Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AP4cKsNRM7UXBVooJSJoPeMmDwM.roa
File: AP4cKsNRM7UXBVooJSJoPeMmDwM.roa (raw, json)
Hash identifier: /ZRzOVfWeaxpAuCHEh1T1C6eo6NemB4KjI3fisEp2ng=
Subject key identifier: 00:FE:1C:2A:C3:51:33:B5:17:05:5A:28:25:22:68:3D:E3:26:0F:03
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186C50C7A7D2668A19487421F5CA3FB54A2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AP4cKsNRM7UXBVooJSJoPeMmDwM.roa
Signing time: Thu 09 Mar 2023 06:26:14 +0000
ROA not before: Thu 09 Mar 2023 06:26:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0c:3b80::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b83::/32 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Mar 2023 06:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:0c:7a:7d:26:68:a1:94:87:42:1f:5c:a3:fb:54:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 9 06:26:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00fe1c2ac35133b517055a282522683de3260f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:86:0a:5e:64:11:40:fd:e9:87:f0:29:f7:92:
c3:f2:de:8f:6d:6c:85:30:7b:15:f2:de:cf:93:c6:
3d:e2:2e:7d:0c:d1:20:26:3b:eb:8e:4b:c1:ba:4f:
0c:34:52:31:1e:2a:88:1f:59:1c:c2:0f:25:96:46:
89:12:fe:08:cc:eb:52:68:7e:2e:42:4e:11:a2:d0:
73:89:48:45:a3:8e:e5:b2:14:4a:5f:d9:28:6f:f4:
96:d3:34:be:31:47:55:1f:eb:05:56:7a:89:29:93:
7a:20:50:7b:cc:ab:1a:d1:f3:52:05:1b:0f:1e:08:
3b:b6:e2:c4:68:c5:12:6f:89:96:2d:41:f9:35:87:
66:5b:44:82:c1:6a:2b:db:d7:82:4e:9e:64:f4:69:
b9:88:eb:e2:8d:94:3f:c1:27:b6:01:b0:7e:89:11:
9e:d9:95:6a:96:d2:f9:a8:15:1f:7e:bd:b9:34:8f:
e9:e3:1c:13:ac:dc:d7:e5:eb:9c:eb:4f:a1:1e:8c:
db:e8:19:3f:cb:ba:2d:04:8a:54:89:47:b4:39:10:
a7:b3:e1:0e:e7:3b:8c:a0:06:14:26:cf:17:e2:88:
91:6f:6a:4d:2f:9c:87:8b:95:79:a1:95:38:1b:73:
86:d9:f3:86:99:94:49:92:ee:37:97:1c:20:cc:51:
e5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FE:1C:2A:C3:51:33:B5:17:05:5A:28:25:22:68:3D:E3:26:0F:03
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AP4cKsNRM7UXBVooJSJoPeMmDwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
Signature Algorithm: sha256WithRSAEncryption
50:25:a9:b3:17:b2:3c:30:4a:8a:e7:4d:1e:bb:e1:1a:2e:9e:
bf:7f:e8:e3:ca:c4:5e:93:5b:73:87:19:4a:2c:20:68:b3:8e:
1d:77:0a:e9:9e:f2:ab:81:0a:1c:9e:db:9d:fe:72:aa:27:4e:
e9:8f:93:c7:74:0b:a1:c9:38:7d:65:6f:de:71:94:bf:2e:9c:
61:6b:fd:32:8c:72:75:ae:25:e5:39:21:0f:18:82:23:3f:78:
47:02:67:38:f5:bc:fe:e6:e4:14:16:4e:3c:1b:ab:d6:67:0b:
51:25:9e:ac:84:6e:70:ef:ba:4f:6e:ec:3e:6f:a5:13:5c:ba:
01:b4:63:43:b6:ae:4b:23:c2:a8:e5:6c:f6:cc:e0:a2:60:78:
90:ff:c7:17:25:00:6c:52:40:14:08:3e:0a:cb:33:a6:26:f4:
12:31:02:fa:d9:be:8c:8d:b4:76:be:ed:5c:dc:81:4b:ad:99:
43:bf:00:43:5c:e3:f6:8f:ee:1a:00:d1:5f:ec:3b:bf:8a:81:
8f:5a:96:ec:8d:6a:f8:9d:89:6a:32:cb:bc:00:62:f1:5f:12:
81:b2:e3:ab:29:a5:d8:3a:8a:2f:d8:35:29:53:0f:c1:eb:13:
b0:2d:f8:ea:5f:18:13:a7:c8:58:ef:ca:6c:be:3c:3e:67:2f:
00:90:fb:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:56 2024 by rpki-client on console-ams.rpki-client.org