Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/N7motypBjtmMtLhyEPIMVWy1_r8.roa
File: N7motypBjtmMtLhyEPIMVWy1_r8.roa (raw, json)
Hash identifier: b1tOM1gf5Ph3xn81avBJPZpo6uwvgCP/bQhdVeJU2pw=
Subject key identifier: 37:B9:A8:B7:2A:41:8E:D9:8C:B4:B8:72:10:F2:0C:55:6C:B5:FE:BF
Certificate issuer: /CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Certificate serial: 018572C39A977ECC9DDA7CACB92AD523A0D7
Authority key identifier: EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/N7motypBjtmMtLhyEPIMVWy1_r8.roa
Signing time: Mon 02 Jan 2023 13:54:59 +0000
ROA not before: Mon 02 Jan 2023 13:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203217
IP address blocks: 185.254.13.0/24 maxlen: 24
185.254.15.0/24 maxlen: 24
185.138.121.0/24 maxlen: 24
185.138.120.0/23 maxlen: 23
185.138.122.0/24 maxlen: 24
185.138.123.0/24 maxlen: 24
185.138.122.0/23 maxlen: 23
185.138.120.0/24 maxlen: 24
93.180.218.0/24 maxlen: 24
93.180.219.0/24 maxlen: 24
93.180.216.0/24 maxlen: 24
93.180.218.0/23 maxlen: 23
93.180.217.0/24 maxlen: 24
93.180.220.0/24 maxlen: 24
93.180.221.0/24 maxlen: 24
93.180.222.0/24 maxlen: 24
93.180.223.0/24 maxlen: 24
195.133.220.0/24 maxlen: 24
195.133.221.0/24 maxlen: 24
195.133.222.0/24 maxlen: 24
195.133.223.0/24 maxlen: 24
195.133.220.0/23 maxlen: 23
185.20.198.0/23 maxlen: 23
185.20.196.0/24 maxlen: 24
185.20.196.0/23 maxlen: 23
185.20.197.0/24 maxlen: 24
185.20.198.0/24 maxlen: 24
185.20.199.0/24 maxlen: 24
2a0b:1880::/48 maxlen: 48
2a0b:1880:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:9a:97:7e:cc:9d:da:7c:ac:b9:2a:d5:23:a0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef54d9e41ea5e2d161b7c4cdb2e4702c4f248e14
Validity
Not Before: Jan 2 13:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37b9a8b72a418ed98cb4b87210f20c556cb5febf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bf:ab:4c:4e:17:17:9a:34:76:fd:08:ae:0c:
cd:8e:1e:54:f0:bc:c1:1d:77:e8:66:0a:b4:9b:eb:
e8:b5:0b:4a:b4:16:d3:ab:ef:f3:b9:73:5d:ac:36:
15:64:da:c8:6e:9a:08:7b:f0:8b:ef:c0:27:00:10:
4f:e1:20:1d:4b:5d:13:23:33:01:69:a5:26:c6:d4:
95:c3:d1:b6:12:28:23:a7:ff:03:7f:46:52:b8:2b:
df:e0:68:3e:d3:51:81:10:da:0f:22:26:c6:e1:3e:
b6:fd:c0:5a:45:60:0a:91:9e:15:84:ab:f7:a5:a2:
c4:2d:ae:16:ba:88:a8:21:e9:21:bf:61:f1:c0:50:
0e:85:73:00:7d:6b:15:53:ac:1b:19:df:c1:85:7a:
dd:c0:00:a0:86:ef:e7:d0:f1:ae:8e:09:52:0d:1f:
12:ad:c9:a7:53:d9:12:98:5a:af:6a:8d:74:7c:a6:
f9:92:2b:9f:e7:bc:15:d5:d4:5a:ba:55:1b:cc:4d:
25:e5:e0:42:d1:a7:00:48:a7:7c:8f:93:bb:5b:4b:
ce:cf:c1:64:ec:ac:c5:57:27:68:d8:b4:86:ae:91:
d5:f6:ad:9e:dd:45:12:60:e8:40:2e:72:09:64:a8:
f7:9e:fd:3a:cd:db:7c:c7:c4:c9:51:ec:79:22:18:
60:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B9:A8:B7:2A:41:8E:D9:8C:B4:B8:72:10:F2:0C:55:6C:B5:FE:BF
X509v3 Authority Key Identifier:
keyid:EF:54:D9:E4:1E:A5:E2:D1:61:B7:C4:CD:B2:E4:70:2C:4F:24:8E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71TZ5B6l4tFht8TNsuRwLE8kjhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/N7motypBjtmMtLhyEPIMVWy1_r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ec00e2-cbda-4b32-8c32-fbc6fcb5e7a6/1/71TZ5B6l4tFht8TNsuRwLE8kjhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.216.0/21
185.20.196.0/22
185.138.120.0/22
185.254.13.0/24
185.254.15.0/24
195.133.220.0/22
IPv6:
2a0b:1880::/47
Signature Algorithm: sha256WithRSAEncryption
6a:90:fc:af:63:4f:d3:ec:3f:e2:3c:8d:f7:ab:33:ad:be:af:
a9:62:0e:72:4a:16:92:f4:8d:d9:7c:d6:3a:79:e8:ca:c9:19:
34:08:be:85:f2:1f:3e:8f:d0:ff:ab:d6:50:7a:e1:68:3e:d0:
46:5c:7d:e3:08:9e:b2:1a:b2:80:e5:e0:7b:a9:00:86:6f:13:
ac:37:f6:ae:22:30:15:32:31:cb:ad:75:ae:f4:89:f2:5a:49:
71:72:f3:b4:77:7b:47:c1:0f:34:d4:e6:f1:1a:fb:ca:a0:85:
6c:19:b6:2d:bb:8a:05:13:aa:6a:6f:37:0a:2f:96:22:52:64:
29:cc:1e:67:0e:b7:ff:64:63:f6:36:6a:13:17:52:61:9d:7c:
87:ae:ad:07:ae:ce:e7:61:b8:8d:7a:78:77:38:7f:67:0a:1c:
2a:6c:23:8d:fe:16:33:4a:0b:76:ff:90:d6:9c:79:3f:96:e9:
51:bc:26:93:16:97:15:88:4c:7a:56:c6:a3:c3:bf:e2:5b:de:
f4:e1:32:41:91:63:3b:98:b6:30:ea:f9:37:9a:27:8c:13:5f:
10:6b:6c:db:60:02:ca:02:f6:e3:3e:48:4d:6c:3b:f8:9b:08:
86:30:53:64:01:e2:65:93:10:8f:67:b9:d8:1b:63:49:3c:2c:
0a:eb:8a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:10 2023 by rpki-client on console-ams.rpki-client.org