Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/H4-tOK7L3RDwb_UcLy2MgXoZIvE.roa
File: H4-tOK7L3RDwb_UcLy2MgXoZIvE.roa (raw, json)
Hash identifier: +FPUf39jFLJ3ogGAKvtrw8zCagLEoQZkCEf1LQWTihw=
Subject key identifier: 1F:8F:AD:38:AE:CB:DD:10:F0:6F:F5:1C:2F:2D:8C:81:7A:19:22:F1
Certificate issuer: /CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Certificate serial: 0187BEF335AE14959BB4D4D8437812132746
Authority key identifier: EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/H4-tOK7L3RDwb_UcLy2MgXoZIvE.roa
Signing time: Wed 26 Apr 2023 19:03:42 +0000
ROA not before: Wed 26 Apr 2023 19:03:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8903
IP address blocks: 213.9.128.0/17 maxlen: 17
213.9.142.0/23 maxlen: 23
213.9.144.0/24 maxlen: 24
213.9.162.0/23 maxlen: 23
212.49.189.0/24 maxlen: 24
213.9.240.0/23 maxlen: 23
213.9.245.0/24 maxlen: 24
213.9.244.0/24 maxlen: 24
213.9.246.0/24 maxlen: 24
213.9.248.0/24 maxlen: 24
213.9.247.0/24 maxlen: 24
213.9.182.0/24 maxlen: 24
213.9.186.0/24 maxlen: 24
213.9.185.0/24 maxlen: 24
213.9.190.0/23 maxlen: 23
213.9.217.0/24 maxlen: 24
212.163.185.0/24 maxlen: 24
212.163.193.0/24 maxlen: 24
212.163.92.0/24 maxlen: 24
212.163.94.0/24 maxlen: 24
212.163.130.0/24 maxlen: 24
212.49.128.0/18 maxlen: 18
212.49.129.0/24 maxlen: 24
212.163.216.0/22 maxlen: 22
212.163.220.0/22 maxlen: 22
212.163.225.0/24 maxlen: 24
212.163.226.0/24 maxlen: 24
212.163.227.0/24 maxlen: 24
212.163.235.0/24 maxlen: 24
185.66.60.0/24 maxlen: 24
185.66.60.0/22 maxlen: 22
185.66.62.0/24 maxlen: 24
185.66.61.0/24 maxlen: 24
212.163.240.0/20 maxlen: 20
84.18.0.0/19 maxlen: 19
212.163.48.0/24 maxlen: 24
212.163.91.0/24 maxlen: 24
212.163.1.0/24 maxlen: 24
212.163.5.0/24 maxlen: 24
212.163.0.0/16 maxlen: 16
212.163.31.0/24 maxlen: 24
92.60.160.0/20 maxlen: 20
92.60.170.0/24 maxlen: 24
92.60.174.0/24 maxlen: 24
92.60.173.0/24 maxlen: 24
2001:ac0:30fd::/48 maxlen: 48
2001:ac0::/32 maxlen: 32
2001:ac0:c880::/44 maxlen: 44
2001:ac0:c040::/44 maxlen: 44
2001:ac0:c0c0::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:be:f3:35:ae:14:95:9b:b4:d4:d8:43:78:12:13:27:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3e71b96992da3d91c88dd74ef41f9b95b9485b
Validity
Not Before: Apr 26 19:03:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f8fad38aecbdd10f06ff51c2f2d8c817a1922f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9e:38:68:06:29:90:2a:ac:70:d3:d0:90:71:
99:dd:d2:99:cf:d4:67:9a:f9:8a:1e:9c:5b:42:1c:
e2:76:a0:0b:af:54:98:01:f2:89:df:23:45:75:c2:
1e:15:57:f4:bf:81:47:76:25:4c:98:97:2b:40:ff:
de:8d:8f:c7:19:65:10:5a:03:4e:bd:d2:f3:2c:ee:
d3:f7:43:2f:33:58:92:98:d3:40:f7:e8:3e:95:63:
aa:2e:90:dc:7c:b2:6e:aa:1f:2c:0d:6d:81:cc:b6:
cc:9e:0b:88:23:22:9c:a7:c8:06:0b:b8:9a:02:55:
b0:6a:31:e8:86:04:f6:29:3e:60:41:42:6a:60:af:
d2:e1:b4:a9:0d:b1:b6:f1:b4:f3:bd:a4:23:b2:5c:
96:d5:eb:eb:77:42:29:9a:17:42:ab:d5:87:54:37:
3e:d0:9f:8a:39:91:1b:18:4e:82:05:e9:b7:bd:e6:
10:9e:a6:4e:e2:84:87:5b:d7:12:88:4b:16:0f:7b:
a1:2a:f6:a5:4d:35:b4:37:58:ad:4c:77:85:2a:b6:
8e:8a:6a:8b:62:e2:0d:bf:dc:cc:e2:92:0a:26:a6:
60:fc:39:07:b0:d8:56:11:97:26:3e:bb:1b:de:f3:
f6:83:63:51:fe:ef:92:6c:87:28:62:03:9f:fd:db:
33:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8F:AD:38:AE:CB:DD:10:F0:6F:F5:1C:2F:2D:8C:81:7A:19:22:F1
X509v3 Authority Key Identifier:
keyid:EF:3E:71:B9:69:92:DA:3D:91:C8:8D:D7:4E:F4:1F:9B:95:B9:48:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7z5xuWmS2j2RyI3XTvQfm5W5SFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/H4-tOK7L3RDwb_UcLy2MgXoZIvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/ad4e57-d901-4485-98d2-9196ce446527/1/7z5xuWmS2j2RyI3XTvQfm5W5SFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.18.0.0/19
92.60.160.0/20
185.66.60.0/22
212.49.128.0/18
212.163.0.0/16
213.9.128.0/17
IPv6:
2001:ac0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:8c:dc:cd:48:03:af:42:9d:d5:df:37:f5:35:75:eb:2b:56:
31:bd:48:bc:5a:75:0a:67:9e:c7:cd:17:53:a4:7b:b5:03:19:
53:2c:cd:54:1c:22:2b:b8:d5:fa:60:90:e3:b6:0b:ea:4c:de:
61:2c:bd:e2:97:49:a8:9f:68:69:1d:53:34:6b:38:12:a7:59:
61:7c:57:31:b8:df:69:5c:26:47:d0:35:15:4f:f2:82:42:58:
70:59:2f:35:40:9e:be:3e:63:b4:4f:9a:de:16:26:2f:b8:5c:
81:2b:9c:8e:a1:62:d6:ef:e5:b7:76:8a:fc:4a:76:ce:a4:a2:
92:3f:69:e7:3b:c9:39:26:d6:3e:14:18:2e:c7:86:85:40:95:
c6:d1:a4:b3:d5:43:a5:ef:14:37:4e:b1:d0:7b:ab:fc:5f:68:
09:60:df:5d:ae:66:f0:b4:59:2f:a7:f0:d1:c8:66:b8:dc:10:
2f:46:8d:31:27:db:06:cb:7f:fc:0a:c1:6f:f4:ed:4e:e5:b2:
0f:08:78:61:76:3c:ff:fc:76:ac:0a:fa:78:a4:d0:23:17:c8:
a8:bc:25:ab:52:3c:d0:5e:ce:d1:95:29:a3:99:04:6e:42:e5:
c4:41:3b:ea:a8:6b:2a:17:4e:89:2e:b3:ff:60:b7:bc:42:43:
a0:74:6d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org