Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/x5yTSTEritQWEHaRip-NXpdi-K8.roa
File: x5yTSTEritQWEHaRip-NXpdi-K8.roa (raw, json)
Hash identifier: jEElnq9g9MuLC7c4oiqm318T3xROR08XBRAaU/KRCZA=
Subject key identifier: C7:9C:93:49:31:2B:8A:D4:16:10:76:91:8A:9F:8D:5E:97:62:F8:AF
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187B260347D84FA2C570C7F1BF2EDD14DD7
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/x5yTSTEritQWEHaRip-NXpdi-K8.roa
Signing time: Mon 24 Apr 2023 08:27:41 +0000
ROA not before: Mon 24 Apr 2023 08:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
139.28.96.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0e:97c3:110::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:60:34:7d:84:fa:2c:57:0c:7f:1b:f2:ed:d1:4d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 24 08:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c79c9349312b8ad4161076918a9f8d5e9762f8af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:0a:e7:2d:ee:6b:ca:ea:0f:a9:09:db:2f:
b3:b0:6f:6c:a8:97:8d:ea:0f:99:ef:84:8d:11:b1:
f9:96:c8:ba:88:77:d2:02:26:18:9a:cc:d0:4f:60:
75:f9:39:ec:13:d9:d1:5c:64:97:68:06:da:85:79:
ce:84:5d:5d:be:94:68:1f:dc:b0:4a:f7:d3:97:cb:
5e:bb:db:2d:70:bd:c0:86:df:2d:19:91:a3:52:e8:
3d:61:1d:ee:8c:ab:4a:7d:07:ec:c2:23:42:ad:7d:
e5:8d:38:d4:fc:79:22:1b:66:2f:ae:0c:94:8b:89:
8c:02:f1:e7:8a:a9:e3:80:65:f9:07:c9:1a:32:20:
e0:ab:c6:21:11:eb:b3:92:41:f3:0d:1a:bc:2e:61:
7f:9d:64:2a:35:4b:6c:9f:2d:1a:4c:54:f3:f6:43:
6c:05:ca:c1:f4:40:5c:cc:ad:82:bd:6a:0f:c4:77:
24:ee:f3:94:bb:48:2b:a9:16:3e:31:5e:08:fe:3c:
48:1f:dc:c5:b2:b7:63:dd:6e:9e:fb:6c:70:82:55:
af:79:7f:ae:b1:8f:75:4b:1e:cc:66:32:2e:e8:b7:
af:c7:89:99:d5:9a:5e:ad:0c:fe:c9:da:09:fd:8b:
67:d0:3e:56:43:a9:67:26:25:1b:89:87:5f:ef:ab:
98:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9C:93:49:31:2B:8A:D4:16:10:76:91:8A:9F:8D:5E:97:62:F8:AF
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/x5yTSTEritQWEHaRip-NXpdi-K8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
185.232.117.0/24
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
Signature Algorithm: sha256WithRSAEncryption
0e:9c:db:d1:9e:84:96:61:02:ad:91:23:a2:78:51:f4:27:7c:
87:44:68:dc:37:3a:02:ec:13:64:db:b6:b0:f0:9e:f8:87:d1:
90:c2:70:51:59:18:34:4a:45:23:c0:01:01:76:6d:69:5b:1c:
9b:1d:a8:23:cd:bd:ab:a7:57:c8:41:50:0e:e6:59:48:05:ea:
59:94:d5:a9:31:83:d1:ec:f4:3c:21:92:a2:71:ae:d6:15:52:
bd:d9:9b:26:ba:f1:13:0c:40:c0:73:53:07:ae:7b:ac:ff:2a:
52:f2:fe:d1:74:15:44:61:31:ec:4f:89:d1:c8:da:84:f9:61:
c4:9a:83:e4:30:05:95:0f:bc:26:50:c3:5d:91:bf:d6:cd:8d:
cc:2b:50:12:b0:d9:53:85:22:d2:09:d3:0b:02:a1:b2:6f:39:
63:99:16:bf:39:69:44:62:32:d1:dc:21:a3:a5:e4:53:8d:a9:
21:13:2a:a8:3b:4b:7c:b5:a2:79:65:0b:3d:25:50:64:a2:18:
2d:47:23:13:6b:37:5b:c4:26:b6:08:90:e9:76:5c:a3:57:6d:
29:76:74:de:f1:3a:58:6f:7d:51:d0:f8:53:6a:5e:e9:11:1c:
b0:fa:a2:78:b8:16:c0:ec:c9:e7:c4:36:91:1b:28:03:a4:0d:
73:fd:6b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org