Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/nDcytsiqA8gQW335nmckB-P_aDI.roa
File: nDcytsiqA8gQW335nmckB-P_aDI.roa (raw, json)
Hash identifier: Egug0WEPC5pKnIOrAvswMbVt9MR/s9nvn2G8hVwXOGo=
Subject key identifier: 9C:37:32:B6:C8:AA:03:C8:10:5B:7D:F9:9E:67:24:07:E3:FF:68:32
Certificate issuer: /CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Certificate serial: 018BF2600792DB11D40DF087A453382039CB
Authority key identifier: 22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/nDcytsiqA8gQW335nmckB-P_aDI.roa
Signing time: Tue 21 Nov 2023 14:54:21 +0000
ROA not before: Tue 21 Nov 2023 14:54:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16030
IP address blocks: 185.184.151.0/24 maxlen: 24
185.184.150.0/24 maxlen: 24
185.184.149.0/24 maxlen: 24
185.184.148.0/22 maxlen: 24
77.75.176.0/21 maxlen: 24
77.75.176.0/24 maxlen: 24
77.75.179.0/24 maxlen: 24
77.75.178.0/24 maxlen: 24
77.75.177.0/24 maxlen: 24
77.75.183.0/24 maxlen: 24
77.75.182.0/24 maxlen: 24
77.75.181.0/24 maxlen: 24
212.121.229.0/24 maxlen: 24
213.148.218.0/24 maxlen: 24
212.121.232.0/24 maxlen: 24
213.148.219.0/24 maxlen: 24
213.148.217.0/24 maxlen: 24
212.121.231.0/24 maxlen: 24
213.148.216.0/24 maxlen: 24
213.148.214.0/24 maxlen: 24
213.148.215.0/24 maxlen: 24
212.121.230.0/24 maxlen: 24
212.121.233.0/24 maxlen: 24
212.121.228.0/24 maxlen: 24
212.121.227.0/24 maxlen: 24
212.121.235.0/24 maxlen: 24
212.121.239.0/24 maxlen: 24
212.121.238.0/24 maxlen: 24
213.148.223.0/24 maxlen: 24
212.121.237.0/24 maxlen: 24
212.121.240.0/24 maxlen: 24
213.148.222.0/24 maxlen: 24
212.121.236.0/24 maxlen: 24
213.148.221.0/24 maxlen: 24
213.148.220.0/24 maxlen: 24
212.121.234.0/24 maxlen: 24
212.121.246.0/24 maxlen: 24
212.121.245.0/24 maxlen: 24
212.121.244.0/24 maxlen: 24
212.121.243.0/24 maxlen: 24
212.121.242.0/24 maxlen: 24
212.121.241.0/24 maxlen: 24
212.121.250.0/24 maxlen: 24
212.121.249.0/24 maxlen: 24
212.121.248.0/24 maxlen: 24
212.121.247.0/24 maxlen: 24
212.121.253.0/24 maxlen: 24
212.121.252.0/24 maxlen: 24
212.121.251.0/24 maxlen: 24
212.121.255.0/24 maxlen: 24
212.121.254.0/24 maxlen: 24
213.148.192.0/24 maxlen: 24
213.148.198.0/24 maxlen: 24
213.148.197.0/24 maxlen: 24
213.148.196.0/24 maxlen: 24
213.148.199.0/24 maxlen: 24
213.148.195.0/24 maxlen: 24
213.148.194.0/24 maxlen: 24
213.148.193.0/24 maxlen: 24
213.148.205.0/24 maxlen: 24
213.148.204.0/24 maxlen: 24
213.148.203.0/24 maxlen: 24
213.148.202.0/24 maxlen: 24
213.148.206.0/24 maxlen: 24
213.148.201.0/24 maxlen: 24
213.148.200.0/24 maxlen: 24
213.148.208.0/24 maxlen: 24
213.148.207.0/24 maxlen: 24
213.148.212.0/24 maxlen: 24
213.148.211.0/24 maxlen: 24
212.121.225.0/24 maxlen: 24
213.148.210.0/24 maxlen: 24
213.148.213.0/24 maxlen: 24
212.121.224.0/24 maxlen: 24
213.148.209.0/24 maxlen: 24
212.121.226.0/24 maxlen: 24
2001:4d10::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f2:60:07:92:db:11:d4:0d:f0:87:a4:53:38:20:39:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Validity
Not Before: Nov 21 14:54:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c3732b6c8aa03c8105b7df99e672407e3ff6832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c4:0a:63:c8:77:6d:50:fe:05:66:81:f7:c0:
3d:23:03:a4:20:18:8a:e8:d6:68:4c:17:12:5a:05:
6a:a0:15:1c:75:6f:e1:9f:60:29:74:54:eb:51:42:
2d:a4:29:e1:a2:1b:01:74:28:38:31:c4:bc:cb:86:
95:03:f1:fd:02:15:5c:31:f8:c1:ca:e7:60:13:90:
1e:b9:b7:d0:c0:2a:07:1e:05:32:9f:64:75:02:a1:
8c:e0:d1:cf:b3:65:b4:ef:2a:9f:6b:8b:5b:4c:08:
c4:c8:86:0b:2b:c9:a6:82:dd:84:0e:9e:c4:c3:e4:
5e:05:2f:94:8b:e6:c3:e5:d7:23:f0:97:f2:98:9f:
1f:65:62:cd:06:14:20:8e:3e:cd:58:c7:bf:8c:cb:
fd:9c:38:bf:d6:a5:94:1e:e4:fe:31:e1:1b:b3:e3:
c1:0b:a7:0a:3b:dc:2a:67:f9:2f:dc:1b:2e:67:d6:
92:37:f5:92:bb:8c:d6:4f:de:d3:bd:8f:c4:a7:48:
2b:72:ff:36:bf:50:d4:1f:c5:be:e4:e8:de:d4:d6:
33:89:a0:9e:91:4c:9b:c9:6f:d8:66:51:86:82:35:
45:a1:5b:00:84:d5:1d:e9:7f:56:46:53:09:ba:d8:
e4:dc:d8:c0:4e:75:ad:b2:a2:f8:f3:e8:df:f6:2d:
9a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:37:32:B6:C8:AA:03:C8:10:5B:7D:F9:9E:67:24:07:E3:FF:68:32
X509v3 Authority Key Identifier:
keyid:22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/nDcytsiqA8gQW335nmckB-P_aDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/IsfNp19OFeSG3uWmUBy-IBi8Dg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.176.0/21
185.184.148.0/22
212.121.224.0/19
213.148.192.0/19
IPv6:
2001:4d10::/32
Signature Algorithm: sha256WithRSAEncryption
1c:18:00:6e:cd:52:9b:a3:80:cf:3d:87:49:9c:26:69:b6:ce:
8c:1c:51:20:6d:f2:5f:49:05:13:34:04:55:ac:30:ba:91:57:
42:c3:16:e8:53:6b:f8:32:37:bf:b5:94:b1:4e:0e:33:0c:84:
6c:01:1f:9a:60:ae:fb:8a:2c:d7:4b:f1:06:c7:a2:bf:7a:01:
89:5b:c8:5d:a1:bc:f1:7c:dd:2b:f2:4c:14:c4:57:46:92:d3:
0b:fd:d6:6b:8f:85:e9:e2:e8:bf:9b:2d:ca:a8:41:b8:8d:05:
09:a9:aa:e8:82:c6:b8:d3:df:bc:23:7b:52:5d:bc:22:fd:a4:
95:74:45:82:9e:0f:49:6a:1c:3d:02:f1:83:92:f7:56:07:1e:
f6:6e:ce:7a:f9:87:1a:d5:53:75:9e:99:08:00:d8:13:f5:94:
63:66:db:a9:05:64:cd:23:46:65:e7:1b:ba:5e:10:27:58:21:
42:59:90:cc:f2:97:00:b0:d4:b9:dd:3a:b4:9f:12:11:e8:bf:
66:9d:b8:d7:8e:84:05:6c:50:1c:f4:82:85:c8:4b:28:32:a5:
ff:98:6c:4f:e1:d4:27:1c:a7:a4:d2:0c:1a:cb:72:26:83:31:
d8:19:2c:df:cf:63:04:3f:64:f5:31:0a:fd:55:da:ba:6e:e5:
d2:9b:c2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 16:15:50 2023 by rpki-client on console-fra.rpki-client.org