Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/tvW7xLtBRC7_MH3HAtCKfFb7oJQ.roa
File: tvW7xLtBRC7_MH3HAtCKfFb7oJQ.roa (raw, json)
Hash identifier: 8ZrGXK7Ok1czngWQAgC7cYATFFsrUls4LyeZH/5D8/Q=
Subject key identifier: B6:F5:BB:C4:BB:41:44:2E:FF:30:7D:C7:02:D0:8A:7C:56:FB:A0:94
Certificate issuer: /CN=a7bdb2c7b334b94bcd43388f21f82092db6cfd4c
Certificate serial: 0187ACF097EA46C0E77771B21DC9B2DE46D7
Authority key identifier: A7:BD:B2:C7:B3:34:B9:4B:CD:43:38:8F:21:F8:20:92:DB:6C:FD:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p72yx7M0uUvNQziPIfggktts_Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/tvW7xLtBRC7_MH3HAtCKfFb7oJQ.roa
Signing time: Sun 23 Apr 2023 07:07:41 +0000
ROA not before: Sun 23 Apr 2023 07:07:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 185.9.159.0/24 maxlen: 24
185.9.156.0/24 maxlen: 24
185.9.157.0/24 maxlen: 24
185.9.158.0/24 maxlen: 24
185.118.142.0/24 maxlen: 24
178.20.224.0/24 maxlen: 24
185.118.143.0/24 maxlen: 24
178.20.225.0/24 maxlen: 24
178.20.226.0/24 maxlen: 24
185.118.140.0/24 maxlen: 24
178.20.229.0/24 maxlen: 24
178.20.230.0/24 maxlen: 24
178.20.231.0/24 maxlen: 24
178.20.227.0/24 maxlen: 24
178.20.228.0/24 maxlen: 24
37.123.96.0/24 maxlen: 24
37.123.97.0/24 maxlen: 24
37.123.98.0/24 maxlen: 24
37.123.99.0/24 maxlen: 24
37.123.100.0/24 maxlen: 24
37.123.101.0/24 maxlen: 24
37.123.102.0/24 maxlen: 24
37.123.103.0/24 maxlen: 24
2a00:9bc0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ac:f0:97:ea:46:c0:e7:77:71:b2:1d:c9:b2:de:46:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7bdb2c7b334b94bcd43388f21f82092db6cfd4c
Validity
Not Before: Apr 23 07:07:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6f5bbc4bb41442eff307dc702d08a7c56fba094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b6:1d:a4:90:f0:14:8e:6b:a2:72:f0:3e:96:
51:09:06:bb:0f:ec:ba:c3:e3:82:a9:ed:a8:71:7a:
70:09:da:b7:9a:36:11:f0:1b:8f:08:ef:05:c1:47:
48:e6:90:44:44:2f:6c:4a:83:8b:79:80:21:09:cb:
42:92:e4:7f:e4:96:d8:38:a2:f3:6e:b4:b3:8c:27:
99:dd:62:e9:a5:f9:5a:86:27:40:72:1d:32:7d:b3:
f4:63:3c:43:68:57:0e:3e:22:3d:67:a1:f1:cf:53:
dc:e1:26:46:30:4b:db:b7:5b:d9:85:d8:ae:c5:58:
2c:8d:0f:8e:58:2a:62:c0:c9:26:c8:04:ab:87:ab:
46:58:76:d5:ee:c2:0a:20:b5:29:d1:7f:2e:6a:50:
12:9b:6d:a5:ab:1b:5d:1f:6f:c6:12:ec:fd:9c:84:
98:b5:63:99:b1:52:07:5f:09:c7:89:c1:0a:e2:e6:
18:0a:db:44:ec:8b:8a:1c:f8:e5:75:63:6a:9d:22:
83:b1:4d:80:76:f1:aa:f4:d6:6f:0d:c3:cf:ef:b2:
08:83:9f:26:69:ce:a3:99:f8:2c:5c:48:77:c8:6d:
6f:07:e2:a7:60:6d:9b:6d:1a:d9:e0:6f:33:fb:c2:
47:0a:8b:bd:74:38:46:e5:8b:41:2b:7a:db:20:c9:
ad:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F5:BB:C4:BB:41:44:2E:FF:30:7D:C7:02:D0:8A:7C:56:FB:A0:94
X509v3 Authority Key Identifier:
keyid:A7:BD:B2:C7:B3:34:B9:4B:CD:43:38:8F:21:F8:20:92:DB:6C:FD:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p72yx7M0uUvNQziPIfggktts_Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/tvW7xLtBRC7_MH3HAtCKfFb7oJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/p72yx7M0uUvNQziPIfggktts_Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.96.0/21
178.20.224.0/21
185.9.156.0/22
185.118.140.0/24
185.118.142.0/23
IPv6:
2a00:9bc0::/32
Signature Algorithm: sha256WithRSAEncryption
90:9e:32:15:df:5f:93:f1:b4:f1:32:0b:9d:3c:bc:44:a4:ca:
e1:d7:b8:60:c7:95:83:24:d1:2e:eb:c9:f8:65:e5:57:c3:78:
57:6d:7a:b6:87:8a:51:32:a4:c0:ec:c5:87:4a:c7:57:66:23:
25:6b:eb:8e:c7:6d:67:79:73:ae:90:99:65:57:5f:53:9d:aa:
fe:28:bb:43:2c:22:b9:17:20:7e:44:7f:98:2b:ae:01:d7:c5:
7b:f3:8c:b1:33:e6:85:15:fd:25:75:ab:f6:48:47:b7:de:ec:
7c:9d:f4:3d:90:c0:8c:ba:34:4d:f7:52:0e:4f:b8:f0:b3:85:
cf:2d:89:65:d2:a9:f7:57:6e:30:91:0a:07:a0:bf:22:c6:56:
c1:7d:39:e9:c7:c6:47:20:b3:d1:44:a0:db:ff:47:b3:b9:f1:
e3:49:ba:15:13:6e:62:c4:f5:bc:7e:3c:11:b3:5d:2e:79:e5:
6d:c2:e9:33:6c:36:44:2f:1c:8f:e2:4a:b5:2d:c6:a2:5e:01:
2b:0b:49:db:0c:80:3a:99:8f:36:74:87:79:05:1c:0d:17:69:
56:8a:a5:e8:21:79:62:05:f3:2f:21:f5:0b:1a:c8:37:4c:74:
c1:24:f6:ab:70:b4:fd:6f:bf:ba:68:eb:76:b9:c4:f7:35:e1:
31:cb:23:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:07 2024 by rpki-client on console-fra.rpki-client.org