Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/8JBjqLn9V0pKbBkj29mi7HWu_c8.roa
File: 8JBjqLn9V0pKbBkj29mi7HWu_c8.roa (raw, json)
Hash identifier: TJeSh8QoaX2ZWGV7+p6tFKmNoTwCBpSCJPYeqiXzeLg=
Subject key identifier: F0:90:63:A8:B9:FD:57:4A:4A:6C:19:23:DB:D9:A2:EC:75:AE:FD:CF
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0186701A02C5B37550B79A1F886E56E67123
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/8JBjqLn9V0pKbBkj29mi7HWu_c8.roa
Signing time: Mon 20 Feb 2023 18:33:18 +0000
ROA not before: Mon 20 Feb 2023 18:33:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.9.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:70:1a:02:c5:b3:75:50:b7:9a:1f:88:6e:56:e6:71:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Feb 20 18:33:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f09063a8b9fd574a4a6c1923dbd9a2ec75aefdcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:5d:c4:03:4e:18:5d:14:bc:29:a3:a9:25:
3e:1a:c4:7c:e3:95:94:94:15:40:54:22:09:6b:46:
13:35:96:c4:4c:78:8e:5f:dc:53:8f:30:8e:52:e7:
ba:ea:77:5a:92:b8:75:9b:48:8c:de:ff:5b:16:79:
10:d5:16:e6:2d:af:89:97:26:1d:52:08:91:00:21:
e1:bd:83:f2:3a:80:f6:6a:61:e9:e2:6a:51:ea:e2:
03:17:97:5b:0e:fe:8f:0c:2c:9a:92:75:00:59:67:
0f:0a:ed:f6:af:d8:20:43:d5:55:1b:1d:82:84:a8:
ce:7b:11:f5:b0:5c:34:72:a5:f6:24:78:6d:24:c3:
35:ad:8b:ea:41:77:0b:52:6c:ef:95:92:14:1e:6c:
f0:a9:8f:6a:c6:0e:99:02:b3:8c:e5:d5:1e:9a:cd:
1a:85:3f:a4:90:52:da:ff:15:c4:bf:96:0a:f4:d9:
eb:d6:29:d2:a4:fb:0a:aa:3f:9a:01:a1:0a:b8:86:
ce:60:87:d3:44:04:bb:ef:da:1a:90:2f:32:89:ff:
62:2e:b2:3a:cd:4a:62:4f:aa:de:75:9f:c6:ac:5a:
d3:52:d6:f3:bf:20:19:c8:b2:21:70:dd:4e:a8:83:
34:15:cd:3b:b0:b6:27:ba:c9:5f:89:ee:12:41:50:
af:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:90:63:A8:B9:FD:57:4A:4A:6C:19:23:DB:D9:A2:EC:75:AE:FD:CF
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/8JBjqLn9V0pKbBkj29mi7HWu_c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.153.0-45.87.154.255
45.89.52.0/24
45.93.8.0/23
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
188.119.122.0/23
193.43.147.0/24
193.46.56.0/23
193.57.136.0-193.57.138.255
194.4.48.0/22
194.116.172.0/24
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
53:7a:ed:cd:4d:ca:c4:a0:68:9d:c3:38:26:f7:f7:1f:eb:e1:
b1:ea:9e:c5:89:0e:51:ce:f6:29:97:28:61:47:3d:97:d7:ad:
de:a0:5c:ba:14:ff:59:04:ca:a2:93:18:c2:a9:c1:bb:64:3f:
06:94:7a:ea:1b:85:f1:6b:13:56:f0:fc:9c:36:63:39:77:e0:
6f:db:dc:0e:26:c5:29:57:dc:7e:2a:bb:ac:29:c1:a9:ed:90:
19:80:73:54:60:ca:54:f2:f1:b2:b5:74:1b:12:41:5a:08:55:
95:87:dc:87:4f:90:8f:2c:f0:df:b2:04:f6:b7:58:c6:f6:b2:
90:70:67:19:80:bd:07:6f:df:29:46:2a:ba:9d:0d:56:49:cf:
44:a4:ca:4a:18:19:46:66:60:cb:5d:fe:29:6c:63:d4:46:6b:
c7:52:44:4b:61:0f:0d:51:3d:12:76:81:94:86:91:c8:f2:47:
68:04:93:bf:38:11:1b:30:2e:c4:2a:f6:f1:b9:59:d7:4e:28:
55:00:6b:78:43:7c:2a:05:0b:a8:59:81:bc:26:22:ad:5c:13:
34:ac:a8:91:b7:85:06:c2:11:4e:6a:c8:9d:41:3f:84:d0:9a:
c3:df:1c:f9:9c:d0:94:73:f4:17:0d:fa:f6:49:d7:ff:6b:4b:
ff:13:54:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org