Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8oXrKj7SXMXv5mD6Q4CeGyN8ivE.roa
File: 8oXrKj7SXMXv5mD6Q4CeGyN8ivE.roa (raw, json)
Hash identifier: /HZItJOnQi9U5ZN/3nlthHNSYtaz8tRfpo/5kJ5CVVI=
Subject key identifier: F2:85:EB:2A:3E:D2:5C:C5:EF:E6:60:FA:43:80:9E:1B:23:7C:8A:F1
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018924FDCB9BF8E70C48AEAA6138FCEA8588
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8oXrKj7SXMXv5mD6Q4CeGyN8ivE.roa
Signing time: Wed 05 Jul 2023 07:39:19 +0000
ROA not before: Wed 05 Jul 2023 07:39:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:24:fd:cb:9b:f8:e7:0c:48:ae:aa:61:38:fc:ea:85:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 5 07:39:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f285eb2a3ed25cc5efe660fa43809e1b237c8af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1d:90:91:d4:95:6c:60:8a:2e:32:9c:18:fb:
00:81:d8:d0:d8:db:75:ae:a4:a2:72:71:5f:90:84:
39:b9:5a:a2:8a:d3:4b:fe:6d:a9:4f:1d:9a:dd:56:
7e:f0:7c:0a:af:0c:f1:71:e6:57:2c:f2:00:35:3c:
21:94:b7:f9:2e:3f:63:e3:ea:c8:8b:0a:45:94:82:
60:4e:d2:aa:b9:b8:fc:0b:0b:5e:44:63:22:ae:42:
9a:da:92:87:a1:32:ea:b8:c7:2b:9b:d7:7e:4f:f5:
b1:f9:6d:54:67:fd:fa:3d:26:87:40:65:f1:7e:e1:
2a:12:e2:06:e7:ca:39:58:00:c8:80:6b:d1:ec:58:
83:20:df:30:20:78:40:40:16:f9:59:b2:7b:5d:ea:
4a:2c:fc:17:22:89:37:5e:85:16:73:84:31:53:ed:
79:97:61:48:2e:a4:88:19:00:bf:37:5a:62:ea:c1:
bb:61:fa:44:fc:16:02:bf:e4:80:0d:13:52:cb:7e:
5d:67:fb:1a:ca:be:11:81:5a:19:96:68:f2:b3:0b:
96:96:60:48:92:d9:02:94:a1:47:31:1e:de:29:87:
0e:46:97:d3:16:e1:9f:38:5f:23:12:29:75:56:9e:
03:88:1a:4e:02:fb:ff:16:ee:c8:55:a5:18:b8:c1:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:85:EB:2A:3E:D2:5C:C5:EF:E6:60:FA:43:80:9E:1B:23:7C:8A:F1
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/8oXrKj7SXMXv5mD6Q4CeGyN8ivE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
1a:9e:a6:f9:a0:e1:e7:16:3e:8e:7b:c4:4c:f6:8a:4e:91:b8:
1d:e1:c4:4d:1b:70:15:46:62:c9:d7:7e:d8:16:a7:81:36:f8:
46:37:ae:2c:62:75:2e:e1:0d:4d:23:28:c8:c5:0f:c2:d8:01:
86:c7:3b:0d:f5:c6:ff:85:d5:9b:4e:20:d2:5d:05:7e:c0:cc:
0d:c7:8b:f7:ea:9a:0a:22:97:63:c9:e4:5b:20:0a:7e:9e:6e:
22:e9:4d:b6:85:1e:4d:b8:89:40:9c:98:66:09:a3:48:bc:bf:
ad:83:a3:0b:40:16:8a:c0:cf:da:63:16:e5:33:bd:43:c4:db:
d2:43:1c:cf:bd:24:57:a9:7f:ad:8b:d0:2c:cb:1a:72:37:1d:
bc:73:32:1b:93:22:f7:ee:af:0e:53:d3:8b:f9:d8:fc:bd:99:
7b:21:ef:35:96:40:5c:c8:db:1c:d6:ec:89:bc:fe:3b:85:3b:
e5:78:33:0a:75:7a:8b:45:7f:e1:52:c2:9d:2c:7e:91:58:78:
4b:d7:ad:f2:d7:51:7f:fa:79:20:e4:3e:b8:9c:91:77:33:eb:
12:0c:b2:3d:77:b0:a3:b0:a4:41:da:17:03:c9:ef:e3:e7:0a:
d9:49:bc:f0:0e:99:f8:fd:49:17:f7:dc:41:ed:3a:50:b6:22:
99:55:56:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org