Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AnN-J-cuAA4x6Hzqaj0rRFycvcY.roa
File: AnN-J-cuAA4x6Hzqaj0rRFycvcY.roa (raw, json)
Hash identifier: ahW14rk46s/x/9XEo9J0yGJNznmqKFOUrdW1rh32pVo=
Subject key identifier: 02:73:7E:27:E7:2E:00:0E:31:E8:7C:EA:6A:3D:2B:44:5C:9C:BD:C6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0188F83AB3A7C053C94CD7C4F13E44C2E5BB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AnN-J-cuAA4x6Hzqaj0rRFycvcY.roa
Signing time: Mon 26 Jun 2023 15:02:56 +0000
ROA not before: Mon 26 Jun 2023 15:02:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.111.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f8:3a:b3:a7:c0:53:c9:4c:d7:c4:f1:3e:44:c2:e5:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 26 15:02:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02737e27e72e000e31e87cea6a3d2b445c9cbdc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d9:f0:17:57:22:e1:38:cf:d7:34:db:e6:52:
d2:7d:86:36:96:6c:0b:8b:0b:26:5f:cb:1b:bd:76:
65:87:a4:67:14:f5:76:bb:d3:9f:fc:ea:ae:2d:10:
e3:93:7b:92:d9:ce:48:b3:ab:0c:1f:5d:ee:6d:d1:
62:7d:e4:69:39:d6:0e:c0:ec:c8:47:0f:a5:7e:7f:
3d:3a:2b:94:33:16:bc:75:35:3f:fb:0b:80:a1:a0:
e8:b6:6a:ef:3f:44:ef:69:e0:c6:9d:20:5d:d5:81:
50:a1:79:b6:9a:39:27:b8:b7:95:25:93:a6:07:ed:
43:ad:56:49:4b:7c:ae:3a:d4:5b:09:47:a5:d9:d2:
ac:6b:6a:a2:c0:fa:86:c9:0b:ef:d6:5d:49:d8:28:
2b:71:df:59:d3:7d:20:e0:dd:e7:16:af:62:75:66:
82:05:68:22:be:c2:d7:4d:69:68:1f:c1:0b:67:57:
28:02:3f:d4:ad:c0:76:17:bb:62:0c:a1:ac:ac:63:
46:94:31:5d:de:a7:d9:aa:a1:33:9f:65:d9:af:c6:
ce:44:1f:1f:31:b7:fa:b4:4f:ff:01:34:1d:87:c2:
dd:14:8a:e7:97:e1:1e:f0:1d:1b:ef:38:b4:0b:6a:
0a:77:79:c4:8d:3c:65:12:df:06:b5:48:f5:55:a1:
56:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:73:7E:27:E7:2E:00:0E:31:E8:7C:EA:6A:3D:2B:44:5C:9C:BD:C6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/AnN-J-cuAA4x6Hzqaj0rRFycvcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
194.50.111.0/24
IPv6:
2a04:ccc1::/32
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
1d:23:da:6d:8c:1e:09:d5:7e:fa:ef:f5:72:7e:38:df:08:18:
18:29:61:bd:50:36:72:74:a2:d0:06:32:6d:6e:32:6d:76:59:
f2:cd:8e:e3:21:c7:ae:9a:99:4a:05:1d:80:26:45:a6:62:67:
f8:20:fa:e8:4f:23:d9:e0:c8:d3:bf:55:61:91:a5:ce:38:9f:
36:70:6b:bd:98:57:22:75:96:eb:59:cb:2e:bd:a9:52:44:44:
84:2a:a6:0b:24:5b:b3:38:6a:e5:fa:c4:c7:c6:46:a7:7f:32:
b3:ab:82:f7:ae:21:da:e4:c3:3a:48:71:f0:86:3d:78:b0:e1:
e5:87:78:33:a6:e3:3b:41:27:43:33:6f:f2:b7:63:db:57:b1:
94:04:25:70:fb:9b:c8:31:49:18:01:ef:60:44:4d:35:28:54:
03:a1:0a:45:95:cc:05:d3:f3:27:d8:bf:45:02:0e:0f:cf:81:
65:a1:9a:a8:39:d9:9c:f0:ce:84:09:81:89:cd:05:18:ae:bc:
39:a3:33:b5:00:e8:f5:79:8f:aa:b9:5f:8a:75:0e:f9:b7:6d:
74:05:8c:0b:e0:fe:09:a7:b5:8c:89:c9:d6:26:22:c9:a1:97:
fe:15:ba:b5:65:5d:a1:41:ee:06:02:ca:ce:8e:35:8a:fa:0a:
27:51:fc:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:56 2023 by rpki-client on console-ams.rpki-client.org