Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/pPb1Y_O47Wua4-reqnNrUvPx-Tw.roa
File: pPb1Y_O47Wua4-reqnNrUvPx-Tw.roa (raw, json)
Hash identifier: 6E+21iF0SynSLx1/vqIbAvCsbbnAqFpBjUI3dh7DcpQ=
Subject key identifier: A4:F6:F5:63:F3:B8:ED:6B:9A:E3:EA:DE:AA:73:6B:52:F3:F1:F9:3C
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 01870E1AB9AC1E255A81168DB01A765BFC85
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/pPb1Y_O47Wua4-reqnNrUvPx-Tw.roa
Signing time: Thu 23 Mar 2023 10:54:05 +0000
ROA not before: Thu 23 Mar 2023 10:54:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.9.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:1a:b9:ac:1e:25:5a:81:16:8d:b0:1a:76:5b:fc:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Mar 23 10:54:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4f6f563f3b8ed6b9ae3eadeaa736b52f3f1f93c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:56:10:8b:7f:a0:7a:f3:12:f4:ae:31:ec:6c:
c0:27:aa:7d:47:0b:6e:06:65:99:61:63:47:1f:97:
70:6e:80:9f:bf:aa:df:03:d3:7a:64:01:b9:e8:be:
8d:29:d8:95:79:9a:9c:dd:bb:39:9a:b3:6a:14:f9:
17:71:c3:b2:18:4c:50:09:12:e4:f8:78:49:df:52:
34:6a:e5:0e:2a:04:20:69:76:c0:f2:d8:a0:34:e7:
77:97:44:8d:63:d2:1a:92:94:af:18:d9:07:82:fc:
4b:c9:23:35:cb:bc:b2:d2:50:ab:b7:a4:d4:ac:40:
91:b3:57:8a:29:47:87:5e:e2:82:01:ee:57:36:db:
8d:ea:49:66:f3:4e:58:9a:ca:d1:07:80:f7:37:9c:
3c:ca:ed:10:00:cc:5d:2e:6d:15:3e:07:b8:60:51:
56:f7:ab:0b:e3:4f:a5:60:36:7a:c9:08:e4:18:33:
dd:34:4d:5f:fb:0d:cc:30:bf:0b:93:76:b1:4f:f1:
c6:1b:84:b3:b8:54:b9:d8:7b:7f:db:9f:18:f1:13:
18:db:c1:3a:71:a7:f4:f8:94:69:eb:7a:7b:64:19:
c7:57:0b:0e:71:71:03:a2:af:42:55:3a:4a:db:b7:
fd:f7:93:d0:45:3f:4c:2e:a4:d5:15:b6:fc:80:80:
4e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F6:F5:63:F3:B8:ED:6B:9A:E3:EA:DE:AA:73:6B:52:F3:F1:F9:3C
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/pPb1Y_O47Wua4-reqnNrUvPx-Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
5.182.38.0/23
45.8.144.0-45.8.146.255
45.67.35.0/24
45.84.0.0/23
45.87.152.0-45.87.154.255
45.89.52.0/24
45.93.8.0/23
45.159.248.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.123.255
193.43.147.0/24
193.46.56.0/23
193.57.136.0-193.57.138.255
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:8b:3d:68:1c:21:a1:c2:18:11:20:7f:76:fa:73:57:e7:6a:
1f:5b:7a:22:36:6e:6f:fd:25:d4:1b:77:e8:00:19:48:e8:b3:
b9:84:ab:ea:ee:a0:7a:37:51:f1:5d:79:bd:3d:20:bf:19:11:
29:33:4f:86:aa:d7:2f:5b:f9:1c:39:73:e6:95:88:7a:99:23:
27:31:eb:66:34:99:6f:12:03:d4:bb:b9:b2:1d:a9:3c:b3:46:
11:0b:8a:6c:66:b7:22:d8:03:7e:88:88:90:c7:f8:44:82:75:
f5:63:a0:1b:20:fb:58:ca:22:17:43:b2:92:43:62:ef:58:bd:
b3:91:8a:da:8d:2d:7e:da:5f:2b:7d:88:5c:f2:2f:26:c2:5b:
4f:ec:af:68:02:68:69:b5:4f:4b:3f:77:fe:78:46:bd:07:d1:
e4:4b:db:8d:3a:3a:d1:5c:09:b9:a6:07:18:36:b4:e6:4f:5e:
4e:2f:f1:ac:92:1a:ac:c2:e1:10:d2:90:44:f9:f4:76:58:37:
e3:3b:21:38:83:47:7f:e3:c4:45:45:ce:a0:9b:fb:8d:a6:4a:
02:5e:03:87:27:b2:e7:9c:d1:03:25:41:31:c9:53:04:06:60:
16:d4:5e:ff:51:ec:fd:fe:a1:78:ac:d8:51:1e:0c:98:8e:a4:
96:8e:78:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org