Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/sxyU5Xo3g0LN8NQ10HUL2RyR0l0.roa
File: sxyU5Xo3g0LN8NQ10HUL2RyR0l0.roa (raw, json)
Hash identifier: nis2T4fHxIO0H3K4MwQHgpqfpfCYOigkLD9oEaEoyx8=
Subject key identifier: B3:1C:94:E5:7A:37:83:42:CD:F0:D4:35:D0:75:0B:D9:1C:91:D2:5D
Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Certificate serial: 018A794FDF88E9EEF1952D580739ACB44F54
Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/sxyU5Xo3g0LN8NQ10HUL2RyR0l0.roa
Signing time: Sat 09 Sep 2023 09:39:52 +0000
ROA not before: Sat 09 Sep 2023 09:39:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57391
IP address blocks: 185.67.101.0/24 maxlen: 24
185.132.82.0/24 maxlen: 24
185.132.80.0/24 maxlen: 24
185.233.14.0/24 maxlen: 24
185.233.13.0/24 maxlen: 24
88.135.44.0/24 maxlen: 24
88.135.43.0/24 maxlen: 24
88.135.42.0/24 maxlen: 24
88.135.41.0/24 maxlen: 24
88.135.40.0/24 maxlen: 24
88.135.47.0/24 maxlen: 24
88.135.46.0/24 maxlen: 24
88.135.46.0/23 maxlen: 23
88.135.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:79:4f:df:88:e9:ee:f1:95:2d:58:07:39:ac:b4:4f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21
Validity
Not Before: Sep 9 09:39:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b31c94e57a378342cdf0d435d0750bd91c91d25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a5:72:e1:a8:7e:93:27:44:14:b2:d5:c1:3d:
71:aa:83:e7:45:48:61:3b:dd:af:a2:72:6d:f3:7f:
db:36:54:eb:c8:27:13:33:bd:e7:b7:1e:16:09:c1:
ac:85:d4:f4:e2:93:3d:5d:75:c0:f6:d4:4b:cd:0a:
13:aa:aa:bd:58:bc:d8:0e:0a:55:6d:4d:cd:85:9e:
27:91:a6:4b:fd:34:1e:d3:6a:5f:3b:77:e0:08:cf:
23:39:eb:7b:17:20:23:e9:ac:6c:7f:72:ff:20:73:
1d:8f:2e:77:6a:00:c4:86:db:2d:10:74:10:6d:a3:
1e:5d:c0:bc:67:e3:80:dc:76:88:84:e6:c4:61:a6:
12:47:7c:e9:a4:9c:eb:4f:ae:99:f7:1e:ac:c8:cf:
16:8e:22:04:49:9a:22:15:61:a9:32:4f:88:f3:bc:
ca:3e:e3:c5:5f:a5:e2:8d:21:ec:88:8d:cc:df:60:
89:fa:bd:93:1a:fd:d6:d0:9f:c1:e9:ec:bf:fa:67:
2b:4f:99:38:ba:6f:22:b9:2d:18:3c:9a:43:65:6d:
11:8f:45:c8:07:22:fd:16:e1:22:f2:37:bc:b6:dc:
51:f2:d2:1c:27:bd:2c:5a:a2:fb:9f:61:26:74:74:
b3:d9:ec:f8:ef:63:ea:81:3e:cc:53:12:3a:d9:91:
61:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1C:94:E5:7A:37:83:42:CD:F0:D4:35:D0:75:0B:D9:1C:91:D2:5D
X509v3 Authority Key Identifier:
keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/sxyU5Xo3g0LN8NQ10HUL2RyR0l0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.40.0/21
185.67.101.0/24
185.132.80.0/24
185.132.82.0/24
185.233.13.0-185.233.14.255
Signature Algorithm: sha256WithRSAEncryption
01:06:eb:a6:43:0d:04:e0:24:a5:79:6f:bd:37:a1:b0:37:ec:
4e:da:01:3b:3f:c4:5d:ba:ee:4b:5f:bd:36:0f:10:75:62:ee:
71:fb:80:7f:1a:c1:61:de:bd:ff:d1:90:d3:f5:33:94:74:2e:
5b:7a:31:8c:ae:20:ea:3f:71:21:80:92:6b:90:58:2d:95:49:
f0:7b:f5:4c:9f:8a:d7:c5:6c:bd:87:c4:22:cd:80:06:d5:ab:
42:99:68:44:ee:5a:59:1f:c6:58:93:8c:fd:c8:d7:00:9e:16:
0f:8f:29:61:8b:cd:aa:f8:00:e7:bd:99:f7:08:e5:c7:4c:1c:
48:14:ee:a5:35:f0:36:fa:7e:55:35:d6:25:e7:42:82:f6:3d:
71:86:07:01:1e:f0:d9:93:4d:f1:f0:81:43:92:6b:2a:4f:45:
b3:55:94:74:f8:84:88:0e:a2:15:42:de:47:2a:a4:c3:fe:8b:
ee:02:66:10:da:d8:a6:03:a3:51:ef:5e:9d:e1:99:0e:77:d9:
01:56:12:68:f3:ff:b3:0b:d8:c9:33:2e:a4:e9:13:3d:3d:9f:
0a:3b:2c:8d:9d:fe:f5:9b:9f:4a:df:9d:18:5d:d5:07:ad:a3:
3c:6c:49:7a:91:4f:74:15:0e:54:41:80:1d:f9:ff:c9:3c:8f:
bd:b5:f7:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:20 2024 by rpki-client on console-ams.rpki-client.org