Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P0xogBjhU1xMJLU-FEiSntiabZI.roa
File: P0xogBjhU1xMJLU-FEiSntiabZI.roa (raw, json)
Hash identifier: OBQLGdL9j1HfiqYR6XGyFATw3GI4wCx2dOtxVc72YR4=
Subject key identifier: 3F:4C:68:80:18:E1:53:5C:4C:24:B5:3E:14:48:92:9E:D8:9A:6D:92
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C010C7268383B48F045BAAD06DE1FFEE8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P0xogBjhU1xMJLU-FEiSntiabZI.roa
Signing time: Fri 24 Nov 2023 11:17:22 +0000
ROA not before: Fri 24 Nov 2023 11:17:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
194.50.111.0/24 maxlen: 24
185.238.188.0/22 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a06:de01:d0::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:01:0c:72:68:38:3b:48:f0:45:ba:ad:06:de:1f:fe:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 24 11:17:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f4c688018e1535c4c24b53e1448929ed89a6d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:39:bd:5d:97:39:3b:84:1a:77:3a:85:7a:e8:
62:3f:e9:74:a9:b4:7d:91:21:2a:d3:cd:33:e7:12:
ae:d2:03:7d:ee:e9:8a:6e:d8:9b:d4:e6:39:aa:2c:
b0:5e:1c:6f:b4:0c:61:0b:da:d8:b5:14:bf:b0:12:
4f:02:6f:9f:99:1e:a2:23:a6:7c:71:90:5e:2e:52:
f2:94:ac:63:37:69:f0:c2:b6:e5:f8:13:3e:fc:71:
65:3c:b0:7f:b7:8b:84:e4:a4:1c:ce:1e:13:ca:a7:
d1:aa:f0:4e:07:3a:6e:c9:85:49:93:35:f0:33:1b:
de:f8:52:7e:41:4e:1e:33:e9:d5:63:73:ab:7b:20:
54:18:a7:f7:88:19:b0:cd:fe:1a:d4:dc:a0:9d:4a:
d6:ae:c5:e5:e9:e0:43:9b:d0:57:a1:da:0a:49:38:
e1:db:58:29:64:71:60:72:3f:83:b1:58:f9:c4:19:
04:86:77:d1:9b:51:12:6b:7d:e8:b4:bc:64:06:83:
2b:e5:13:2e:30:79:6a:41:bf:d6:25:5e:8b:dd:e2:
fe:55:43:87:c5:bc:32:2c:82:d6:cc:09:13:e4:e7:
52:21:f9:d6:11:89:d0:b7:0c:40:09:c5:9e:22:ee:
ab:f3:27:bc:29:f2:f1:d3:7f:7f:8b:41:d0:ff:7f:
62:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:4C:68:80:18:E1:53:5C:4C:24:B5:3E:14:48:92:9E:D8:9A:6D:92
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/P0xogBjhU1xMJLU-FEiSntiabZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
194.50.111.0/24
IPv6:
2a06:de01:d0::/48
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
62:79:05:c9:e1:b0:c8:6e:60:61:43:8e:4d:96:59:7a:af:f5:
54:4b:0e:70:35:b1:ae:4f:88:07:16:76:06:3a:5f:65:65:7a:
2e:cb:70:cf:13:72:18:a3:d3:69:6f:fc:a0:b9:e7:83:23:26:
96:05:d7:c4:00:27:0a:fd:57:8d:b1:df:d0:2c:9c:3c:cd:52:
89:b5:99:ae:91:70:b8:e4:51:49:4a:89:df:de:77:d2:fb:16:
7e:a1:32:c7:48:2f:1a:60:bd:5a:70:26:38:3d:a7:42:2c:d9:
66:41:e0:32:7d:ca:2a:db:af:11:d6:98:f8:17:f7:0f:cf:70:
f8:cb:ad:a6:b4:8c:75:c8:7f:a3:dc:27:b3:ae:4c:61:bd:67:
1b:6a:04:59:88:2f:68:eb:df:f6:d5:a3:66:ef:02:4a:21:b0:
07:86:81:37:36:ab:61:b5:39:f7:26:fc:f0:12:70:9a:7f:8f:
09:43:4a:73:6f:4c:ac:3a:bd:82:cc:3e:fe:4e:58:ab:d2:e0:
1c:24:6c:b3:54:f3:6e:3c:e7:db:20:72:f9:4b:7e:26:78:4b:
f4:02:46:07:94:d0:e1:01:36:3e:55:00:84:21:ec:84:27:7a:
27:31:c3:eb:6d:3a:b7:cb:8b:0e:bb:9c:22:f4:19:77:92:b1:
9b:a8:75:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 24 16:38:22 2023 by rpki-client on console-ams.rpki-client.org