Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/96Ywb5_Mez4BxK-Exuwukxcuvzk.roa
File: 96Ywb5_Mez4BxK-Exuwukxcuvzk.roa (raw, json)
Hash identifier: DiivdcEDJLo+OArcCAKLcqyLTgr9mT8MAub2H6WkhtM=
Subject key identifier: F7:A6:30:6F:9F:CC:7B:3E:01:C4:AF:84:C6:EC:2E:93:17:2E:BF:39
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01893B5018583AA7B37B2AADF4DF80FF8CF6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/96Ywb5_Mez4BxK-Exuwukxcuvzk.roa
Signing time: Sun 09 Jul 2023 15:40:52 +0000
ROA not before: Sun 09 Jul 2023 15:40:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a04:ccc0:ffff::/48 maxlen: 48
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3b:50:18:58:3a:a7:b3:7b:2a:ad:f4:df:80:ff:8c:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 9 15:40:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7a6306f9fcc7b3e01c4af84c6ec2e93172ebf39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:04:70:67:10:b7:59:fe:82:f6:1c:5d:69:
ab:8e:f7:e3:a1:a7:be:17:2c:6e:1a:2e:a0:e7:f6:
75:a5:4e:6c:58:05:09:06:f1:c5:0f:82:70:ab:82:
dc:95:14:97:57:b8:7f:bc:11:f4:cd:b1:05:4a:a4:
54:df:7c:1c:fd:ce:36:77:9a:de:f7:a2:1a:ae:71:
3d:6f:dd:9e:35:33:42:98:74:8e:dc:8b:28:c8:a4:
70:58:fb:da:2f:13:cc:f9:8d:ab:e2:36:29:3f:dc:
ea:9a:d1:39:16:c6:a5:c8:e0:2b:e1:fb:72:75:e8:
bf:60:6f:09:52:b4:5c:f3:8a:87:33:76:02:90:bf:
b9:54:29:9d:41:62:2d:70:38:ab:db:db:35:50:c1:
e8:2a:ad:b0:e2:8b:ee:b8:80:33:e2:bb:1c:cc:e4:
fc:27:64:1d:fa:80:31:27:21:6c:35:a2:2f:31:9f:
bd:37:4e:fa:de:44:64:e4:b8:22:99:f8:e1:2b:ed:
18:09:fc:9c:f3:08:38:05:51:8d:da:f0:71:67:6f:
83:46:31:6a:03:95:e5:96:c8:c6:41:09:24:cc:e7:
40:e8:dd:6e:b6:1f:50:28:db:d9:4d:20:d5:94:72:
29:0a:f9:dd:1a:3c:98:9c:dd:a3:07:a7:a6:10:b7:
18:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A6:30:6F:9F:CC:7B:3E:01:C4:AF:84:C6:EC:2E:93:17:2E:BF:39
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/96Ywb5_Mez4BxK-Exuwukxcuvzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
185.238.188.0/22
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc0:ffff::-2a04:ccc1:ffff:ffff:ffff:ffff:ffff:ffff
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
94:fa:7e:b4:54:f1:fd:43:6a:4a:0a:d2:e7:ea:47:dc:5c:fd:
cb:35:b4:08:0c:98:b2:b8:41:00:6c:0c:56:b5:7e:9c:a4:f3:
7c:46:c2:f1:16:3a:52:83:d2:0c:16:6b:d4:4f:29:37:38:16:
a7:5f:77:b8:6b:04:08:ce:fe:81:72:43:d9:dc:d4:50:3a:ed:
4c:8f:95:78:dd:d5:15:bd:10:f3:09:6c:2c:a4:a2:dd:ae:ec:
e8:3a:20:f5:37:7d:25:1e:22:ff:59:bb:ca:55:33:99:5c:64:
27:49:35:4e:7c:b2:d2:55:61:c3:f0:da:20:c0:82:ff:b5:6d:
91:9d:f7:8f:36:04:46:8b:d5:f2:44:2f:38:eb:dc:25:0c:0a:
d1:ca:21:e9:02:83:82:55:37:01:1a:ad:89:2e:77:13:f6:73:
90:7d:28:7c:83:43:43:50:66:6a:42:9d:a1:82:19:76:54:b8:
d0:23:d0:05:98:06:46:e2:d5:33:0e:92:3e:19:0d:6b:00:0d:
b1:a4:56:42:e4:05:3a:d2:56:7e:d9:bf:83:1f:43:75:c4:7a:
3c:75:3a:b9:70:5e:e1:03:43:94:27:2c:22:22:a1:3a:45:de:
0d:c8:e9:c1:9e:07:75:d9:4d:bb:fd:49:af:c1:1c:ee:e1:48:
a8:86:81:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 08:18:33 2023 by rpki-client on console-ams.rpki-client.org