Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/1-Qnq0VAC-mgR7b-2HCqP5xSrkiM.roa
File: 1-Qnq0VAC-mgR7b-2HCqP5xSrkiM.roa (raw, json)
Hash identifier: ELRi/LfyM6MlC1Vic/8dnJsMZmgOM3TUFUQJwI8KW6g=
Subject key identifier: F9:09:EA:D1:50:02:FA:68:11:ED:BF:B6:1C:2A:8F:E7:14:AB:92:23
Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Certificate serial: 0185E3AC49B0BF6F76CD86CF3040915D554D
Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/1-Qnq0VAC-mgR7b-2HCqP5xSrkiM.roa
Signing time: Tue 24 Jan 2023 12:06:37 +0000
ROA not before: Tue 24 Jan 2023 12:06:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202940
IP address blocks: 89.208.56.0/21 maxlen: 21
89.208.0.0/21 maxlen: 21
89.208.4.0/22 maxlen: 24
188.191.224.0/21 maxlen: 21
188.191.224.0/24 maxlen: 24
188.191.225.0/24 maxlen: 24
188.191.226.0/24 maxlen: 24
188.191.228.0/24 maxlen: 24
188.191.229.0/24 maxlen: 24
188.191.227.0/24 maxlen: 24
188.191.230.0/24 maxlen: 24
185.175.34.0/23 maxlen: 23
185.175.32.0/22 maxlen: 22
185.175.32.0/23 maxlen: 23
89.208.128.0/21 maxlen: 21
185.184.246.0/23 maxlen: 23
89.208.135.0/24 maxlen: 24
185.184.244.0/23 maxlen: 23
185.184.244.0/22 maxlen: 22
89.208.134.0/23 maxlen: 24
185.149.253.0/24 maxlen: 24
185.149.252.0/22 maxlen: 22
185.149.252.0/24 maxlen: 24
185.149.254.0/24 maxlen: 24
185.149.255.0/24 maxlen: 24
185.180.102.0/24 maxlen: 24
185.180.103.0/24 maxlen: 24
185.180.100.0/24 maxlen: 24
185.180.100.0/22 maxlen: 22
185.167.110.0/24 maxlen: 24
185.167.108.0/23 maxlen: 23
185.167.108.0/24 maxlen: 24
185.167.108.0/22 maxlen: 22
185.167.109.0/24 maxlen: 24
185.167.111.0/24 maxlen: 24
147.236.176.0/20 maxlen: 20
147.234.23.0/24 maxlen: 24
217.175.92.0/22 maxlen: 22
217.175.95.0/24 maxlen: 24
185.182.77.0/24 maxlen: 24
185.182.78.0/24 maxlen: 24
185.182.76.0/22 maxlen: 22
185.182.76.0/24 maxlen: 24
217.175.82.0/24 maxlen: 24
217.175.80.0/20 maxlen: 20
217.175.80.0/22 maxlen: 22
217.175.80.0/24 maxlen: 24
217.175.84.0/22 maxlen: 22
217.175.88.0/22 maxlen: 22
147.236.116.0/22 maxlen: 24
147.236.120.0/21 maxlen: 21
147.236.144.0/22 maxlen: 24
147.236.144.0/21 maxlen: 21
147.236.144.0/20 maxlen: 20
147.236.148.0/22 maxlen: 22
141.226.121.0/24 maxlen: 24
141.226.120.0/22 maxlen: 23
147.236.152.0/23 maxlen: 23
147.236.152.0/22 maxlen: 22
147.236.152.0/21 maxlen: 21
147.236.154.0/23 maxlen: 23
147.236.156.0/22 maxlen: 24
147.236.156.0/24 maxlen: 24
147.236.157.0/24 maxlen: 24
185.182.79.0/24 maxlen: 24
185.108.82.0/24 maxlen: 24
185.108.80.0/24 maxlen: 24
185.108.80.0/22 maxlen: 23
185.108.83.0/24 maxlen: 24
147.236.104.0/21 maxlen: 21
2a00:7c40::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e3:ac:49:b0:bf:6f:76:cd:86:cf:30:40:91:5d:55:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Validity
Not Before: Jan 24 12:06:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f909ead15002fa6811edbfb61c2a8fe714ab9223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2a:aa:91:88:02:3c:31:5b:c5:70:ad:89:a1:
42:69:b7:2e:96:05:4a:51:72:40:aa:af:a2:d7:54:
6c:b7:a0:a3:d2:48:e0:af:c7:bc:36:31:9d:da:00:
d3:e9:2d:94:70:e5:0e:1d:81:70:05:f1:65:72:3c:
1f:b0:23:2e:8b:66:b0:f9:8c:ce:34:50:e6:82:e9:
1b:b4:c3:92:46:74:3d:ff:bc:d3:4b:bd:ba:cb:a8:
ca:17:5e:ec:92:89:1a:d1:e4:ce:45:33:1a:d6:25:
0f:74:c6:e5:65:de:2e:20:9e:f2:63:07:95:4f:20:
32:ab:b7:c9:c3:f7:0e:be:00:c4:06:7b:c5:cc:ad:
f0:c0:21:88:8b:3f:ba:26:7b:1d:da:0d:b6:0d:a4:
bf:52:4a:42:81:a3:e8:f8:21:39:1b:cf:84:a9:8d:
24:a7:9f:aa:30:51:05:80:54:dc:53:ad:1d:cc:d3:
53:29:41:cb:75:da:ad:2d:a7:c8:43:54:af:39:20:
75:bc:28:64:ac:0c:6a:1a:a9:ea:46:ea:6c:f7:52:
fa:77:b9:f4:be:6b:5b:bb:50:0f:78:09:78:66:45:
bc:2e:77:f4:fb:79:62:7c:65:00:2a:dc:a5:1c:51:
e3:e5:3a:c4:88:1d:b4:f4:f1:36:a4:7b:4d:da:80:
fa:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:09:EA:D1:50:02:FA:68:11:ED:BF:B6:1C:2A:8F:E7:14:AB:92:23
X509v3 Authority Key Identifier:
keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/1-Qnq0VAC-mgR7b-2HCqP5xSrkiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.208.0.0/21
89.208.56.0/21
89.208.128.0/21
141.226.120.0/22
147.234.23.0/24
147.236.104.0/21
147.236.116.0-147.236.127.255
147.236.144.0/20
147.236.176.0/20
185.108.80.0/22
185.149.252.0/22
185.167.108.0/22
185.175.32.0/22
185.180.100.0/22
185.182.76.0/22
185.184.244.0/22
188.191.224.0/21
217.175.80.0/20
IPv6:
2a00:7c40::/32
Signature Algorithm: sha256WithRSAEncryption
a9:35:17:fe:40:06:6c:c4:9b:61:e6:b1:f5:de:0f:39:de:05:
45:74:ae:a8:d8:7a:ba:db:29:d3:07:1a:84:e3:2c:c8:b7:4d:
3c:86:e0:fe:da:db:9e:61:24:f3:fa:de:b8:58:68:82:6d:40:
a5:c8:15:9d:82:8a:f2:55:9a:8f:c5:ee:04:77:04:ca:45:c0:
1d:20:a9:dc:46:43:d8:36:2d:c8:e6:cf:ae:64:3c:85:0f:ed:
cf:01:81:79:f9:9c:2a:57:ab:e9:0e:b9:bc:b8:10:70:6e:74:
39:34:24:4a:d3:41:5f:56:14:80:86:e9:cf:aa:9c:07:05:49:
77:08:0f:62:fa:60:57:57:52:5c:34:7b:27:a1:66:eb:4e:76:
ed:25:5c:29:db:0a:99:0a:7b:66:74:a4:1f:14:31:a9:6f:1c:
f1:0b:0b:9e:7b:0b:08:1d:39:89:45:ef:3d:a0:30:c7:33:ba:
41:78:b0:b9:56:c0:c0:55:2d:7d:b7:5c:0c:21:fb:af:6a:c8:
75:7b:f2:33:58:5e:1f:ef:37:e1:d8:ed:73:2f:a5:c4:33:e8:
a6:f2:8e:64:f6:6a:55:2a:1e:58:ba:7a:8a:ec:d2:a5:0b:6e:
6a:5e:be:c4:9d:9c:ed:ab:f1:69:2b:b6:16:94:5c:5d:72:a4:
36:83:f6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:11 2023 by rpki-client on console-ams.rpki-client.org