Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/gFn81q63Avjp8vgMonqCdhyfNZU.roa
File: gFn81q63Avjp8vgMonqCdhyfNZU.roa (raw, json)
Hash identifier: 1+LOvnIEIetv/9fNc0bip+BbD2RjkNM0QpdhChRwbDs=
Subject key identifier: 80:59:FC:D6:AE:B7:02:F8:E9:F2:F8:0C:A2:7A:82:76:1C:9F:35:95
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 018770179E5F63B234DEF411FFA31677F228
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/gFn81q63Avjp8vgMonqCdhyfNZU.roa
Signing time: Tue 11 Apr 2023 11:33:28 +0000
ROA not before: Tue 11 Apr 2023 11:33:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202505
IP address blocks: 89.43.78.0/24 maxlen: 24
86.104.14.0/24 maxlen: 24
193.31.118.0/24 maxlen: 24
193.31.117.0/24 maxlen: 24
193.31.119.0/24 maxlen: 24
84.54.14.0/24 maxlen: 24
185.81.152.0/24 maxlen: 24
185.81.153.0/24 maxlen: 24
213.226.118.0/24 maxlen: 24
185.81.155.0/24 maxlen: 24
185.81.154.0/24 maxlen: 24
176.98.42.0/24 maxlen: 24
176.98.43.0/24 maxlen: 24
2a06:f7c5::/32 maxlen: 32
2a05:88c5::/32 maxlen: 32
2a10:7f46::/32 maxlen: 32
2a10:7f45::/32 maxlen: 32
2a10:3302::/32 maxlen: 32
2a05:88c4::/32 maxlen: 32
2a06:f7c4::/32 maxlen: 32
2a10:3301::/32 maxlen: 32
2a10:7f44::/32 maxlen: 32
2a10:7f47::/32 maxlen: 32
2a06:f7c7::/32 maxlen: 32
2a05:88c7::/32 maxlen: 32
2a10:3303::/32 maxlen: 32
2a10:3300::/32 maxlen: 32
2a11:d102::/32 maxlen: 32
2a11:d101::/32 maxlen: 32
2a10:3304::/32 maxlen: 32
2a10:3307::/32 maxlen: 32
2a10:7f40::/32 maxlen: 32
2a06:f7c3::/32 maxlen: 32
2a05:88c6::/32 maxlen: 32
2a10:7fc5::/32 maxlen: 32
2a10:7f43::/32 maxlen: 32
2a06:f7c0::/32 maxlen: 32
2a05:88c0::/32 maxlen: 32
2a05:88c3::/32 maxlen: 32
2a06:f7c6::/32 maxlen: 32
2a11:d105::/32 maxlen: 32
2a10:7fc2::/32 maxlen: 32
2a11:d104::/32 maxlen: 32
2a10:7fc1::/32 maxlen: 32
2a11:d107::/32 maxlen: 32
2a10:7fc4::/32 maxlen: 32
2a10:7fc0::/32 maxlen: 32
2a10:7fc3::/32 maxlen: 32
2a10:3306::/32 maxlen: 32
2a05:88c1::/32 maxlen: 32
2a10:3305::/32 maxlen: 32
2a06:f7c1::/32 maxlen: 32
2a10:7f42::/32 maxlen: 32
2a10:7fc6::/32 maxlen: 32
2a10:7f41::/32 maxlen: 32
2a10:7fc7::/32 maxlen: 32
2a06:f7c2::/32 maxlen: 32
2a05:88c2::/32 maxlen: 32
2a11:d106::/32 maxlen: 32
2a11:d100::/32 maxlen: 32
2a11:d103::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:17:9e:5f:63:b2:34:de:f4:11:ff:a3:16:77:f2:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Apr 11 11:33:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8059fcd6aeb702f8e9f2f80ca27a82761c9f3595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e5:3c:48:dd:b7:35:ae:93:23:a4:8d:89:3e:
cd:2e:2a:21:99:4f:20:e5:ce:a9:11:bc:30:a1:24:
58:7f:20:41:ec:ef:72:3c:e4:5d:d1:40:98:f6:50:
5c:63:a0:f3:8c:cc:10:8a:99:31:08:a7:cd:28:e4:
b0:fc:3a:6a:4f:ac:c6:0d:a0:ce:7e:1b:b1:99:a6:
02:0f:3b:ba:c9:d8:c9:45:9b:03:76:41:ee:48:2b:
26:59:8b:d9:c3:41:24:33:45:88:c8:45:71:87:2e:
9d:1e:28:a1:4b:e9:67:83:02:16:59:30:c8:7b:19:
68:78:27:b1:0b:ff:41:a6:3f:d2:aa:3c:d6:19:ad:
bd:91:63:09:ef:93:5d:54:18:a9:27:50:35:31:c7:
76:a4:f1:23:ab:1d:8e:82:54:9f:55:7c:dd:89:29:
f9:42:39:c0:d8:b9:da:2f:97:6d:32:f3:13:b3:b0:
b5:42:4e:37:b6:dd:b1:c0:b0:f9:13:55:1d:8b:ef:
74:c8:52:9e:19:6e:c8:5d:51:d1:b0:39:08:e1:b4:
53:ed:9e:37:5d:f4:b9:7d:5e:fa:e3:79:ed:f3:36:
78:48:ad:00:a3:d0:8d:7a:15:0a:dc:cb:00:72:00:
fa:dc:08:af:33:50:69:f6:16:fd:ed:1c:c0:fb:c5:
08:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:59:FC:D6:AE:B7:02:F8:E9:F2:F8:0C:A2:7A:82:76:1C:9F:35:95
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/gFn81q63Avjp8vgMonqCdhyfNZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.14.0/24
86.104.14.0/24
89.43.78.0/24
176.98.42.0/23
185.81.152.0/22
193.31.117.0-193.31.119.255
213.226.118.0/24
IPv6:
2a05:88c0::/29
2a06:f7c0::/29
2a10:3300::/29
2a10:7f40::/29
2a10:7fc0::/29
2a11:d100::/29
Signature Algorithm: sha256WithRSAEncryption
45:a3:7c:10:e2:08:d9:bd:88:e4:46:d3:57:cf:2b:75:0c:4f:
a7:6b:dc:32:7b:e5:3e:22:6e:d8:7b:9e:6a:81:8a:b3:64:c3:
ef:4a:26:02:77:bd:a2:4d:d3:4c:d1:4a:e2:4d:f6:46:9c:de:
90:3d:b7:53:10:2d:b5:d1:6d:83:b4:b1:e0:1f:35:22:61:e3:
7b:95:c8:a0:fa:21:7c:7b:e5:6c:55:8e:7a:95:81:e8:20:0e:
ee:d5:bd:dc:5d:f8:74:1c:8d:e5:21:69:fd:7e:32:61:77:82:
8f:3b:9a:c9:dd:40:fe:eb:be:cf:ba:01:8d:0e:22:f4:2f:e4:
7f:28:d6:09:c0:4f:ca:0a:64:3d:29:4b:c7:df:a3:46:87:c1:
a4:ac:0b:cf:c2:07:92:e8:45:a6:3a:95:37:6d:15:3b:84:e7:
d9:b9:7d:a5:40:0b:30:2d:b1:31:02:8f:a5:98:45:c6:3f:2b:
25:06:f2:47:30:8f:23:68:e9:ef:52:7c:3e:aa:af:1c:ca:ff:
98:5a:88:83:d9:0c:b0:92:91:32:0c:ff:f6:75:1e:ee:bd:08:
ac:10:0a:02:26:7c:b1:28:cf:7d:f8:a2:8d:5d:a9:01:4b:3b:
d8:a2:64:60:32:a4:b5:58:64:85:ff:8a:73:15:d4:39:88:83:
d6:15:7c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-fra.rpki-client.org