Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/Pq_h6zTfobocvuMuBApVjzCFP_M.roa
File: Pq_h6zTfobocvuMuBApVjzCFP_M.roa (raw, json)
Hash identifier: JNZrb4dv8DQx1+P7IZxhlK3Cf+AuHcMjKOssHpG9SwE=
Subject key identifier: 3E:AF:E1:EB:34:DF:A1:BA:1C:BE:E3:2E:04:0A:55:8F:30:85:3F:F3
Certificate issuer: /CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Certificate serial: 01885195955A6BABB21BBBDBA8EBAF5B768E
Authority key identifier: B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/Pq_h6zTfobocvuMuBApVjzCFP_M.roa
Signing time: Thu 25 May 2023 06:25:37 +0000
ROA not before: Thu 25 May 2023 06:25:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39442
IP address blocks: 188.247.32.0/19 maxlen: 19
217.149.176.0/22 maxlen: 22
217.149.176.0/20 maxlen: 20
217.149.181.0/24 maxlen: 24
217.149.184.0/21 maxlen: 21
213.234.0.0/20 maxlen: 20
213.234.0.0/24 maxlen: 24
213.234.1.0/24 maxlen: 24
213.234.5.0/24 maxlen: 24
213.234.6.0/24 maxlen: 24
213.234.8.0/24 maxlen: 24
213.234.10.0/24 maxlen: 24
213.234.11.0/24 maxlen: 24
213.234.16.0/22 maxlen: 22
213.234.16.0/24 maxlen: 24
213.234.18.0/23 maxlen: 23
213.234.20.0/24 maxlen: 24
213.234.21.0/24 maxlen: 24
213.234.22.0/24 maxlen: 24
188.247.44.0/22 maxlen: 22
188.247.40.0/24 maxlen: 24
185.183.48.0/22 maxlen: 22
188.247.55.0/24 maxlen: 24
188.247.56.0/21 maxlen: 21
185.125.72.0/22 maxlen: 22
92.39.104.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:51:95:95:5a:6b:ab:b2:1b:bb:db:a8:eb:af:5b:76:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Validity
Not Before: May 25 06:25:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eafe1eb34dfa1ba1cbee32e040a558f30853ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:84:b2:55:ea:6f:fb:6b:26:c7:6a:8e:59:07:
31:d8:50:23:fd:05:ee:49:da:25:2e:27:56:e3:d7:
6d:48:88:38:6d:7f:74:40:eb:53:df:5c:23:95:55:
af:11:73:b0:a7:12:8b:3d:c3:1b:fa:65:7f:98:a9:
5f:ff:50:a3:63:ff:cd:ef:f1:29:9c:6d:eb:6e:20:
81:67:ab:8d:b8:f6:e7:31:83:24:19:4e:02:49:f4:
b5:63:ea:aa:4a:22:65:ad:26:89:dd:48:0b:20:31:
93:83:b0:bb:81:a6:af:22:4f:e3:9a:34:e9:bc:85:
35:54:54:5a:58:33:2a:90:36:fe:cf:9a:86:8b:ec:
a2:15:26:88:7e:d5:cf:cf:3e:10:09:da:2f:88:a1:
ab:9e:ca:cf:e1:9d:23:5f:85:aa:84:91:9e:9a:2e:
0f:fc:6f:60:ee:1a:c8:68:98:d8:69:23:94:4f:16:
19:32:93:5b:cd:09:23:f7:92:3a:96:f8:cf:ce:e9:
f7:f8:09:52:14:2a:a1:4d:ae:b4:d1:cc:91:84:ca:
74:19:ab:0d:9b:50:8f:96:12:29:4a:d7:1d:7e:ff:
8a:35:cb:da:9d:6e:10:32:9d:3f:1f:f8:91:10:2d:
58:a5:a0:33:70:7e:45:e9:b2:23:ee:1e:8f:1b:1a:
9d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AF:E1:EB:34:DF:A1:BA:1C:BE:E3:2E:04:0A:55:8F:30:85:3F:F3
X509v3 Authority Key Identifier:
keyid:B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/Pq_h6zTfobocvuMuBApVjzCFP_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.104.0/21
185.125.72.0/22
185.183.48.0/22
188.247.32.0/19
213.234.0.0-213.234.22.255
217.149.176.0/20
Signature Algorithm: sha256WithRSAEncryption
55:fd:53:85:f6:e9:a1:84:bf:56:0a:54:81:70:13:26:40:57:
1c:9d:25:74:a5:fb:5a:2b:16:e4:5a:5d:7f:43:04:12:e3:1a:
16:68:c0:2c:aa:42:6c:d3:ec:9e:40:d2:f8:5f:9b:f2:08:fe:
8d:cc:8d:24:02:85:a1:57:b4:2a:f2:4a:04:e6:10:fe:36:74:
59:d9:2b:cd:42:47:0d:f7:cb:50:b7:24:42:cb:0a:ca:91:61:
ef:43:f7:b8:25:3b:7c:85:6f:19:f0:c3:65:47:6c:13:25:60:
30:22:a3:83:b5:6e:cc:43:66:e8:e9:30:64:22:9a:a8:a6:af:
25:af:a5:76:b7:1c:bf:b6:fc:b0:4f:19:0e:36:dc:84:90:60:
13:e5:76:9b:03:3e:c5:8a:94:86:3e:ea:1d:78:49:11:e4:51:
d8:db:d8:cd:34:13:cf:77:1d:3c:8b:d9:4d:e8:40:80:a5:41:
22:11:af:43:1d:e9:3a:83:32:3f:b3:4a:47:4b:b4:98:ce:44:
7c:7e:d3:0b:85:51:a3:09:ac:bb:ff:a2:73:73:f8:f0:4d:36:
9e:77:30:18:35:76:f3:fd:d8:52:78:9d:ae:12:1c:54:45:80:
52:49:e1:f0:6d:8c:e2:c0:95:c3:f5:4f:bc:d4:71:d8:9f:88:
b5:51:44:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 31 09:07:12 2023 by rpki-client on console-ams.rpki-client.org