Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4JZpajHjqEGvqZpIHn7sXQeGKVc.roa
File: 4JZpajHjqEGvqZpIHn7sXQeGKVc.roa (raw, json)
Hash identifier: dfjxIrJSWQ8osu63Zhk9fn8AIaRHhxPV3NjPv80815w=
Subject key identifier: E0:96:69:6A:31:E3:A8:41:AF:A9:9A:48:1E:7E:EC:5D:07:86:29:57
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018649558AFC423B69997632629A53B3E413
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4JZpajHjqEGvqZpIHn7sXQeGKVc.roa
Signing time: Mon 13 Feb 2023 05:53:08 +0000
ROA not before: Mon 13 Feb 2023 05:53:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25003
IP address blocks: 94.188.130.0/23 maxlen: 23
94.188.128.0/17 maxlen: 17
94.188.128.0/22 maxlen: 22
94.188.138.0/23 maxlen: 23
94.188.133.0/24 maxlen: 24
94.188.140.0/24 maxlen: 24
94.188.152.0/22 maxlen: 22
94.188.158.0/24 maxlen: 24
94.188.155.0/24 maxlen: 24
91.143.226.0/23 maxlen: 23
91.143.224.0/23 maxlen: 23
91.143.224.0/20 maxlen: 20
91.143.224.0/22 maxlen: 22
91.143.232.0/23 maxlen: 23
91.143.232.0/22 maxlen: 22
91.143.228.0/24 maxlen: 24
92.61.224.0/20 maxlen: 20
92.61.234.0/23 maxlen: 23
94.188.221.0/24 maxlen: 24
80.74.96.0/22 maxlen: 22
80.74.96.0/23 maxlen: 23
80.74.96.0/19 maxlen: 19
80.74.104.0/22 maxlen: 22
80.74.100.0/22 maxlen: 22
80.74.100.0/23 maxlen: 23
80.74.112.0/22 maxlen: 22
80.74.110.0/23 maxlen: 23
94.188.246.0/23 maxlen: 23
94.188.244.0/23 maxlen: 23
94.188.242.0/24 maxlen: 24
80.74.108.0/23 maxlen: 23
80.74.108.0/22 maxlen: 22
80.74.106.0/23 maxlen: 23
94.188.252.0/23 maxlen: 23
80.74.118.0/24 maxlen: 24
80.74.116.0/22 maxlen: 22
80.74.116.0/23 maxlen: 23
94.188.248.0/23 maxlen: 23
94.188.248.0/22 maxlen: 22
80.74.124.0/22 maxlen: 22
94.188.254.0/23 maxlen: 23
80.74.120.0/22 maxlen: 22
94.188.162.0/24 maxlen: 24
94.188.161.0/24 maxlen: 24
94.188.165.0/24 maxlen: 24
94.188.166.0/24 maxlen: 24
94.188.163.0/24 maxlen: 24
94.188.178.0/23 maxlen: 23
94.188.178.0/24 maxlen: 24
94.188.176.0/23 maxlen: 23
94.188.175.0/24 maxlen: 24
94.188.173.0/24 maxlen: 24
94.188.192.0/24 maxlen: 24
94.188.199.0/24 maxlen: 24
94.188.197.0/24 maxlen: 24
2a02:23b8::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:49:55:8a:fc:42:3b:69:99:76:32:62:9a:53:b3:e4:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Feb 13 05:53:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e096696a31e3a841afa99a481e7eec5d07862957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:df:b2:1c:7d:f7:1f:dd:31:f9:92:d5:4e:e1:
dc:74:e1:07:67:02:c3:eb:52:b9:52:84:df:f2:82:
28:c6:88:21:0a:68:76:7a:fb:bf:c4:8b:94:53:82:
e7:2b:c8:08:18:0a:17:27:d4:aa:20:72:7b:01:87:
ee:e2:a8:ec:01:4f:9f:cb:48:a8:f9:1f:de:78:d0:
e4:68:63:64:b8:dd:5d:bb:4f:89:ad:62:51:32:6c:
2a:f5:e8:9a:4f:84:97:57:a6:97:fb:1d:1f:ea:96:
d2:e3:11:18:af:e1:69:84:11:e3:a6:b4:41:61:83:
6d:7b:3b:81:b4:77:44:42:44:d1:d0:83:ba:63:94:
a4:04:ac:87:88:63:09:3c:2f:ae:29:52:7d:e9:af:
59:e7:b8:1d:c0:a4:85:3b:83:c6:32:25:d6:16:7e:
cd:69:c6:93:1e:a6:6a:7e:c0:7a:46:cd:47:fe:1f:
87:b6:48:ff:e8:f0:d7:f2:4b:18:28:dd:af:f7:93:
35:d5:71:55:ca:f6:ca:52:63:82:0f:f6:44:f5:ee:
b1:7f:d3:5a:8c:7d:59:40:72:02:29:38:7f:fa:73:
86:4f:fd:8e:68:56:2f:e1:4a:cc:c9:4e:61:cf:88:
2b:ba:56:8f:cb:44:07:f8:1b:a9:b2:58:75:3c:12:
89:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:96:69:6A:31:E3:A8:41:AF:A9:9A:48:1E:7E:EC:5D:07:86:29:57
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4JZpajHjqEGvqZpIHn7sXQeGKVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.96.0/19
91.143.224.0/20
92.61.224.0/20
94.188.128.0/17
IPv6:
2a02:23b8::/32
Signature Algorithm: sha256WithRSAEncryption
46:de:61:c1:55:12:c3:0c:b2:cf:03:7d:53:f3:f9:6f:5e:56:
39:e3:11:c0:74:56:51:dd:77:3e:8c:44:41:bd:06:25:88:7c:
6d:f0:4e:92:0c:08:7f:53:b8:42:c6:9e:69:83:97:2d:4a:1f:
b6:1c:98:63:77:f2:62:45:72:cc:90:f3:5f:2a:7e:dd:cc:66:
55:da:c4:88:f3:4e:25:2e:2c:a1:ef:48:07:05:da:32:5a:77:
68:a0:e3:b0:6d:14:4a:73:65:9a:4e:01:cf:fe:9f:d5:c4:0e:
36:5f:9e:5a:61:17:95:47:4f:d2:98:10:f3:c8:80:6c:2f:7e:
aa:18:f0:62:42:34:cd:6c:60:e8:db:25:38:5b:ed:d0:da:ad:
b1:8e:9e:3f:6b:06:5c:c7:0e:b5:ad:d7:47:00:c1:ec:48:73:
7f:20:ee:48:54:cd:a7:40:34:24:c2:9d:12:15:85:fc:aa:3c:
e3:ac:48:15:1d:d6:87:76:76:9e:01:13:63:a0:d3:28:6a:7b:
07:9e:09:4e:1a:5f:9f:c2:1a:ae:53:61:95:ba:1a:5c:1d:22:
68:6a:27:bf:6b:3f:1b:c1:85:e9:23:62:d1:46:d0:7f:f6:1c:
e8:02:12:5a:1f:d1:c2:d1:5a:2e:96:ff:38:3d:84:dd:f4:9a:
07:81:cf:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 29 11:15:26 2023 by rpki-client on console-fra.rpki-client.org