Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/iACGiZKSJtVJkp49coMa29pFWbs.roa
File: iACGiZKSJtVJkp49coMa29pFWbs.roa (raw, json)
Hash identifier: X6d7PZ0PAeOLVopcj+OSC7rTB2T2WuJvLVQBDM4YVnU=
Subject key identifier: 88:00:86:89:92:92:26:D5:49:92:9E:3D:72:83:1A:DB:DA:45:59:BB
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018674C3D86277A69BD9474A83FA562CED11
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/iACGiZKSJtVJkp49coMa29pFWbs.roa
Signing time: Tue 21 Feb 2023 16:17:17 +0000
ROA not before: Tue 21 Feb 2023 16:17:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 286
IP address blocks: 62.132.116.0/23 maxlen: 23
62.132.114.0/23 maxlen: 23
62.132.132.0/23 maxlen: 23
62.41.160.0/24 maxlen: 24
62.41.80.0/22 maxlen: 22
62.41.84.0/23 maxlen: 23
62.41.102.0/24 maxlen: 24
192.16.202.0/24 maxlen: 24
194.121.52.0/22 maxlen: 22
92.71.0.0/17 maxlen: 17
192.67.190.0/23 maxlen: 23
192.67.192.0/22 maxlen: 22
192.67.196.0/24 maxlen: 24
62.41.16.0/21 maxlen: 21
62.132.0.0/22 maxlen: 22
62.41.24.0/22 maxlen: 22
62.132.16.0/22 maxlen: 22
62.41.37.0/24 maxlen: 24
62.41.32.0/24 maxlen: 24
62.132.24.0/23 maxlen: 23
62.132.28.0/24 maxlen: 24
92.71.128.0/18 maxlen: 18
62.132.42.0/23 maxlen: 23
62.41.56.0/21 maxlen: 21
62.41.64.0/20 maxlen: 20
192.54.104.0/24 maxlen: 24
62.41.0.0/20 maxlen: 20
2a00:1750::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:c3:d8:62:77:a6:9b:d9:47:4a:83:fa:56:2c:ed:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 16:17:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88008689929226d549929e3d72831adbda4559bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:82:7b:7b:6b:cf:d5:0a:00:63:80:94:ac:a3:
e4:67:5d:31:31:4b:a5:8a:05:aa:a5:57:b8:a9:d8:
f5:47:73:d7:5b:ab:14:c1:1f:78:2f:33:bd:ac:86:
76:9a:b1:95:b1:68:72:a2:dd:77:ed:ab:4d:b1:d5:
07:be:2e:51:b7:c9:b8:8e:73:8e:39:6c:a9:bd:18:
de:3a:57:4d:65:6b:59:5d:83:ed:e5:4a:de:af:7e:
e0:c0:d8:a9:b9:a5:1f:c6:15:ee:5b:a1:d2:72:9d:
a3:49:87:e3:cd:88:ee:7c:42:b8:53:9f:c7:01:0a:
7a:ef:d2:6e:b3:bb:1c:06:b6:9d:c2:14:e1:31:c5:
39:e3:db:bb:a0:23:96:01:c4:17:09:a6:26:b8:81:
98:c9:aa:6a:b1:ff:15:a0:4e:60:a2:b2:9c:a6:c5:
d5:d2:36:a1:c2:e8:61:04:76:58:57:e9:9f:cc:4b:
94:7a:b3:9d:9f:60:73:1d:b6:d6:a0:92:a3:9a:5f:
59:d0:a8:9e:d4:cf:a4:10:32:1f:95:36:8e:73:a8:
bf:63:26:f2:23:9c:34:3a:14:e6:99:4c:bb:3a:bd:
97:3a:f4:d2:31:60:94:92:fd:5e:5b:11:df:0d:22:
64:9a:08:19:2e:5f:59:40:26:76:85:b3:2b:27:31:
2c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:00:86:89:92:92:26:D5:49:92:9E:3D:72:83:1A:DB:DA:45:59:BB
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/iACGiZKSJtVJkp49coMa29pFWbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.41.0.0-62.41.27.255
62.41.32.0/24
62.41.37.0/24
62.41.56.0-62.41.85.255
62.41.102.0/24
62.41.160.0/24
62.132.0.0/22
62.132.16.0/22
62.132.24.0/23
62.132.28.0/24
62.132.42.0/23
62.132.114.0-62.132.117.255
62.132.132.0/23
92.71.0.0-92.71.191.255
192.16.202.0/24
192.54.104.0/24
192.67.190.0-192.67.196.255
194.121.52.0/22
IPv6:
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
86:5a:23:6f:5f:1e:8f:7c:bc:6b:75:df:b3:61:26:49:1c:4d:
3e:e0:e9:0f:f1:08:a6:f6:8b:70:ff:d8:cc:42:96:28:22:2e:
95:7a:aa:f3:bb:3f:fd:73:51:6c:87:fb:95:b1:0b:08:f7:da:
27:9b:53:a9:fb:4d:fa:c9:44:44:a5:17:d7:79:10:a1:0d:b2:
fb:27:c1:47:0e:3a:b7:6a:b3:08:7c:aa:b9:7a:19:3c:1a:76:
fc:1b:fd:a3:d5:16:53:37:b5:12:76:62:ee:c0:d5:f0:a5:9f:
7a:36:b7:57:93:1b:85:4b:d1:8c:9e:d4:a3:5d:a4:42:59:2c:
d1:09:5f:05:7c:28:07:23:76:62:56:f8:fd:0e:39:f6:99:d1:
ac:b5:84:26:fc:5d:c2:31:b0:60:67:8a:a0:86:79:ec:55:d4:
47:b1:72:1c:1f:6d:ae:8b:19:fc:df:61:13:55:12:22:ee:fa:
94:dc:0f:51:f2:8d:df:c1:3d:ad:83:ea:f3:18:24:7a:b6:16:
55:6c:f4:d4:cc:28:0c:e5:4c:1a:af:b9:6d:0d:8d:cc:22:9b:
25:d9:fc:cc:a7:78:4a:8f:8c:59:b8:e2:26:6d:02:8f:28:e5:
c2:46:4f:39:4f:63:2c:91:57:74:5a:a3:e8:80:6f:48:35:f4:
54:f0:a1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:26 2023 by rpki-client on console-fra.rpki-client.org