:65:
4b:8d:cc:93:68:cb:5f:e8:01:e8:62:24:07:f0:fe:
cc:d3:5c:c0:e6:3f:af:c1:2d:eb:c5:20:59:a7:06:
f1:89:b1:69:7c:51:79:67:fe:1d:ac:de:2e:f8:c8:
11:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CC:8E:72:F9:5C:78:1E:5A:07:29:09:5F:45:C9:8A:E5:79:C0:AB
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/msyOcvlceB5aBykJX0XJiuV5wKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.24.0/24
5.188.36.0/24
5.188.148.0/24
5.188.168.0/23
5.188.190.0/24
37.9.32.0/23
78.111.99.0/24
78.111.101.0-78.111.102.255
78.111.105.0/24
80.93.209.0-80.93.210.255
80.93.214.0/23
80.93.217.0-80.93.219.255
80.93.223.0/24
92.38.148.0/24
92.38.155.0/24
92.38.173.0/24
92.38.180.0/23
92.38.186.0/23
92.223.102.0/24
95.85.76.0/24
103.215.218.0/24
146.185.216.0/23
146.185.236.0/23
146.185.248.0/24
217.195.193.0/24
217.195.205.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:2e:78:ae:43:12:7b:d4:b8:c4:f0:47:3f:38:92:3f:e0:2c:
9e:0a:a5:2e:96:75:e4:d5:96:d4:e3:6a:d6:0f:67:0b:71:b0:
ab:8f:50:02:e4:6a:c4:d4:35:44:cd:47:dc:50:d5:a3:5a:09:
ca:02:73:e1:72:9e:4c:22:0d:bd:51:ba:9a:44:d6:8f:d4:6e:
51:ec:41:0f:58:75:8f:62:a3:13:1d:73:a3:ad:28:9f:4c:64:
c4:bf:0c:80:ff:2d:4e:cf:e8:4a:57:0c:df:4b:2e:44:1a:ca:
61:22:ad:90:dc:64:e6:5f:6f:a9:c1:5e:96:e5:0a:f4:21:55:
de:56:88:66:a9:41:a5:f8:51:06:d0:b7:75:d6:38:f2:82:69:
53:d4:df:4a:f5:cb:09:ad:38:4e:10:70:09:6a:53:39:aa:dc:
f0:0f:ff:61:6d:1b:83:02:07:9a:a0:b7:c4:cd:ac:9c:11:2b:
a5:ee:d9:f5:69:3d:b6:4d:61:6d:c7:65:19:77:4b:79:89:7f:
ec:d0:83:b0:fd:c4:9f:c9:8b:76:0f:ac:c8:b3:e8:a8:5b:7c:
5b:60:0b:95:8e:35:06:d9:5b:83:ee:4d:a3:42:d0:c9:9b:e9:
d9:7b:b0:73:6e:0c:54:59:ae:5b:00:1e:e0:05:99:18:cd:d8:
c5:e5:32:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:56 2023 by rpki-client on console-ams.rpki-client.org