Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/ZfML7RvoCiCwQmy-jmcuYUbsGtg.roa
File: ZfML7RvoCiCwQmy-jmcuYUbsGtg.roa (raw, json)
Hash identifier: /K+O4IlIsnh9lk4VhyaurJpCmSXIwQzqrW0yPHEhJ6s=
Subject key identifier: 65:F3:0B:ED:1B:E8:0A:20:B0:42:6C:BE:8E:67:2E:61:46:EC:1A:D8
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0189273F596719BA5667526C09CED2AB26BD
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/ZfML7RvoCiCwQmy-jmcuYUbsGtg.roa
Signing time: Wed 05 Jul 2023 18:10:10 +0000
ROA not before: Wed 05 Jul 2023 18:10:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
45.67.34.0/24 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.11.0/24 maxlen: 24
45.93.10.0/24 maxlen: 24
45.93.9.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.147.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.125.0/24 maxlen: 24
188.119.124.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
45.89.54.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
5.182.37.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
193.57.139.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.155.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:27:3f:59:67:19:ba:56:67:52:6c:09:ce:d2:ab:26:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jul 5 18:10:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65f30bed1be80a20b0426cbe8e672e6146ec1ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:01:cc:d4:77:9f:a8:09:0e:6d:4f:38:a2:30:
1c:ba:2e:89:29:a4:be:3c:1e:3b:bf:44:1c:b0:0f:
d2:08:f0:9e:35:83:1b:43:da:b7:cc:4e:f5:8a:96:
5a:e3:45:d0:3d:9d:fd:b7:f5:1f:4f:1b:f1:e4:81:
4e:07:8e:7d:dd:74:e7:01:5a:93:7f:4e:a0:3a:50:
2a:0b:30:e0:e1:a6:4c:51:55:c6:a3:26:9a:70:df:
f6:88:68:8d:27:47:b4:d8:d8:45:0a:a2:16:4b:bc:
eb:63:75:0a:17:35:da:07:51:7f:d7:32:64:aa:6f:
f2:7c:ac:97:0e:01:63:95:9a:9e:05:4b:7a:e6:e7:
5f:eb:7d:d7:e9:aa:be:eb:71:14:a3:ae:cf:29:6c:
37:18:e4:b8:41:35:39:ca:9d:b4:59:f6:70:2a:9a:
4d:f0:22:db:64:21:95:66:d5:ec:8a:7c:07:69:1e:
d8:e9:be:4c:48:ac:9d:93:fc:c2:a2:f7:8a:5b:40:
b7:fb:75:64:ba:13:0d:8d:87:3f:f3:90:69:9d:7f:
01:47:4b:90:29:26:ca:db:81:d1:94:e0:63:0c:7f:
44:72:d1:06:91:39:02:18:ab:c6:80:9a:11:98:cf:
de:ba:f2:43:f0:3c:b1:a9:29:6c:c0:c7:40:17:29:
78:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F3:0B:ED:1B:E8:0A:20:B0:42:6C:BE:8E:67:2E:61:46:EC:1A:D8
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/ZfML7RvoCiCwQmy-jmcuYUbsGtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/22
45.8.144.0/22
45.67.34.0/23
45.84.0.0/23
45.87.152.0/22
45.89.52.0/24
45.89.54.0/23
45.93.8.0/22
45.159.248.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.125.255
193.43.147.0/24
193.46.56.0/23
193.57.136.0/22
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:07:79:8c:94:c0:31:00:95:9b:2c:cf:43:e6:c6:7c:b8:ae:
80:0e:dd:ef:ad:17:b4:03:c7:0d:de:f5:25:e9:4a:66:73:61:
46:9b:ec:ae:83:52:91:42:74:61:be:2b:c3:f7:d2:da:03:b5:
cd:cf:8d:5b:3e:1d:f0:66:c4:4c:d0:2e:88:9a:25:50:a3:6a:
04:eb:ab:86:12:ba:d6:0b:f1:a4:d6:ef:54:4d:c4:3f:52:7b:
b5:d4:6f:af:f6:c5:b9:7a:e4:dd:6d:08:b4:16:8c:9d:f5:73:
a7:4e:e2:84:39:eb:bf:84:ae:a9:e6:5f:6d:6d:2a:d9:8e:00:
73:55:db:ef:de:f3:4d:86:f0:f9:8e:b3:79:10:40:48:4b:36:
47:47:ff:60:da:2e:cb:f7:b4:be:e9:c5:7b:51:70:9b:f4:f0:
52:13:6e:aa:39:d4:b4:8c:80:f7:44:4c:2a:3c:bd:f4:47:aa:
b6:1f:7e:64:25:10:94:c0:d8:9d:9a:b1:3c:d4:43:6a:67:be:
fd:fd:9d:f6:95:bb:e2:02:b9:f9:c0:9f:bf:75:8a:22:05:ca:
a3:6e:ec:65:11:6e:b8:f0:9c:33:48:f8:44:2b:32:5a:c5:5e:
41:e3:d8:f4:82:9f:0d:de:13:43:00:29:7e:62:bd:17:73:50:
73:4e:da:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org