Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EqWr1IMdih3FERgPg5LBDzs6PwE.roa
File: EqWr1IMdih3FERgPg5LBDzs6PwE.roa (raw, json)
Hash identifier: vJF33bjDhMELbGIGHdgd5bio+6q3j0oeeo0fNw36u7Y=
Subject key identifier: 12:A5:AB:D4:83:1D:8A:1D:C5:11:18:0F:83:92:C1:0F:3B:3A:3F:01
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185AAA0D693B25ADD866DFD72C79135A2ED
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EqWr1IMdih3FERgPg5LBDzs6PwE.roa
Signing time: Fri 13 Jan 2023 10:15:45 +0000
ROA not before: Fri 13 Jan 2023 10:15:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:97c0:170::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1786::/48 maxlen: 48
2a10:cc41:800::/37 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:aa:a0:d6:93:b2:5a:dd:86:6d:fd:72:c7:91:35:a2:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 13 10:15:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12a5abd4831d8a1dc511180f8392c10f3b3a3f01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1f:c3:8a:7d:a6:c1:53:2f:e3:0f:30:22:fc:
8a:be:9f:14:0a:fe:15:97:a8:d7:6f:c6:ea:27:59:
ef:47:ec:b3:21:a1:76:63:27:d9:ca:c2:a2:a0:6f:
c5:51:01:29:84:af:c6:25:85:25:3e:0a:44:7e:13:
11:43:0d:26:a3:70:91:7d:06:ae:4c:60:d7:4c:c1:
3d:e3:d7:ad:c6:93:94:51:2b:b0:be:33:06:4c:c8:
f0:07:f6:cb:06:fc:d9:22:e9:93:a7:86:3d:df:a1:
c1:d3:9c:99:d9:8c:f2:c2:e7:09:1d:d6:58:6b:a1:
be:62:6e:a6:c0:a2:fe:10:cf:fe:b2:d0:ec:2b:82:
3d:b9:b8:40:54:3f:bf:3d:59:a0:42:fa:e9:a1:a1:
79:33:d7:40:23:45:6b:0f:95:98:c2:e8:22:60:e1:
c4:92:64:e2:1c:66:a1:5a:bd:7e:69:ef:b6:c8:b7:
5e:e8:aa:1c:d0:c6:4a:50:f4:fa:0e:89:95:bb:5d:
84:18:b6:23:7e:89:25:b5:50:7e:02:8a:d3:a2:17:
64:6d:71:31:7a:47:af:b9:04:b6:65:c9:b9:b4:c0:
49:6f:b5:b6:1f:41:f8:3e:96:3b:a0:74:d3:b7:0a:
33:15:f3:e0:60:53:00:44:4e:c1:55:59:9d:d9:a4:
d0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A5:AB:D4:83:1D:8A:1D:C5:11:18:0F:83:92:C1:0F:3B:3A:3F:01
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EqWr1IMdih3FERgPg5LBDzs6PwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc41:800::/37
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
15:44:d3:f0:31:63:af:0e:dc:82:7c:36:87:a9:6a:01:0a:cb:
01:34:4f:62:7b:9f:33:dc:36:79:d3:ef:f6:09:1a:8b:ab:b4:
aa:b6:3c:42:bf:b7:7d:82:0f:e3:96:91:24:b5:41:ad:b7:f1:
99:1a:12:2d:6a:35:b7:4b:7f:fe:81:28:b4:8a:bd:82:e3:4d:
00:b9:6c:cd:f0:25:cf:d9:48:22:fd:ef:b3:0d:29:6b:de:8d:
8c:98:9d:c7:fb:37:32:4e:e6:f3:47:82:17:9d:97:62:86:c8:
99:49:c6:19:5a:f0:c1:3c:c0:c4:9e:af:56:29:7f:cb:c7:bd:
fa:2b:5c:49:8f:6a:c0:45:61:10:95:c3:c9:e9:55:cc:b4:a4:
4f:3e:7a:92:8e:e1:78:2d:7b:28:bb:70:b6:0b:c2:b1:94:b9:
76:71:d9:35:5f:cf:74:7f:67:68:2c:75:b2:d9:24:aa:53:68:
60:17:d0:b4:5f:f3:b1:52:4b:19:63:5a:be:42:06:0e:70:82:
7f:06:a0:8b:be:f6:bb:5a:1a:69:04:fc:fa:0b:a8:e3:f3:b9:
d3:3b:8c:20:84:5c:bc:c2:4d:e1:9c:82:9d:1a:82:38:0b:23:
c8:9b:bd:ef:ce:5c:fd:41:27:28:95:b9:41:8f:38:8f:03:ba:
c4:d9:d7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org