Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/OYiBJcktAehvcL8CE76gC7IuynE.roa
File: OYiBJcktAehvcL8CE76gC7IuynE.roa (raw, json)
Hash identifier: FWoq2KC40t3s7nUVuAxLVLoo2AIdoOPB3jQTE03JfVY=
Subject key identifier: 39:88:81:25:C9:2D:01:E8:6F:70:BF:02:13:BE:A0:0B:B2:2E:CA:71
Certificate issuer: /CN=ede0294d1305bebaf6894642bfd92fd439825102
Certificate serial: 01856E38BFA6AC30B835EEA02406E59AD23A
Authority key identifier: ED:E0:29:4D:13:05:BE:BA:F6:89:46:42:BF:D9:2F:D4:39:82:51:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7eApTRMFvrr2iUZCv9kv1DmCUQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/OYiBJcktAehvcL8CE76gC7IuynE.roa
Signing time: Sun 01 Jan 2023 16:44:50 +0000
ROA not before: Sun 01 Jan 2023 16:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48953
IP address blocks: 185.24.125.0/24 maxlen: 24
185.24.124.0/24 maxlen: 24
185.24.126.0/24 maxlen: 24
185.24.127.0/24 maxlen: 24
46.252.106.0/24 maxlen: 24
46.252.107.0/24 maxlen: 24
46.252.110.0/24 maxlen: 24
46.252.108.0/24 maxlen: 24
46.252.109.0/24 maxlen: 24
46.252.111.0/24 maxlen: 24
185.205.94.0/24 maxlen: 24
185.205.92.0/22 maxlen: 24
46.252.96.0/24 maxlen: 24
46.252.97.0/24 maxlen: 24
46.252.98.0/24 maxlen: 24
46.252.103.0/24 maxlen: 24
46.252.104.0/24 maxlen: 24
46.252.101.0/24 maxlen: 24
46.252.102.0/24 maxlen: 24
46.252.105.0/24 maxlen: 24
46.252.99.0/24 maxlen: 24
46.252.100.0/24 maxlen: 24
46.30.176.0/24 maxlen: 24
46.30.178.0/24 maxlen: 24
46.30.179.0/24 maxlen: 24
46.30.177.0/24 maxlen: 24
46.30.182.0/24 maxlen: 24
46.30.183.0/24 maxlen: 24
46.30.180.0/24 maxlen: 24
46.30.181.0/24 maxlen: 24
2a00:66e0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:bf:a6:ac:30:b8:35:ee:a0:24:06:e5:9a:d2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede0294d1305bebaf6894642bfd92fd439825102
Validity
Not Before: Jan 1 16:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39888125c92d01e86f70bf0213bea00bb22eca71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:00:f1:22:c2:5e:e6:45:41:a7:65:ea:ff:2a:
9a:fb:df:9a:7e:d2:d0:69:29:de:3c:f0:ff:29:b4:
84:9a:23:34:46:d6:15:ab:fc:24:35:66:93:c8:db:
b4:d4:71:ac:c4:0a:c3:ef:74:7a:64:e8:b3:e0:55:
82:1a:58:ed:7d:0d:a9:b3:6d:5c:7a:3f:44:b0:b1:
38:7b:03:62:69:5f:cd:51:1e:4b:91:9e:66:db:eb:
74:72:32:c1:28:b1:ae:c9:ab:3f:9c:b8:ec:02:8c:
60:c6:af:7f:72:8c:e5:3e:ce:04:85:19:95:d1:4b:
c8:2f:c0:97:65:ee:69:a0:43:4b:fa:70:0b:cb:d5:
e0:87:8f:23:33:98:d8:5f:d1:e6:d9:e9:f5:70:73:
91:c8:92:9d:15:ac:23:17:99:4c:f3:f1:ce:90:d9:
51:6e:73:8c:22:2d:0a:ce:04:99:34:8e:c1:4a:37:
84:25:be:20:35:8e:37:25:00:b1:b4:10:34:f7:cf:
92:ee:6a:f3:65:69:ab:5d:d7:e3:86:88:67:df:2f:
ad:f2:eb:c3:f9:1a:c4:83:ba:5b:9d:a0:c4:ff:58:
e4:9f:b1:e8:87:94:d5:1c:a3:95:24:de:2d:68:ba:
0e:c7:59:9a:67:4d:33:3b:b7:b2:05:03:66:64:d7:
73:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:88:81:25:C9:2D:01:E8:6F:70:BF:02:13:BE:A0:0B:B2:2E:CA:71
X509v3 Authority Key Identifier:
keyid:ED:E0:29:4D:13:05:BE:BA:F6:89:46:42:BF:D9:2F:D4:39:82:51:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7eApTRMFvrr2iUZCv9kv1DmCUQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/OYiBJcktAehvcL8CE76gC7IuynE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/6616ac-87cd-4edf-b107-046a3a9aacb9/1/7eApTRMFvrr2iUZCv9kv1DmCUQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.176.0/21
46.252.96.0/20
185.24.124.0/22
185.205.92.0/22
IPv6:
2a00:66e0::/32
Signature Algorithm: sha256WithRSAEncryption
48:81:df:ce:b5:ad:bf:82:7a:aa:ed:f8:ca:55:8d:b5:f7:18:
4b:39:36:c3:54:b7:d4:47:79:e6:65:01:a5:f8:6b:21:d5:ac:
df:27:4c:33:c2:21:40:7b:3b:d2:a1:a1:1f:bd:80:95:32:0e:
7b:35:ad:5b:bf:57:f4:b5:07:2f:6d:56:03:97:ce:9c:7c:32:
19:3a:cf:4d:96:6a:2a:b8:82:b4:e1:83:da:ad:81:46:f7:7e:
0f:d3:22:fd:3a:2b:ca:f8:3a:af:77:44:44:3b:5b:69:73:ea:
b6:79:79:0b:66:fb:8c:6e:84:78:a7:f9:61:ac:c6:92:42:3c:
7f:a0:b4:62:23:15:ef:3d:e9:8d:8a:37:c1:e1:57:0d:e4:c1:
41:79:cb:cd:24:e9:25:13:f9:98:7e:c7:51:aa:9c:31:41:7c:
1b:dc:66:99:16:bb:b9:53:82:c1:b0:2e:51:a2:49:0a:7d:d0:
38:00:36:4f:73:98:60:95:59:4b:e5:5f:0c:31:55:9d:ae:5a:
12:71:57:c6:1d:bf:7c:ff:be:79:a2:80:7e:43:c1:65:b2:0f:
d0:11:21:a5:b1:cf:0c:87:47:0d:51:9b:1c:c9:f6:85:f0:23:
c6:05:07:f0:87:1c:b1:09:cb:31:f0:1c:7f:9a:ca:bc:e4:1c:
8e:a7:24:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:37 2024 by rpki-client on console-ams.rpki-client.org