Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/uh9eqfwKjH1e_QMJxFY_QHtw8-s.roa
File: uh9eqfwKjH1e_QMJxFY_QHtw8-s.roa (raw, json)
Hash identifier: j1zkTEYOEA4z229pEoOdi1qNglxSxXjgvmbbapFq8oE=
Subject key identifier: BA:1F:5E:A9:FC:0A:8C:7D:5E:FD:03:09:C4:56:3F:40:7B:70:F3:EB
Certificate issuer: /CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Certificate serial: 01856D4AA539889E661D8D71680E7B955C8B
Authority key identifier: C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/uh9eqfwKjH1e_QMJxFY_QHtw8-s.roa
Signing time: Sun 01 Jan 2023 12:24:46 +0000
ROA not before: Sun 01 Jan 2023 12:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202632
IP address blocks: 185.12.168.0/22 maxlen: 22
31.47.0.0/19 maxlen: 19
31.47.4.0/23 maxlen: 23
31.47.0.0/24 maxlen: 24
31.47.9.0/24 maxlen: 24
31.47.8.0/24 maxlen: 24
31.47.10.0/24 maxlen: 24
31.47.16.0/20 maxlen: 20
31.47.14.0/23 maxlen: 23
185.173.28.0/22 maxlen: 22
213.91.64.0/21 maxlen: 21
213.91.64.0/22 maxlen: 22
213.91.68.0/22 maxlen: 22
185.210.182.0/24 maxlen: 24
185.210.180.0/22 maxlen: 22
185.210.181.0/24 maxlen: 24
217.71.48.0/24 maxlen: 24
217.71.56.0/21 maxlen: 21
213.91.112.0/20 maxlen: 20
213.91.112.0/21 maxlen: 21
213.91.124.0/24 maxlen: 24
213.91.125.0/24 maxlen: 24
213.91.127.0/24 maxlen: 24
213.91.126.0/24 maxlen: 24
2a03:9240::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:a5:39:88:9e:66:1d:8d:71:68:0e:7b:95:5c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Validity
Not Before: Jan 1 12:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba1f5ea9fc0a8c7d5efd0309c4563f407b70f3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:74:74:db:a7:c9:5b:41:3f:ba:8d:e2:e7:98:
ce:6a:9b:84:9c:f1:c1:22:1a:43:06:39:bb:d9:1d:
9d:1e:24:75:bf:b5:2b:89:af:6f:bb:20:3e:64:fc:
af:ae:2d:82:bf:a3:13:9b:42:df:f0:aa:f8:64:0b:
f7:b4:44:46:30:a4:c2:b5:e8:82:45:25:d3:db:12:
7e:94:35:f1:07:d9:0e:af:56:1f:04:c1:66:ec:75:
e5:74:b0:e3:9a:90:75:87:cc:c9:a5:58:99:be:13:
da:39:aa:4e:d6:b3:e1:43:02:04:b2:8e:90:f8:cb:
18:93:d0:13:75:0c:6c:83:8d:3a:e9:2f:99:43:98:
8d:0e:c9:86:f1:3c:ce:7d:e7:82:2d:67:3c:af:dd:
70:6a:2d:40:40:ec:5c:2f:40:2b:4a:98:5e:09:81:
79:2b:3b:3e:6b:e5:d8:9d:1c:3b:61:26:08:da:52:
aa:60:7e:82:15:fc:18:f9:e5:d5:2f:fa:41:6d:86:
fd:d0:88:83:16:49:17:c6:bf:f3:6a:6a:dd:c3:24:
45:08:29:e0:15:e9:b9:ee:76:e0:9e:3f:78:17:f1:
17:01:be:f9:c6:e8:59:0b:06:31:5b:44:f9:2a:9b:
c3:ce:9b:fb:a1:73:78:d6:eb:5a:45:34:d1:20:26:
ed:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1F:5E:A9:FC:0A:8C:7D:5E:FD:03:09:C4:56:3F:40:7B:70:F3:EB
X509v3 Authority Key Identifier:
keyid:C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/uh9eqfwKjH1e_QMJxFY_QHtw8-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.0.0/19
185.12.168.0/22
185.173.28.0/22
185.210.180.0/22
213.91.64.0/21
213.91.112.0/20
217.71.48.0/24
217.71.56.0/21
IPv6:
2a03:9240::/32
Signature Algorithm: sha256WithRSAEncryption
30:01:30:8e:50:df:8b:4a:af:ed:36:df:6d:bf:44:0e:4b:58:
d6:04:8b:d6:55:28:f0:c6:1a:e2:16:59:15:a2:84:88:1b:b1:
d5:49:3e:97:44:e3:51:2f:71:3f:43:04:d4:5f:04:73:eb:55:
58:a1:04:fe:63:41:b8:90:e3:db:d3:20:17:e9:ac:c2:8b:8c:
31:0b:1d:1c:e6:de:85:7c:fe:bf:9e:49:f9:be:46:d3:bb:a1:
b5:23:ec:7d:45:64:0a:ee:b2:7e:2b:a7:d1:13:e8:62:30:b8:
19:11:4d:6e:a9:15:e6:fb:62:9c:24:38:4b:b9:e2:35:a0:dd:
84:9e:46:6b:48:31:14:26:27:dc:ab:73:cd:31:0f:9f:7e:3a:
5a:d4:99:88:aa:8b:da:f8:3e:60:04:82:30:f8:8b:a4:8b:27:
d4:24:0e:41:66:b1:e6:9f:18:7c:2d:be:b7:d1:50:95:5f:06:
b5:df:c1:4c:7c:82:e1:4f:de:1f:5f:2b:49:7e:5c:0b:2b:df:
dc:0e:44:07:97:65:44:14:72:16:4e:79:a7:3e:92:b1:9b:17:
30:42:7b:3d:16:b6:ca:f3:25:f6:35:5a:36:69:ac:de:70:4f:
30:d3:16:20:50:7a:f0:58:0b:ce:c7:c5:53:5e:50:30:77:53:
3e:bd:ab:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:46 2024 by rpki-client on console-fra.rpki-client.org