Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/r__o2t_oSvizJbTT6GI3zgKbkow.roa
File: r__o2t_oSvizJbTT6GI3zgKbkow.roa (raw, json)
Hash identifier: TmYgjHZfW/t21F/yk8vj3+T2EVT25ZbncXxn+MVGfhQ=
Subject key identifier: AF:FF:E8:DA:DF:E8:4A:F8:B3:25:B4:D3:E8:62:37:CE:02:9B:92:8C
Certificate issuer: /CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Certificate serial: 0185E30A8DCD0DA3A37D2DE372322EB29710
Authority key identifier: B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/r__o2t_oSvizJbTT6GI3zgKbkow.roa
Signing time: Tue 24 Jan 2023 09:09:57 +0000
ROA not before: Tue 24 Jan 2023 09:09:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39442
IP address blocks: 188.247.32.0/19 maxlen: 19
217.149.176.0/22 maxlen: 22
217.149.176.0/20 maxlen: 20
217.149.181.0/24 maxlen: 24
217.149.184.0/21 maxlen: 21
213.234.0.0/20 maxlen: 20
213.234.0.0/24 maxlen: 24
213.234.1.0/24 maxlen: 24
213.234.5.0/24 maxlen: 24
213.234.6.0/24 maxlen: 24
213.234.8.0/24 maxlen: 24
213.234.10.0/24 maxlen: 24
213.234.11.0/24 maxlen: 24
213.234.16.0/22 maxlen: 22
213.234.16.0/24 maxlen: 24
213.234.18.0/23 maxlen: 23
213.234.20.0/24 maxlen: 24
213.234.21.0/24 maxlen: 24
213.234.22.0/24 maxlen: 24
188.247.44.0/22 maxlen: 22
188.247.40.0/24 maxlen: 24
185.183.48.0/22 maxlen: 22
188.247.56.0/21 maxlen: 21
185.125.72.0/22 maxlen: 22
92.39.104.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:0a:8d:cd:0d:a3:a3:7d:2d:e3:72:32:2e:b2:97:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b8139993be665f3b5d0f6909ef058fa8f97922
Validity
Not Before: Jan 24 09:09:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afffe8dadfe84af8b325b4d3e86237ce029b928c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2d:ea:f9:0b:c9:ef:ed:0a:50:16:02:84:ca:
76:91:3c:bd:a4:90:5f:19:c4:31:3e:2a:57:6c:46:
ea:19:86:01:63:2c:79:7e:b2:d1:09:dd:17:db:e9:
f8:c0:2a:10:ad:04:7b:23:4d:d2:50:1e:de:96:34:
45:53:eb:d2:0d:bc:65:8b:3b:1e:f2:ac:01:f4:91:
f7:c6:18:de:f4:ba:90:44:6f:31:85:6e:08:43:90:
81:6c:b6:19:46:4c:be:3a:44:1d:97:2d:b3:bd:90:
b1:c5:e9:c5:a2:cd:e5:b9:54:74:bd:04:07:c2:8f:
97:66:5f:fd:9c:f9:ef:2b:41:e7:6e:09:5b:d3:2a:
47:e0:77:e8:a7:ad:aa:b0:1f:05:8e:06:5e:b4:c0:
db:72:96:fa:fa:ef:35:cb:60:14:5b:35:1b:3e:7e:
c8:35:e8:e0:97:ac:de:7e:a7:75:64:bb:cd:6e:87:
db:f6:e1:5a:ac:eb:cf:e4:3b:25:db:01:b7:c7:ed:
00:56:92:c7:bf:87:9d:77:d3:70:9a:1c:ad:3e:1c:
e4:e0:f2:d6:d2:c1:0f:5b:3e:b6:76:29:fe:f9:ed:
20:5d:7c:6e:b6:9a:f3:b5:64:77:ea:2e:67:53:ef:
62:71:1a:3e:13:10:58:69:f9:fa:f1:a1:eb:38:b2:
41:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:FF:E8:DA:DF:E8:4A:F8:B3:25:B4:D3:E8:62:37:CE:02:9B:92:8C
X509v3 Authority Key Identifier:
keyid:B9:B8:13:99:93:BE:66:5F:3B:5D:0F:69:09:EF:05:8F:A8:F9:79:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/r__o2t_oSvizJbTT6GI3zgKbkow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/44124d-8b15-45b2-a5c1-7bc73eee1447/1/ubgTmZO-Zl87XQ9pCe8Fj6j5eSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.104.0/21
185.125.72.0/22
185.183.48.0/22
188.247.32.0/19
213.234.0.0-213.234.22.255
217.149.176.0/20
Signature Algorithm: sha256WithRSAEncryption
7b:ee:f4:14:5c:67:ce:fc:ae:25:31:cc:8f:27:2c:c0:c6:9c:
7d:29:77:a4:eb:77:7d:64:66:92:a3:56:44:66:d2:ab:d0:50:
64:9d:5f:2b:49:12:5f:39:47:aa:03:3e:9c:cd:c9:8b:2d:f0:
fa:7d:be:5e:02:ae:16:1f:29:2b:c4:23:7e:ec:38:51:d3:3f:
bd:c8:da:2f:a9:c4:96:bf:1e:f6:09:5e:13:85:8b:b1:75:7f:
8c:35:42:9b:3c:88:49:af:1c:f1:d0:b7:2e:c7:ab:3b:10:d5:
c6:7f:7c:33:ea:e4:05:9f:ce:e0:18:b8:53:fb:60:52:f6:d8:
89:aa:ff:78:77:c2:65:42:d7:ac:f8:3e:9f:a6:e7:8d:20:8b:
de:61:b7:b7:71:67:1e:99:03:d2:84:76:6a:2b:fa:9d:f4:4a:
38:51:4d:40:e3:09:bd:f1:f1:e9:bf:7b:7d:cd:0d:2b:7d:1d:
fd:60:77:a0:cb:17:53:de:3a:39:66:42:23:30:52:c3:23:a5:
74:b9:a2:0d:fa:4b:0a:3d:0a:8e:69:ef:46:c9:01:7b:b4:53:
ab:85:1d:cb:2d:ba:06:ed:49:dd:bb:7a:c1:e2:d0:46:de:fb:
43:be:11:52:b5:7a:b2:63:50:1d:6a:02:c5:85:c6:c4:06:2e:
ff:5b:03:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:56 2023 by rpki-client on console-ams.rpki-client.org