Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6vXQ01biDUfoOgJbvw1ioE0cvaY.roa
File: 6vXQ01biDUfoOgJbvw1ioE0cvaY.roa (raw, json)
Hash identifier: fxietMcXhqdxDZyaKknrCTy/Xu1HTB/vEAdRvmqvs0s=
Subject key identifier: EA:F5:D0:D3:56:E2:0D:47:E8:3A:02:5B:BF:0D:62:A0:4D:1C:BD:A6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187E6E58087B4A7FE183FE03EC3E081B291
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6vXQ01biDUfoOgJbvw1ioE0cvaY.roa
Signing time: Thu 04 May 2023 13:13:32 +0000
ROA not before: Thu 04 May 2023 13:13:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:b105:120::/44 maxlen: 48
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:e5:80:87:b4:a7:fe:18:3f:e0:3e:c3:e0:81:b2:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 4 13:13:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eaf5d0d356e20d47e83a025bbf0d62a04d1cbda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:55:74:4e:eb:85:77:a2:42:7c:eb:e6:e9:95:
f2:77:83:a1:1e:d7:33:b6:a4:ff:09:d5:2b:15:bb:
fa:1c:c7:a7:7f:a3:7e:2e:6b:7e:c7:72:97:7f:e8:
77:fd:1d:52:e9:2c:f1:d1:5d:ad:a9:a3:88:64:4c:
e4:e5:67:bb:ad:78:f2:5c:93:ee:70:aa:b4:39:0f:
98:3f:cb:c5:d5:61:36:8b:00:d8:f3:06:6f:df:e5:
de:55:e9:97:23:95:6c:e5:b1:10:f9:af:b4:ae:64:
42:6d:fd:fb:ca:6a:c7:12:e9:3d:dc:57:0b:65:4e:
bb:bd:e7:0f:79:46:37:a3:2d:cf:32:b0:bd:97:97:
b6:be:dd:82:c1:a8:a7:11:03:6a:94:74:af:45:76:
b7:30:dd:cb:49:6a:42:d0:b0:41:d7:65:4e:23:c1:
ac:fb:b1:c2:ad:58:d8:d0:d8:e5:cb:93:66:46:d4:
89:d3:38:56:db:37:52:a5:30:89:01:5a:69:4e:c2:
99:6e:54:1d:1f:4c:fc:db:12:17:4d:25:2f:17:86:
24:f5:63:35:41:da:67:9f:54:6a:b8:50:39:d0:07:
ce:54:f2:59:5b:fa:d6:a7:2e:50:a7:cb:0d:6d:a0:
05:2c:48:54:1a:d2:84:6d:27:dc:15:a2:c1:1c:88:
37:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F5:D0:D3:56:E2:0D:47:E8:3A:02:5B:BF:0D:62:A0:4D:1C:BD:A6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/6vXQ01biDUfoOgJbvw1ioE0cvaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b105:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
ad:d5:7b:40:df:96:94:b8:6f:5e:5d:b6:1e:c9:40:d4:53:38:
31:1a:95:4d:ae:8c:31:8c:c0:0f:d2:54:20:10:2f:97:89:83:
6a:a7:09:93:5d:1b:3e:8b:58:f1:60:14:c5:f5:99:c0:58:2a:
88:e6:c5:38:9f:df:d8:1d:d6:d7:08:17:44:54:9a:fb:3f:19:
92:1e:61:30:31:2a:c9:60:fe:de:bc:c4:6c:15:90:17:3e:d6:
f9:d5:d5:28:ec:9c:4f:75:28:55:81:7b:37:1f:fe:08:19:3b:
28:0a:c6:26:25:11:5d:62:54:fa:41:1b:b5:91:4a:69:40:2e:
7e:a9:e0:55:37:db:4e:76:45:8f:77:c9:c0:da:05:cf:4c:c4:
d6:5c:a4:84:cb:41:ae:ef:f4:e4:87:e1:81:eb:02:e5:d6:a1:
49:77:a0:40:57:b4:e6:9b:2e:a4:c8:08:a3:36:01:4b:b7:cc:
bd:f5:22:0b:eb:ea:ed:f7:7d:62:2d:e4:d1:b1:70:1f:ac:aa:
c7:8f:72:d7:af:64:3a:36:52:d3:5d:33:60:3b:89:ba:ce:52:
16:a3:8f:f6:a8:02:9c:a5:c3:48:54:c0:bf:ec:03:f2:ca:a4:
aa:e4:ed:d5:27:b6:1b:68:da:d0:7b:11:35:bf:9c:e1:f0:a0:
43:e6:28:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org