Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZvGiiDu2fhBGb21qHI4B72GUQTo.roa
File: ZvGiiDu2fhBGb21qHI4B72GUQTo.roa (raw, json)
Hash identifier: cO2mFJWwMTsSJHDW+W1hXqNx4WEa/xchsHHXtBaH3qk=
Subject key identifier: 66:F1:A2:88:3B:B6:7E:10:46:6F:6D:6A:1C:8E:01:EF:61:94:41:3A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186E9CF65926E6802BF3C0758E821759EAD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZvGiiDu2fhBGb21qHI4B72GUQTo.roa
Signing time: Thu 16 Mar 2023 09:45:28 +0000
ROA not before: Thu 16 Mar 2023 09:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0c:3b83::/32 maxlen: 48
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e9:cf:65:92:6e:68:02:bf:3c:07:58:e8:21:75:9e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 16 09:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=66f1a2883bb67e10466f6d6a1c8e01ef6194413a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8f:9e:5f:f4:15:5d:42:27:ef:fc:f7:fa:ff:
37:45:d8:45:dc:66:5f:58:5e:5c:b9:31:c1:9a:8e:
a9:9d:ba:32:27:25:e5:1a:9a:c8:ed:fa:0e:ac:16:
4c:3d:6b:c6:66:bb:c4:be:33:72:e1:10:1f:84:c9:
76:a6:b4:43:68:6b:e8:26:66:e5:0c:bb:16:3c:15:
4f:a3:3c:fc:90:cb:76:f8:f9:c2:00:31:85:fa:e2:
8e:e6:c2:01:a1:61:d8:68:a8:d9:1f:6e:67:9d:5c:
a5:c6:cd:75:27:8d:f4:8d:9d:4e:a0:b3:96:f2:98:
5b:64:bd:76:b4:7a:72:61:bb:5f:8f:2b:b2:f2:9e:
18:fe:66:de:23:62:8f:ee:0f:23:47:54:a5:54:9a:
5c:4b:57:4c:ba:06:51:e5:a4:90:a9:1e:c5:ef:7e:
b7:d3:ff:cd:12:ae:a1:cd:1d:7e:e1:84:1e:bb:eb:
be:04:b2:8d:48:7b:d0:4d:b6:ff:ae:ef:54:03:62:
6d:1e:7a:b6:58:98:1b:6a:dd:7a:e9:56:a7:8e:7a:
d1:ae:5b:9c:98:6f:69:69:6e:e2:0c:b7:5d:67:50:
61:59:cd:56:df:00:4d:0e:1d:03:e3:4a:4a:12:03:
4a:e8:d2:41:b2:8f:63:f2:07:db:93:0e:1e:ad:ea:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F1:A2:88:3B:B6:7E:10:46:6F:6D:6A:1C:8E:01:EF:61:94:41:3A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/ZvGiiDu2fhBGb21qHI4B72GUQTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
Signature Algorithm: sha256WithRSAEncryption
bd:3c:13:f6:e3:58:93:5c:53:cf:43:6b:0a:8b:67:62:7f:98:
a6:5f:29:bc:6d:4c:5b:59:8f:d9:be:d3:90:6a:41:cb:61:e7:
8e:f3:e8:28:7b:82:93:3c:3d:94:3e:99:50:54:56:29:42:e0:
ed:6e:36:2e:8b:2f:d7:7c:7c:5b:44:7b:dd:12:84:84:59:25:
e7:fc:8c:2a:a3:77:bd:f0:e2:7f:70:22:d6:a4:54:df:b6:13:
40:75:79:2f:e5:cc:0d:0a:4a:36:e1:1d:c8:46:8f:b0:bb:8f:
eb:56:e4:dc:61:3f:ae:8e:02:38:32:ff:1f:24:5c:6e:ef:9f:
e8:ea:0d:4f:9f:f1:77:fc:a3:3a:e8:15:72:39:a4:8f:70:01:
1e:7a:ac:23:e3:88:55:dc:00:fd:64:d4:f1:e0:1b:fb:d6:aa:
ff:1c:c7:2b:3b:11:64:6d:f5:6a:5e:f2:e9:53:b3:b8:e6:e5:
11:97:90:18:94:9d:43:c4:84:c2:d8:d9:cf:9e:2d:ae:dd:d0:
d7:06:43:46:54:d7:65:de:d7:6f:8b:de:b3:1c:f1:a2:e2:c5:
29:e2:d0:f9:60:ab:76:80:22:0e:b4:a4:67:8f:70:34:e6:4a:
9c:1b:a2:b1:ab:d0:ea:a2:9c:71:35:65:01:87:9f:57:a8:14:
94:3b:3f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org