Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_dWDlU_BZPIX9foh2-KiOxL740g.roa
File: _dWDlU_BZPIX9foh2-KiOxL740g.roa (raw, json)
Hash identifier: wfeJAUuRxz+p6STiBPbs8NmzDF9AbrgwGINZHh/FJOo=
Subject key identifier: FD:D5:83:95:4F:C1:64:F2:17:F5:FA:21:DB:E2:A2:3B:12:FB:E3:48
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187961DB5E6C35039F793CD3E706F2B5EB4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_dWDlU_BZPIX9foh2-KiOxL740g.roa
Signing time: Tue 18 Apr 2023 20:45:41 +0000
ROA not before: Tue 18 Apr 2023 20:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a0e:97c0:790::/44 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:96:1d:b5:e6:c3:50:39:f7:93:cd:3e:70:6f:2b:5e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 18 20:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdd583954fc164f217f5fa21dbe2a23b12fbe348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:e8:b3:d3:09:42:46:ac:50:56:cd:6c:43:
6d:89:c1:c0:f8:10:b5:4b:15:ae:31:2a:3f:85:d5:
e8:c2:55:32:97:34:cf:ab:c1:2b:16:32:e8:c0:cc:
84:ba:0d:d6:a6:24:37:b4:c5:7e:11:b5:ee:d3:9c:
0e:1f:e7:24:93:e6:d6:75:66:59:71:93:dc:ec:27:
08:99:2f:df:41:a5:cd:8a:be:41:a2:73:10:c4:4e:
c7:0a:94:50:48:31:e2:c7:1f:cf:33:f2:3c:87:68:
e6:97:1d:7c:7b:54:32:34:cc:20:16:a6:33:a9:01:
22:87:28:ca:e1:63:ea:c9:81:82:c8:3e:0e:b3:cf:
a1:ee:1e:9e:3f:21:ea:86:58:15:05:6c:8a:46:ee:
44:00:6f:2a:c4:ed:66:2e:98:e3:a0:41:8e:0f:6e:
ad:61:f0:40:44:ee:33:a8:bc:be:a4:5b:06:63:bf:
2e:57:e6:60:c7:a7:39:28:d3:55:09:aa:dd:50:24:
5d:fa:3b:c1:52:4c:bb:58:e5:69:96:5c:33:4c:f4:
cd:b2:42:58:5f:65:25:6f:d8:8f:9c:4c:16:52:50:
33:a2:8c:4b:d2:b6:bf:a9:cc:3c:88:36:bb:6e:22:
21:60:f7:2f:8b:7e:a9:a8:35:b5:a8:09:1e:44:24:
15:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D5:83:95:4F:C1:64:F2:17:F5:FA:21:DB:E2:A2:3B:12:FB:E3:48
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/_dWDlU_BZPIX9foh2-KiOxL740g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c0:790::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
7e:7a:c6:ea:81:b8:66:26:37:06:2e:42:d0:f4:a1:de:b8:4d:
5b:e5:0b:27:c0:0d:31:8e:42:e0:a9:63:08:53:93:29:1b:6f:
ee:e1:fc:8a:60:f1:19:fc:9d:02:1c:84:9a:03:50:96:8a:59:
87:f5:72:f0:62:9f:be:7b:63:93:de:78:5a:38:bb:91:67:bd:
54:b8:cb:3d:8f:88:56:30:49:78:50:95:2e:f6:cb:e4:d8:b1:
48:29:61:b9:cd:ec:7a:10:2f:cb:c4:f5:96:60:4c:14:56:17:
7d:fa:9b:66:a1:cf:0e:ef:7f:5a:e8:2d:4c:ef:f7:0a:b9:dc:
7e:cc:4c:53:63:bd:40:58:54:f6:81:15:ce:72:95:8d:65:fb:
41:2d:93:bd:46:04:54:1b:1d:23:b4:54:67:9c:ac:f7:88:b5:
4f:39:72:64:25:f9:36:47:e4:25:73:c7:e4:35:eb:37:4e:ac:
b4:40:d3:b4:02:02:13:96:c3:95:92:65:a1:e9:0e:1f:cd:5d:
1d:0b:35:a2:3c:fa:c1:d0:51:e0:c0:34:62:ff:52:77:90:29:
4a:57:90:3a:cc:ae:6c:ba:f9:e1:b4:9f:18:33:93:10:87:cb:
0e:84:45:73:58:6c:32:e7:f7:00:de:cf:5e:58:af:69:65:c6:
0c:cc:6e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:01 2023 by rpki-client on console-ams.rpki-client.org