Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/yxmv-TJ0sCO_Sqr6911s6xAPQHs.roa
File: yxmv-TJ0sCO_Sqr6911s6xAPQHs.roa (raw, json)
Hash identifier: k5ma18UXtS0YDOBIMR41aoJZ5YSnuI7u+rlxRUqeIWM=
Subject key identifier: CB:19:AF:F9:32:74:B0:23:BF:4A:AA:FA:F7:5D:6C:EB:10:0F:40:7B
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018B945ABC428A07DACAFEA81B438533A6A0
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/yxmv-TJ0sCO_Sqr6911s6xAPQHs.roa
Signing time: Fri 03 Nov 2023 08:44:16 +0000
ROA not before: Fri 03 Nov 2023 08:44:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.253.212.0/24 maxlen: 24
178.253.218.0/24 maxlen: 24
178.253.216.0/24 maxlen: 24
178.253.217.0/24 maxlen: 24
178.253.220.0/23 maxlen: 23
93.186.65.0/24 maxlen: 24
93.186.77.0/24 maxlen: 24
188.255.207.0/24 maxlen: 24
188.255.217.0/24 maxlen: 24
188.255.228.0/24 maxlen: 24
188.255.230.0/23 maxlen: 23
109.121.48.0/24 maxlen: 24
109.121.49.0/24 maxlen: 24
212.69.3.0/24 maxlen: 24
212.69.2.0/24 maxlen: 24
109.121.53.0/24 maxlen: 24
109.121.55.0/24 maxlen: 24
212.69.4.0/24 maxlen: 24
188.255.253.0/24 maxlen: 24
212.69.5.0/24 maxlen: 24
178.253.232.0/24 maxlen: 24
178.253.238.0/24 maxlen: 24
178.253.245.0/24 maxlen: 24
109.233.188.0/24 maxlen: 24
178.253.246.0/24 maxlen: 24
178.253.244.0/24 maxlen: 24
81.18.51.0/24 maxlen: 24
81.18.57.0/24 maxlen: 24
188.255.179.0/24 maxlen: 24
81.18.58.0/24 maxlen: 24
81.18.56.0/24 maxlen: 24
81.18.63.0/24 maxlen: 24
188.255.192.0/23 maxlen: 23
188.255.190.0/24 maxlen: 24
188.255.196.0/22 maxlen: 22
188.255.195.0/24 maxlen: 24
79.175.120.0/24 maxlen: 24
212.69.21.0/24 maxlen: 24
212.69.19.0/24 maxlen: 24
178.219.2.0/24 maxlen: 24
212.69.30.0/24 maxlen: 24
178.219.15.0/24 maxlen: 24
79.175.85.0/24 maxlen: 24
77.105.39.0/24 maxlen: 24
77.105.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:5a:bc:42:8a:07:da:ca:fe:a8:1b:43:85:33:a6:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Nov 3 08:44:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb19aff93274b023bf4aaafaf75d6ceb100f407b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1a:0a:ac:1d:aa:6c:60:9a:ca:60:f7:d6:66:
dd:2d:1b:cd:c8:30:4d:43:13:16:ff:6a:7b:45:e7:
34:32:7f:db:5a:0c:f6:fa:e3:16:8f:39:97:f2:17:
8d:17:b1:52:ee:3c:3e:aa:75:ed:6e:db:3d:55:15:
12:70:bb:ff:61:5e:8c:59:20:07:9f:df:71:38:cc:
d6:36:7a:91:45:99:38:20:cf:fd:29:63:20:98:c0:
d1:5b:d7:f7:37:65:63:4c:cc:1d:ed:ea:8b:11:bb:
67:94:4f:bc:d9:21:30:fd:d2:ef:c1:bf:94:f7:ce:
97:73:46:ce:4f:8c:e2:1e:61:da:53:b9:42:af:4c:
f8:60:8d:e1:f6:65:9f:25:82:0c:11:08:b1:d6:7b:
1b:88:a6:cb:12:7a:df:aa:c6:58:8c:51:e5:5b:74:
bf:d8:d8:8d:fe:4d:f2:4b:b6:7f:fc:d2:e7:aa:2b:
24:32:5c:93:f4:16:5b:e2:8b:89:5e:3c:1a:8c:9b:
d3:09:aa:ad:9e:c1:ac:83:6f:12:a2:3f:fd:69:ac:
d7:52:b2:9c:02:ae:00:8c:f5:21:3b:26:84:e5:fc:
20:26:ef:ec:7e:1f:99:2e:1c:0d:67:df:85:75:3a:
31:25:45:27:16:a8:f8:c7:58:3e:27:8c:86:2a:37:
7e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:19:AF:F9:32:74:B0:23:BF:4A:AA:FA:F7:5D:6C:EB:10:0F:40:7B
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/yxmv-TJ0sCO_Sqr6911s6xAPQHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.8.0/24
77.105.39.0/24
79.175.85.0/24
79.175.120.0/24
81.18.51.0/24
81.18.56.0-81.18.58.255
81.18.63.0/24
93.186.65.0/24
93.186.77.0/24
109.121.48.0/23
109.121.53.0/24
109.121.55.0/24
109.233.188.0/24
178.219.2.0/24
178.219.15.0/24
178.253.212.0/24
178.253.216.0-178.253.218.255
178.253.220.0/23
178.253.232.0/24
178.253.238.0/24
178.253.244.0-178.253.246.255
188.255.179.0/24
188.255.190.0/24
188.255.192.0/23
188.255.195.0-188.255.199.255
188.255.207.0/24
188.255.217.0/24
188.255.228.0/24
188.255.230.0/23
188.255.253.0/24
212.69.2.0-212.69.5.255
212.69.19.0/24
212.69.21.0/24
212.69.30.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e7:cd:94:5c:93:f8:49:a6:88:c5:5a:f0:33:25:46:af:e2:
d9:42:da:86:16:2b:f7:01:16:6f:1b:de:b0:de:cb:4e:4d:8a:
e2:a2:b8:5d:44:13:18:16:01:e5:2c:2f:ea:f0:cd:05:80:c2:
8d:6f:d2:46:1c:62:ad:8a:c6:dd:8c:be:37:05:01:fe:0c:3a:
30:69:43:16:bf:23:9a:78:62:dc:f6:76:13:c7:18:2a:e1:f0:
f9:c7:07:a2:3b:7b:8b:33:d4:a5:af:1e:70:2d:db:d0:eb:21:
0a:68:3f:d8:e8:a3:fe:0a:95:31:10:bb:f9:6f:67:20:d3:3c:
67:6f:9c:87:d6:f4:4d:7e:fa:5a:60:14:e1:50:de:f3:3a:09:
ea:98:f6:01:c0:12:da:85:45:58:88:28:dd:86:17:a4:af:40:
58:d8:a6:71:d3:54:25:69:50:96:20:b8:98:e7:af:e4:18:6c:
fd:6a:21:0e:41:c1:87:d8:34:44:79:ea:7a:0c:73:b4:ca:06:
84:f4:a8:c1:32:1a:cb:a8:7d:e9:cb:13:c0:af:5e:44:14:dc:
16:a2:51:e6:02:35:61:62:79:80:43:2b:da:2c:5f:d0:e2:54:
eb:dc:d5:26:87:50:c5:74:46:64:1c:22:be:af:46:4b:07:6f:
fe:56:6e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 12:40:46 2023 by rpki-client on console-fra.rpki-client.org