Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/P2PMbKpfEMjf582w9z2S3d_4oqo.roa
File: P2PMbKpfEMjf582w9z2S3d_4oqo.roa (raw, json)
Hash identifier: cJ9KMN4Esut7peKWUONcnucWjkFpGZn+uhXMfGMQMBg=
Subject key identifier: 3F:63:CC:6C:AA:5F:10:C8:DF:E7:CD:B0:F7:3D:92:DD:DF:F8:A2:AA
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 0185BB5DC05E8C7443087E0064A78E56C8E8
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/P2PMbKpfEMjf582w9z2S3d_4oqo.roa
Signing time: Mon 16 Jan 2023 16:16:01 +0000
ROA not before: Mon 16 Jan 2023 16:16:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44565
IP address blocks: 188.124.4.0/24 maxlen: 24
188.124.1.0/24 maxlen: 24
188.124.0.0/24 maxlen: 24
188.124.3.0/24 maxlen: 24
188.124.2.0/24 maxlen: 24
188.124.11.0/24 maxlen: 24
188.124.6.0/24 maxlen: 24
188.124.5.0/24 maxlen: 24
188.124.8.0/24 maxlen: 24
188.124.7.0/24 maxlen: 24
188.124.10.0/24 maxlen: 24
188.124.9.0/24 maxlen: 24
188.124.13.0/24 maxlen: 24
188.124.12.0/24 maxlen: 24
188.124.15.0/24 maxlen: 24
188.124.14.0/24 maxlen: 24
188.124.16.0/24 maxlen: 24
188.124.18.0/24 maxlen: 24
188.124.20.0/24 maxlen: 24
188.124.19.0/24 maxlen: 24
188.124.22.0/24 maxlen: 24
188.124.21.0/24 maxlen: 24
188.124.24.0/24 maxlen: 24
188.124.23.0/24 maxlen: 24
188.124.25.0/24 maxlen: 24
188.124.27.0/24 maxlen: 24
188.124.26.0/24 maxlen: 24
188.124.29.0/24 maxlen: 24
188.124.28.0/24 maxlen: 24
188.124.31.0/24 maxlen: 24
188.124.30.0/24 maxlen: 24
79.171.17.0/24 maxlen: 24
79.171.16.0/24 maxlen: 24
79.171.19.0/24 maxlen: 24
79.171.18.0/24 maxlen: 24
79.171.21.0/24 maxlen: 24
79.171.20.0/24 maxlen: 24
93.186.112.0/24 maxlen: 24
93.186.113.0/24 maxlen: 24
93.186.115.0/24 maxlen: 24
93.186.114.0/24 maxlen: 24
93.186.117.0/24 maxlen: 24
93.186.116.0/24 maxlen: 24
93.186.118.0/24 maxlen: 24
93.186.120.0/24 maxlen: 24
93.186.119.0/24 maxlen: 24
93.186.122.0/24 maxlen: 24
93.186.121.0/24 maxlen: 24
93.186.124.0/24 maxlen: 24
93.186.123.0/24 maxlen: 24
93.186.127.0/24 maxlen: 24
93.186.126.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bb:5d:c0:5e:8c:74:43:08:7e:00:64:a7:8e:56:c8:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Jan 16 16:16:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f63cc6caa5f10c8dfe7cdb0f73d92dddff8a2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a0:92:79:3d:87:66:31:bb:ca:82:bd:5a:cd:
d0:80:cf:f4:2a:e3:02:02:4e:ab:95:76:f6:35:80:
1a:4c:44:e2:85:a6:da:d1:9b:4c:ac:32:d2:c1:27:
b1:0a:1c:c3:dd:ec:2c:e0:c8:79:83:c7:63:e8:fc:
17:2c:96:df:54:15:21:8d:67:12:12:28:66:f6:ad:
fd:28:67:1a:f2:19:ea:9a:0f:29:9c:d6:25:1a:29:
16:bd:ca:0d:ee:8b:8a:dd:3d:5b:2b:e1:65:d1:e9:
92:b3:5d:a2:fb:5c:ee:b4:bf:c6:5d:f1:ac:5b:30:
3f:2f:98:60:11:60:5e:ed:d6:86:bb:a9:d3:0d:2b:
a5:b2:ef:59:e9:94:09:3b:b6:4f:62:0a:a3:87:fa:
15:7d:30:fe:7c:02:e1:ff:8b:68:63:73:72:02:87:
88:03:1e:9f:04:82:7b:5f:08:a5:f3:f2:22:db:ab:
f6:fd:e8:92:1c:b5:1f:22:8f:f6:ab:9c:3d:30:bf:
48:9c:0b:3a:7b:de:72:52:21:53:f8:65:c0:e2:57:
2f:90:9c:68:3e:6a:73:09:14:09:60:b2:b7:69:00:
e0:fe:37:5b:59:f4:9b:a5:7a:ea:b1:30:ef:64:c4:
d4:e1:af:b6:ee:e0:34:a4:0e:7f:39:ca:36:99:d1:
ce:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:63:CC:6C:AA:5F:10:C8:DF:E7:CD:B0:F7:3D:92:DD:DF:F8:A2:AA
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/P2PMbKpfEMjf582w9z2S3d_4oqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.16.0-79.171.21.255
93.186.112.0-93.186.124.255
93.186.126.0/23
188.124.0.0-188.124.16.255
188.124.18.0-188.124.31.255
Signature Algorithm: sha256WithRSAEncryption
44:1b:61:f1:0b:b9:a4:31:cd:cf:31:38:e2:29:f2:51:7c:b0:
7c:83:9e:da:9a:17:1a:8d:fb:af:0e:f1:62:24:07:fd:3a:38:
63:bb:a0:5a:2f:66:a8:c8:99:53:21:52:ba:ad:23:96:c7:de:
4e:67:df:16:b0:07:26:27:9e:00:35:c5:ad:64:e9:55:db:19:
13:9e:76:0e:14:3b:17:d0:71:ac:8d:14:25:64:70:37:5d:39:
87:1d:33:ba:8f:65:4a:6c:87:f0:9e:f2:a3:75:1c:7e:5b:34:
11:71:53:45:0f:a4:ec:ce:df:bb:ff:7b:1b:e5:1c:52:9a:15:
9f:f2:eb:01:a4:12:0b:31:2e:59:18:f9:9f:7f:34:8f:d5:dc:
e0:02:be:92:58:e0:2a:c9:b7:e6:7d:4c:b2:dc:2a:0b:79:04:
38:e9:18:3c:dd:1c:f6:ab:52:be:49:1c:e1:05:aa:89:87:71:
b9:68:38:41:d9:70:db:cf:72:ab:0f:43:7c:1a:30:c5:b6:d8:
22:81:dc:b1:ce:06:30:c3:6a:26:cc:76:3c:a8:4d:79:21:a6:
e3:41:29:50:d5:2f:98:32:ec:a8:3f:42:b8:77:1b:df:f9:2c:
a5:85:4e:06:bc:18:23:ae:7c:ba:ae:24:fc:f3:be:1e:9e:ca:
60:05:82:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:33 2023 by rpki-client on console-ams.rpki-client.org