Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/oYPd0LRis4HgGdD0R0R-94m08mU.roa
File: oYPd0LRis4HgGdD0R0R-94m08mU.roa (raw, json)
Hash identifier: UrQI4aK59RdgOnpuYGVwwzzKnANUvsb9t50OhGvMG5E=
Subject key identifier: A1:83:DD:D0:B4:62:B3:81:E0:19:D0:F4:47:44:7E:F7:89:B4:F2:65
Certificate issuer: /CN=85aaadc568f6c928fd764d421d42c71cf5791954
Certificate serial: 01874B7383E63D54BAC73740379DB69488B0
Authority key identifier: 85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/oYPd0LRis4HgGdD0R0R-94m08mU.roa
Signing time: Tue 04 Apr 2023 08:47:54 +0000
ROA not before: Tue 04 Apr 2023 08:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44092
IP address blocks: 185.191.105.0/24 maxlen: 24
185.191.104.0/24 maxlen: 24
185.191.106.0/24 maxlen: 24
185.191.107.0/24 maxlen: 24
188.191.56.0/22 maxlen: 24
188.191.56.0/24 maxlen: 24
188.191.57.0/24 maxlen: 24
188.191.58.0/24 maxlen: 24
188.191.59.0/24 maxlen: 24
185.56.156.0/22 maxlen: 24
85.208.200.0/24 maxlen: 24
85.208.201.0/24 maxlen: 24
85.208.203.0/24 maxlen: 24
85.208.202.0/24 maxlen: 24
185.215.144.0/24 maxlen: 24
77.242.130.0/24 maxlen: 24
77.242.128.0/24 maxlen: 24
77.242.129.0/24 maxlen: 24
77.242.128.0/20 maxlen: 24
185.215.145.0/24 maxlen: 24
77.242.131.0/24 maxlen: 24
77.242.132.0/24 maxlen: 24
185.248.227.0/24 maxlen: 24
45.145.201.0/24 maxlen: 24
45.145.202.0/24 maxlen: 24
45.145.200.0/24 maxlen: 24
45.145.203.0/24 maxlen: 24
217.28.64.0/24 maxlen: 24
217.28.66.0/24 maxlen: 24
217.28.67.0/24 maxlen: 24
217.28.65.0/24 maxlen: 24
89.37.71.0/24 maxlen: 24
89.37.70.0/24 maxlen: 24
89.37.70.0/23 maxlen: 24
77.242.134.0/24 maxlen: 24
77.242.133.0/24 maxlen: 24
185.215.147.0/24 maxlen: 24
185.215.146.0/24 maxlen: 24
77.242.137.0/24 maxlen: 24
77.242.135.0/24 maxlen: 24
77.242.136.0/24 maxlen: 24
77.242.138.0/24 maxlen: 24
77.242.139.0/24 maxlen: 24
77.242.140.0/24 maxlen: 24
77.242.141.0/24 maxlen: 24
77.242.143.0/24 maxlen: 24
77.242.142.0/24 maxlen: 24
185.171.232.0/24 maxlen: 24
185.171.233.0/24 maxlen: 24
185.171.235.0/24 maxlen: 24
185.171.234.0/24 maxlen: 24
185.219.117.0/24 maxlen: 24
185.219.118.0/24 maxlen: 24
185.219.116.0/24 maxlen: 24
185.219.119.0/24 maxlen: 24
2a02:53e0::/32 maxlen: 32
2a0b:7b80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4b:73:83:e6:3d:54:ba:c7:37:40:37:9d:b6:94:88:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85aaadc568f6c928fd764d421d42c71cf5791954
Validity
Not Before: Apr 4 08:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a183ddd0b462b381e019d0f447447ef789b4f265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1f:1d:d5:d4:5d:a4:5b:b6:be:9d:e8:d3:77:
d4:ba:da:ca:14:ff:ef:e6:d2:20:d5:1a:03:2f:3a:
7b:ae:f6:51:e2:40:aa:76:b3:92:50:fe:04:5a:7a:
07:48:e1:e9:0f:3d:59:4a:53:58:b7:a9:a4:79:1f:
8d:6b:f7:48:3c:2e:8e:4e:f5:0a:ca:36:7a:a0:db:
03:10:89:e5:53:6a:48:e5:22:d4:4f:f7:d9:d5:9a:
28:e1:a8:42:54:a1:13:52:0c:da:31:7b:aa:4a:75:
ef:60:20:55:78:c3:a5:8f:48:6e:81:7f:a0:da:79:
31:7f:ed:a6:ac:ec:05:f4:e5:a3:32:02:3a:4b:bb:
16:e7:75:e5:f3:4b:28:c5:f2:50:70:31:fd:c5:47:
01:3f:be:7a:05:da:8a:24:76:53:94:88:45:1a:0e:
cc:46:92:1f:9e:d3:d8:31:10:de:08:54:ae:e1:3c:
35:dd:00:b5:26:bb:53:18:64:c0:a3:c0:4d:1d:a2:
b6:df:6c:c1:93:e7:8e:4f:e9:58:9d:5f:89:d0:47:
98:3c:fb:2a:89:1e:a4:6f:83:28:1f:4d:f3:47:91:
cb:3a:9c:e7:be:cf:0b:63:b9:85:97:82:32:e9:7a:
24:dd:65:25:70:cc:db:0b:1d:00:95:4e:79:d4:b8:
bc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:83:DD:D0:B4:62:B3:81:E0:19:D0:F4:47:44:7E:F7:89:B4:F2:65
X509v3 Authority Key Identifier:
keyid:85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/oYPd0LRis4HgGdD0R0R-94m08mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/haqtxWj2ySj9dk1CHULHHPV5GVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.200.0/22
77.242.128.0/20
85.208.200.0/22
89.37.70.0/23
185.56.156.0/22
185.171.232.0/22
185.191.104.0/22
185.215.144.0/22
185.219.116.0/22
185.248.227.0/24
188.191.56.0/22
217.28.64.0/22
IPv6:
2a02:53e0::/32
2a0b:7b80::/29
Signature Algorithm: sha256WithRSAEncryption
88:17:06:a9:78:be:a6:76:20:c3:68:e2:94:76:3f:fe:84:2e:
9e:52:d3:5e:da:ee:5a:54:cd:39:7b:47:2c:28:77:25:61:99:
13:c9:6c:6d:27:90:08:ed:7c:84:74:79:04:1c:ba:a3:04:0f:
a4:84:b4:63:f8:df:50:ad:89:18:a6:ff:6c:d9:26:32:fa:c6:
28:04:c9:cc:84:b1:17:11:9b:85:cd:29:75:54:0b:59:df:12:
ab:1a:47:dd:f2:23:42:b6:3d:42:46:1f:38:26:a9:c7:fb:8f:
ac:6b:99:d1:da:ff:34:a1:37:4d:8d:15:8a:75:43:43:85:71:
ff:d5:df:e5:31:13:52:d3:56:54:48:bb:83:5d:28:45:cf:94:
97:d6:94:2f:fc:d9:04:3c:78:45:8d:e3:20:b5:50:3e:4f:b8:
75:1c:97:c5:61:33:f9:6a:76:aa:96:4b:f0:02:2b:55:1e:13:
ac:10:0c:71:87:e5:ac:39:a2:3a:7c:d5:0c:43:48:99:5d:80:
4e:6d:cc:f8:6b:7f:20:83:26:78:e5:01:09:49:56:91:00:09:
78:fd:91:4c:24:a2:ad:e1:32:b3:d2:48:5a:3d:91:62:82:11:
4c:81:15:42:23:13:40:c6:19:e9:d2:a6:34:60:58:1c:af:09:
e4:eb:bc:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:24 2023 by rpki-client on console-fra.rpki-client.org