Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Py-70xcdQ1D_L7ZyAZ7ZuIJfBNA.roa
File: Py-70xcdQ1D_L7ZyAZ7ZuIJfBNA.roa (raw, json)
Hash identifier: 9QZf1DDSOerA5dmgvXo0BMPvf1sCx71IO3wmeyz8ubE=
Subject key identifier: 3F:2F:BB:D3:17:1D:43:50:FF:2F:B6:72:01:9E:D9:B8:82:5F:04:D0
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 018A1E1EF65EC21848003F596AB4F272B247
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Py-70xcdQ1D_L7ZyAZ7ZuIJfBNA.roa
Signing time: Tue 22 Aug 2023 16:41:00 +0000
ROA not before: Tue 22 Aug 2023 16:41:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45027
IP address blocks: 193.109.217.0/24 maxlen: 24
185.66.12.0/22 maxlen: 22
185.126.84.0/23 maxlen: 23
185.126.86.0/23 maxlen: 23
45.153.74.0/23 maxlen: 23
195.190.12.0/24 maxlen: 24
185.80.148.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1e:1e:f6:5e:c2:18:48:00:3f:59:6a:b4:f2:72:b2:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Aug 22 16:41:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f2fbbd3171d4350ff2fb672019ed9b8825f04d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:21:f1:1d:38:57:0c:7c:b2:51:20:0a:a1:17:
5e:10:a6:2e:56:0a:74:29:d9:be:33:2d:1c:34:c7:
7e:84:e9:49:ca:db:8a:fe:d3:0a:5d:bf:59:67:c2:
e8:93:62:eb:f2:a6:99:bb:a5:2d:fd:b5:e5:94:2f:
e3:fc:d4:b1:97:e8:6a:c6:d6:9b:db:18:ec:0f:59:
74:4d:e9:8e:d1:e0:bb:92:11:09:48:e6:c9:62:8d:
1c:2f:28:23:0e:a3:c8:9e:28:b4:7d:d9:e7:ef:ff:
08:5a:2b:87:aa:e8:f4:10:7c:bd:bd:f0:15:d0:1b:
92:d8:1a:ba:28:5b:7e:d6:40:7e:b8:a4:c3:79:77:
c9:a5:65:21:55:4c:15:ca:79:19:3a:a8:93:aa:c0:
e7:69:b8:ab:8e:fa:a3:76:d0:cf:e6:f9:11:ed:cd:
0d:0e:cb:7b:8b:04:89:52:98:4c:92:17:a4:28:7c:
ec:27:ff:8a:2e:c1:73:20:39:50:43:99:c5:24:3b:
05:76:0b:0c:cf:1a:41:6f:46:96:24:24:29:25:c0:
18:d8:27:c7:69:11:1d:10:e3:ac:23:a0:58:c9:d9:
36:9d:d6:4e:1e:8f:ea:e3:36:a4:0e:80:9d:10:8f:
09:eb:b8:5a:5a:10:17:56:7e:44:e0:f1:c6:1b:56:
d2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2F:BB:D3:17:1D:43:50:FF:2F:B6:72:01:9E:D9:B8:82:5F:04:D0
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/Py-70xcdQ1D_L7ZyAZ7ZuIJfBNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.74.0/23
185.66.12.0/22
185.80.148.0/22
185.126.84.0/22
193.109.217.0/24
195.190.12.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7b:65:74:9b:15:c4:54:99:e3:fd:7d:81:7f:9c:9c:b4:89:
a9:d3:62:6a:31:2f:2e:9f:2b:79:a0:8d:1d:a2:90:ba:92:c9:
a6:37:30:1a:71:be:89:3a:9c:a2:0b:53:fe:47:12:61:fd:b0:
44:1c:75:03:2a:e0:c0:bf:2e:b9:51:ce:6f:f6:66:4d:3f:34:
66:4d:e2:f4:b9:15:c6:a6:78:4f:f1:50:80:19:36:7c:cc:5e:
23:1b:81:1d:f7:2b:2f:81:4e:4e:50:b5:78:eb:96:56:bb:01:
90:29:44:75:64:dc:57:56:eb:af:d8:fc:9c:2f:50:a8:5c:77:
2f:e0:a0:1d:e3:41:88:4c:23:6e:58:0f:ca:22:22:6f:3a:de:
c5:fc:51:54:93:c9:37:ac:cf:3a:54:68:b4:52:c5:83:17:01:
54:b4:42:fe:e6:49:42:ba:aa:6c:96:84:28:b4:8d:2b:f6:4d:
3b:74:4b:2e:8d:7b:8a:6b:c8:66:cd:43:de:3a:4e:e8:a5:99:
99:72:b0:01:dc:21:27:38:88:ba:ef:57:27:38:b4:f3:9e:85:
ea:99:a3:27:de:1c:02:c2:fc:61:2d:d5:31:b2:0a:11:70:01:
1b:b9:b5:ff:30:ca:be:0e:42:69:92:fb:c2:38:0a:7c:82:8e:
7f:89:5f:67
-----BEGIN CERTIFICATE-----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Generated at Sun Aug 27 11:21:58 2023 by rpki-client on console-fra.rpki-client.org