Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/7WeUgFuRjwxy0dozX1QbPZflpQk.roa
File: 7WeUgFuRjwxy0dozX1QbPZflpQk.roa (raw, json)
Hash identifier: 8DUeUzKAO4aGruRM8uVm1TOIDW5bgsSdalbe9v2aFG4=
Subject key identifier: ED:67:94:80:5B:91:8F:0C:72:D1:DA:33:5F:54:1B:3D:97:E5:A5:09
Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Certificate serial: 018729F538AC7AA72084F6D36242B7958285
Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/7WeUgFuRjwxy0dozX1QbPZflpQk.roa
Signing time: Tue 28 Mar 2023 20:42:29 +0000
ROA not before: Tue 28 Mar 2023 20:42:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202940
IP address blocks: 89.208.56.0/21 maxlen: 21
89.208.0.0/21 maxlen: 21
89.208.4.0/22 maxlen: 24
188.191.224.0/21 maxlen: 21
188.191.224.0/24 maxlen: 24
188.191.225.0/24 maxlen: 24
188.191.226.0/24 maxlen: 24
188.191.228.0/24 maxlen: 24
188.191.229.0/24 maxlen: 24
188.191.227.0/24 maxlen: 24
188.191.230.0/24 maxlen: 24
185.175.34.0/23 maxlen: 23
185.175.32.0/22 maxlen: 22
185.175.32.0/23 maxlen: 23
89.208.128.0/21 maxlen: 21
185.184.246.0/23 maxlen: 23
89.208.135.0/24 maxlen: 24
185.184.244.0/23 maxlen: 23
185.184.244.0/22 maxlen: 22
89.208.134.0/23 maxlen: 24
185.149.253.0/24 maxlen: 24
185.149.252.0/22 maxlen: 22
185.149.252.0/24 maxlen: 24
185.149.254.0/24 maxlen: 24
185.149.255.0/24 maxlen: 24
185.180.102.0/24 maxlen: 24
185.180.103.0/24 maxlen: 24
185.180.100.0/24 maxlen: 24
185.180.100.0/22 maxlen: 24
185.167.110.0/24 maxlen: 24
185.167.108.0/23 maxlen: 23
185.167.108.0/24 maxlen: 24
185.167.108.0/22 maxlen: 22
185.167.109.0/24 maxlen: 24
185.167.111.0/24 maxlen: 24
147.236.176.0/20 maxlen: 20
147.234.23.0/24 maxlen: 24
217.175.92.0/22 maxlen: 22
217.175.95.0/24 maxlen: 24
185.182.77.0/24 maxlen: 24
185.182.78.0/24 maxlen: 24
185.182.76.0/22 maxlen: 22
185.182.76.0/24 maxlen: 24
217.175.82.0/24 maxlen: 24
217.175.80.0/20 maxlen: 20
217.175.80.0/22 maxlen: 22
217.175.80.0/24 maxlen: 24
217.175.84.0/22 maxlen: 22
217.175.88.0/22 maxlen: 22
147.236.116.0/22 maxlen: 24
147.236.120.0/21 maxlen: 21
147.236.144.0/22 maxlen: 24
147.236.144.0/21 maxlen: 21
147.236.144.0/20 maxlen: 20
147.236.148.0/22 maxlen: 22
141.226.121.0/24 maxlen: 24
141.226.120.0/22 maxlen: 23
147.236.152.0/23 maxlen: 23
147.236.152.0/22 maxlen: 22
147.236.152.0/21 maxlen: 21
147.236.154.0/23 maxlen: 23
147.236.156.0/22 maxlen: 24
147.236.156.0/24 maxlen: 24
147.236.157.0/24 maxlen: 24
185.182.79.0/24 maxlen: 24
185.108.82.0/24 maxlen: 24
185.108.80.0/24 maxlen: 24
185.108.80.0/22 maxlen: 23
185.108.83.0/24 maxlen: 24
147.236.104.0/21 maxlen: 21
2a00:7c40::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:29:f5:38:ac:7a:a7:20:84:f6:d3:62:42:b7:95:82:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Validity
Not Before: Mar 28 20:42:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed6794805b918f0c72d1da335f541b3d97e5a509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:d4:9e:f1:75:15:37:27:d8:54:1e:53:a8:
4d:14:7a:73:17:8f:1e:68:30:98:d2:9d:fd:18:01:
bd:87:33:a8:1d:55:ab:55:b8:ce:ae:46:d9:6b:09:
94:3c:82:2d:62:e5:25:08:0f:c3:3f:5c:a1:ac:1f:
18:d1:19:a1:48:db:dd:35:f7:4b:f5:da:08:a6:f2:
47:53:d1:fb:38:28:e7:2e:32:6c:24:86:c9:a0:d1:
1c:c0:05:fb:20:46:23:e6:17:88:ce:f0:36:31:5b:
57:15:a2:cd:ed:c4:82:dc:09:a8:c8:45:d7:a0:f1:
1a:d0:1e:73:5b:3c:8b:36:a1:f4:65:c3:de:fd:1b:
74:3f:23:fb:5a:6b:ba:b5:ef:c5:57:06:be:60:7f:
de:de:da:5d:7c:f3:1f:a7:c7:5a:f1:7c:7c:03:84:
65:f1:79:f0:b8:84:26:b6:bb:1e:18:a0:1a:ac:a2:
74:d4:c9:8b:6c:f6:fb:04:ac:9c:b2:7b:53:7e:24:
c5:57:6e:88:e5:6f:21:c4:a7:a2:08:d8:ec:da:23:
f5:92:4c:70:f6:c4:4a:a6:82:a8:13:e1:3f:2c:54:
f9:90:10:57:fd:b8:72:27:09:8a:12:66:35:f2:6e:
cf:51:0c:b8:27:15:0f:d4:92:0c:b3:bd:9b:a8:a5:
d6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:67:94:80:5B:91:8F:0C:72:D1:DA:33:5F:54:1B:3D:97:E5:A5:09
X509v3 Authority Key Identifier:
keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/7WeUgFuRjwxy0dozX1QbPZflpQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.208.0.0/21
89.208.56.0/21
89.208.128.0/21
141.226.120.0/22
147.234.23.0/24
147.236.104.0/21
147.236.116.0-147.236.127.255
147.236.144.0/20
147.236.176.0/20
185.108.80.0/22
185.149.252.0/22
185.167.108.0/22
185.175.32.0/22
185.180.100.0/22
185.182.76.0/22
185.184.244.0/22
188.191.224.0/21
217.175.80.0/20
IPv6:
2a00:7c40::/32
Signature Algorithm: sha256WithRSAEncryption
7b:b8:26:b1:30:c0:9b:32:db:10:12:44:e5:af:1d:90:7e:0a:
9b:ec:3f:a5:a8:41:a9:c5:89:33:47:3b:c3:7e:d7:96:ac:b0:
bc:9f:28:e7:9f:ee:83:fe:f9:47:e1:1e:c3:10:4e:f1:bb:b4:
62:06:5f:0c:d6:d5:c3:c9:43:48:ad:0e:17:c5:dd:bb:b6:da:
ec:ec:63:21:09:d3:bb:60:fe:18:31:c3:49:a4:bb:8e:85:1c:
76:eb:1b:b2:43:d9:0d:a2:9a:e6:18:5a:fa:cf:b7:83:51:01:
61:0a:af:d3:bf:b8:fd:75:9f:50:c7:27:6c:dd:ac:9d:6a:0c:
11:61:3d:42:83:73:ce:eb:1a:92:f2:52:79:5b:46:42:d9:d8:
0c:bc:69:56:e1:53:26:33:57:9e:f8:d4:fc:df:ea:f6:7b:33:
5f:ca:93:cd:65:49:60:c2:e4:e8:e8:ec:37:b1:13:20:da:6d:
49:ba:e7:fa:f0:b7:43:77:d5:81:f8:e1:09:65:9a:36:85:11:
b1:e3:a2:9b:fe:43:38:36:7b:14:8c:bd:42:0d:2a:5b:e7:4b:
8b:b2:ea:84:11:a1:ac:19:ca:cc:7c:ae:ad:d3:1b:33:5c:1a:
b2:12:b9:ed:c0:09:f5:0e:cb:df:ad:77:e3:7a:f8:ac:ad:65:
b5:44:1f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:11 2023 by rpki-client on console-ams.rpki-client.org