Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FlQ9N9jFF59uR-IYjsUWxjmAhcI.roa
File: FlQ9N9jFF59uR-IYjsUWxjmAhcI.roa (raw, json)
Hash identifier: wK8BXA1vtmYQfUFOZI4rWIerVObn9suHttldC+MhdzY=
Subject key identifier: 16:54:3D:37:D8:C5:17:9F:6E:47:E2:18:8E:C5:16:C6:39:80:85:C2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0188EDBBA2CB0F17E1E4C82B4B958EFFF49C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FlQ9N9jFF59uR-IYjsUWxjmAhcI.roa
Signing time: Sat 24 Jun 2023 14:07:57 +0000
ROA not before: Sat 24 Jun 2023 14:07:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ed:bb:a2:cb:0f:17:e1:e4:c8:2b:4b:95:8e:ff:f4:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 24 14:07:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16543d37d8c5179f6e47e2188ec516c6398085c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5b:be:a0:f6:38:b9:95:07:0a:c6:1b:7a:f4:
51:e4:3d:43:7a:5c:59:a2:cd:70:83:7e:a0:f9:a0:
52:7e:f2:2f:27:1a:bc:5a:54:b2:2f:6a:bd:05:51:
15:11:bf:1b:3e:91:e8:0c:de:89:42:b9:85:c9:5c:
90:d8:ec:cd:d0:53:b2:fe:13:7d:f1:f2:63:85:02:
6b:64:e7:17:01:02:5d:94:a9:85:cb:19:c3:ff:01:
6d:73:0e:bf:e0:1f:14:fb:26:9e:a5:0a:b9:95:b9:
b6:64:12:91:12:be:de:ff:30:19:50:dc:be:64:ae:
77:a5:1d:ae:1c:fa:e1:ed:45:fa:ec:75:c9:e5:98:
54:d8:05:b7:8f:9e:94:b4:42:4e:c0:68:2c:64:02:
4e:01:2c:68:83:6f:f8:e2:f4:87:3e:ad:ad:ba:b4:
99:1e:9f:e5:83:aa:a4:42:d6:1f:f9:78:e8:df:d2:
c2:82:dd:b1:fd:5e:b3:17:87:c2:20:31:44:7a:14:
95:e9:a7:99:3d:de:b8:63:fc:52:5f:2f:e5:da:04:
12:cb:dd:55:e4:cc:46:2f:f6:14:cf:35:7e:c4:64:
eb:3d:f2:f8:91:74:4d:ec:6a:11:44:ee:fe:83:89:
13:50:54:6d:09:d2:b1:14:fd:e5:f3:ea:db:57:96:
a0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:54:3D:37:D8:C5:17:9F:6E:47:E2:18:8E:C5:16:C6:39:80:85:C2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/FlQ9N9jFF59uR-IYjsUWxjmAhcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc1::/32
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
4b:b2:b6:5b:f2:56:91:41:ee:47:ee:bc:62:c1:de:9d:28:2a:
7f:5c:1c:8d:d9:43:a5:1d:b3:c4:f6:ac:51:e8:d3:e0:2d:b9:
c7:65:7f:05:28:2b:28:24:cb:c5:99:3b:84:df:c5:35:80:a3:
6f:1d:25:f3:be:d1:1e:bf:97:39:11:84:c1:06:e2:67:41:31:
63:62:09:18:ab:5f:0a:b9:b4:48:21:97:e7:bc:f3:ad:57:66:
a3:9f:81:95:49:a5:4b:e5:51:ad:92:ce:c8:44:ed:da:bc:7d:
f6:93:1a:fa:79:59:16:90:e5:e5:cf:b2:85:c3:d1:1a:b9:8b:
88:1d:3d:a3:5e:56:cc:76:71:9f:e5:64:e8:ee:3c:f2:7a:6a:
ef:6a:08:19:da:f8:a8:ee:6c:f0:7d:86:0b:9b:36:90:b8:3b:
3c:6e:00:32:d6:5a:21:e1:5c:b4:d2:39:98:da:ae:cd:56:34:
67:a1:0a:2e:e1:a6:b0:43:6b:58:35:fb:ee:dd:c2:8f:3c:2d:
62:bd:d0:2a:5b:27:d6:67:72:0e:ce:0a:25:c4:e0:80:69:fb:
b2:15:c3:36:8f:8c:81:3f:95:5c:92:2f:05:6b:7b:57:fa:c2:
7c:f4:d5:56:dd:10:b6:11:a3:97:79:5c:a4:b0:a2:74:86:99:
cb:c3:9e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org