Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/7rCgdKqU8XP-hD57mgyK5_J_69A.roa
File: 7rCgdKqU8XP-hD57mgyK5_J_69A.roa (raw, json)
Hash identifier: c0gv3vZFoeyrsHH1pPNxMiOGFSD0ilsQiILOyGrkkAg=
Subject key identifier: EE:B0:A0:74:AA:94:F1:73:FE:84:3E:7B:9A:0C:8A:E7:F2:7F:EB:D0
Certificate issuer: /CN=f1b8bbb1e186a599d4cc058cabf4df0e252f31fa
Certificate serial: 0187A8FB1A346CBA9C5C49FE4B129348C08D
Authority key identifier: F1:B8:BB:B1:E1:86:A5:99:D4:CC:05:8C:AB:F4:DF:0E:25:2F:31:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bi7seGGpZnUzAWMq_TfDiUvMfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/7rCgdKqU8XP-hD57mgyK5_J_69A.roa
Signing time: Sat 22 Apr 2023 12:40:41 +0000
ROA not before: Sat 22 Apr 2023 12:40:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56971
IP address blocks: 193.43.72.0/24 maxlen: 32
45.152.112.0/24 maxlen: 32
45.152.113.0/24 maxlen: 32
193.242.145.0/24 maxlen: 32
45.145.4.0/24 maxlen: 24
45.145.6.0/24 maxlen: 32
45.145.7.0/24 maxlen: 32
45.159.210.0/24 maxlen: 24
45.159.208.0/24 maxlen: 24
45.159.209.0/24 maxlen: 24
45.154.3.0/24 maxlen: 32
45.152.84.0/24 maxlen: 32
45.154.1.0/24 maxlen: 32
45.154.2.0/24 maxlen: 32
45.152.86.0/24 maxlen: 32
45.11.93.0/24 maxlen: 24
45.11.94.0/24 maxlen: 24
45.11.92.0/24 maxlen: 32
193.43.94.0/24 maxlen: 32
193.23.55.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:fb:1a:34:6c:ba:9c:5c:49:fe:4b:12:93:48:c0:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1b8bbb1e186a599d4cc058cabf4df0e252f31fa
Validity
Not Before: Apr 22 12:40:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeb0a074aa94f173fe843e7b9a0c8ae7f27febd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f0:75:e6:b1:62:63:e8:5d:45:57:1c:c0:db:
59:06:63:94:a0:45:88:41:81:2d:dc:5b:af:1a:8d:
c6:9e:08:56:f5:8e:bb:9c:c0:59:90:bf:bd:df:0d:
25:59:95:55:c8:00:91:af:54:04:58:33:25:48:51:
d1:fc:60:8e:6d:a8:5f:bf:e6:8a:5d:7e:88:61:af:
5c:15:63:a7:91:7e:1c:bc:e1:bc:f5:f7:13:b0:d3:
c7:0d:ec:fe:e1:fb:dc:46:3d:a7:ba:6b:48:22:00:
98:eb:49:7e:1e:a0:8c:68:2a:6c:9f:36:7c:16:47:
43:05:82:2a:27:97:fb:e5:87:bc:e0:a4:ff:f1:73:
35:64:99:35:cd:8b:ae:48:55:4e:11:2d:c2:c2:90:
69:67:77:c8:89:b1:cc:03:a4:29:dc:ac:36:04:f5:
87:e0:b5:21:6a:a6:b6:4b:ad:52:92:54:0f:fb:a0:
0d:52:0f:0a:7c:78:5e:6f:06:5a:8d:ba:ea:3e:fe:
24:ae:b0:0e:b8:58:6d:37:d8:8e:ec:8d:37:71:ff:
97:e4:e1:60:bc:92:a1:7a:9c:83:8d:9e:46:ef:8c:
49:06:9a:29:a1:ef:6b:87:82:18:61:34:33:fe:6b:
f3:4b:6c:50:ed:42:7a:0c:41:85:b3:a0:c1:fe:d6:
ad:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B0:A0:74:AA:94:F1:73:FE:84:3E:7B:9A:0C:8A:E7:F2:7F:EB:D0
X509v3 Authority Key Identifier:
keyid:F1:B8:BB:B1:E1:86:A5:99:D4:CC:05:8C:AB:F4:DF:0E:25:2F:31:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bi7seGGpZnUzAWMq_TfDiUvMfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/7rCgdKqU8XP-hD57mgyK5_J_69A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/321ea6-eff7-4514-ab2d-5b4b85fd5ae5/1/8bi7seGGpZnUzAWMq_TfDiUvMfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.92.0-45.11.94.255
45.145.4.0/24
45.145.6.0/23
45.152.84.0/24
45.152.86.0/24
45.152.112.0/23
45.154.1.0-45.154.3.255
45.159.208.0-45.159.210.255
193.23.55.0/24
193.43.72.0/24
193.43.94.0/24
193.242.145.0/24
Signature Algorithm: sha256WithRSAEncryption
68:34:4e:4c:ed:10:8c:59:ce:af:d4:77:bd:a6:3f:00:03:5a:
dc:c4:c1:47:ff:07:f5:5c:b1:4c:d5:00:be:ab:bc:43:24:ef:
70:72:59:2b:e2:8e:e6:e3:ef:33:83:8c:85:5e:59:17:3c:a1:
9f:7c:0b:f2:74:a6:e4:b7:43:bb:ad:73:d6:fe:92:9e:6c:b2:
6f:77:c9:47:94:80:ca:f0:70:8e:39:e5:95:10:83:54:bc:10:
92:02:05:26:39:cb:20:0b:f4:c2:9c:cd:86:4e:1b:65:09:f5:
0d:53:8d:9c:ca:dd:1f:85:a6:39:93:c8:52:50:5f:fa:cc:da:
7e:ab:d3:25:b5:9d:c0:84:02:a3:c2:b6:7f:e2:ac:19:96:d9:
ce:47:8f:c3:2a:8d:2b:b3:89:60:1e:30:87:7a:14:2b:a1:d7:
2e:f6:af:8a:b7:b9:43:86:d4:a8:51:c0:0c:68:2d:09:d8:14:
08:b4:2f:43:18:61:1a:52:c6:e8:24:92:02:43:52:f2:94:37:
ee:98:3c:fc:80:d9:98:e6:55:b2:f3:ec:8f:22:1f:5b:f8:bd:
34:a0:a5:9c:77:b0:a4:76:42:87:b7:75:98:0b:fd:8e:10:d4:
f2:49:55:4c:d3:39:a5:34:0c:71:53:ca:31:06:5d:aa:84:ac:
29:e1:48:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:46 2023 by rpki-client on console-ams.rpki-client.org