Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qE5YVM1fD02boDRGQgJvO7gUXa0.roa
File: qE5YVM1fD02boDRGQgJvO7gUXa0.roa (raw, json)
Hash identifier: gv7ic09IjCzV9LYXzm05t6Ysd0B3aCEQJh+u+n/A9Y8=
Subject key identifier: A8:4E:58:54:CD:5F:0F:4D:9B:A0:34:46:42:02:6F:3B:B8:14:5D:AD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185FA9900096FCBCC1F9B873BDF993515BE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qE5YVM1fD02boDRGQgJvO7gUXa0.roa
Signing time: Sat 28 Jan 2023 22:56:49 +0000
ROA not before: Sat 28 Jan 2023 22:56:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a0e:b107:1165::/48 maxlen: 48
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:6f0::/44 maxlen: 44
2a0e:b107:9f2::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a10:cc41:800::/37 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fa:99:00:09:6f:cb:cc:1f:9b:87:3b:df:99:35:15:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 28 22:56:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a84e5854cd5f0f4d9ba0344642026f3bb8145dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ea:a4:a6:6f:e5:f9:3b:50:87:e4:a8:14:69:
3a:1c:67:e0:d7:fc:d6:62:2e:ef:6f:45:0f:68:90:
59:cf:d4:08:3f:6c:df:be:e7:7a:ed:67:38:99:a1:
91:6b:41:27:34:c8:db:92:d8:ec:a3:f1:45:23:20:
7f:6e:a8:30:11:b8:2f:0b:3b:26:67:74:8d:d8:8a:
4d:67:95:de:8a:e6:28:ec:97:63:d6:a1:cf:b9:44:
ff:4d:04:87:57:b0:a7:4c:c6:fc:35:99:26:c2:2e:
31:4e:c9:28:3f:23:f3:f2:c8:51:6d:42:96:73:22:
a1:94:f4:82:90:b6:df:13:ec:19:3f:5c:3c:9f:f0:
00:1c:33:e5:38:c6:68:34:63:28:30:55:04:de:3e:
24:d1:22:24:e4:02:d8:0c:67:e3:db:c1:b3:38:d9:
1e:94:da:31:fc:19:f0:34:8a:1f:65:4a:29:ee:81:
06:f1:ed:46:53:27:87:cc:b1:18:19:ea:64:eb:0e:
b9:45:f3:85:b8:04:10:8a:f1:f6:79:c0:d6:f7:75:
bc:97:6e:9c:2c:f3:3f:80:9c:a6:cd:ca:0b:a2:2a:
65:34:ff:65:28:fb:9e:32:44:54:e8:99:8e:39:44:
c7:92:b9:1e:8b:c5:0a:a7:f3:af:5c:9e:06:74:9c:
56:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:4E:58:54:CD:5F:0F:4D:9B:A0:34:46:42:02:6F:3B:B8:14:5D:AD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qE5YVM1fD02boDRGQgJvO7gUXa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0e:b107:6f0::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc41:800::/37
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
04:39:a7:a1:d0:63:33:56:1b:41:bb:0b:7c:97:d4:c4:eb:a8:
9d:76:4d:ad:05:19:5b:e3:93:17:a4:09:13:9e:fd:4b:a1:80:
e8:c8:06:b7:1d:64:f9:d8:5b:6c:d8:96:77:27:73:c3:30:82:
7a:11:78:44:e1:19:20:b5:23:5c:f5:c9:8a:f3:4d:2c:6a:9a:
1e:67:41:c2:f2:07:10:81:ec:c2:d7:80:32:9f:09:75:a5:af:
d8:7f:03:d1:d0:99:68:52:80:27:1a:f5:e0:28:9c:c1:33:c0:
10:19:a6:f4:ae:0c:af:5f:18:29:66:b3:58:bd:cb:93:a1:2a:
5d:0d:a1:98:33:ba:1e:88:61:25:17:ef:ce:e0:5f:5b:45:72:
a5:c8:17:39:83:99:ae:a7:d0:60:ef:d0:81:1c:ec:62:80:f9:
30:19:0a:ca:d7:2e:a8:83:5a:8d:b7:d6:ef:fc:8e:ce:f3:36:
f4:3f:98:48:52:71:b0:a6:7e:17:e6:23:24:01:37:e9:e1:6b:
b9:ca:5a:89:15:88:d8:34:fb:a0:49:48:42:e3:75:ba:ce:35:
54:c6:ae:fd:8b:1f:51:af:b2:62:be:fe:e4:f2:89:82:a8:ca:
bc:80:a5:08:a5:64:ff:08:40:ce:cd:f4:ec:29:f2:82:04:f5:
24:1e:13:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org