Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/yXezGQD3Zqowew5-49H03my4Ds8.roa
File: yXezGQD3Zqowew5-49H03my4Ds8.roa (raw, json)
Hash identifier: h1rlWE6iCFDzTpKD66kiBaVi1vmWvfoKNJHv9oCeT6o=
Subject key identifier: C9:77:B3:19:00:F7:66:AA:30:7B:0E:7E:E3:D1:F4:DE:6C:B8:0E:CF
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018954E970E4863C96FD75EA4206FF1523F0
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/yXezGQD3Zqowew5-49H03my4Ds8.roa
Signing time: Fri 14 Jul 2023 14:58:52 +0000
ROA not before: Fri 14 Jul 2023 14:58:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.83.0/24 maxlen: 24
45.80.82.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:e9:70:e4:86:3c:96:fd:75:ea:42:06:ff:15:23:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 14 14:58:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c977b31900f766aa307b0e7ee3d1f4de6cb80ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bd:26:0c:30:04:c7:68:f4:c0:1b:9d:9e:f2:
b7:11:8a:e8:dc:62:66:80:3d:e0:b6:79:f8:43:2f:
a4:83:0a:6a:fa:57:ae:cb:33:7a:92:6f:a6:44:50:
b0:72:03:58:d3:68:4a:13:3c:a9:f8:12:5a:98:f9:
cc:c5:0d:c7:8f:b7:6a:db:5c:59:e3:20:4b:32:dd:
08:5e:33:d7:e6:84:2c:ae:c3:63:82:7e:d3:11:ac:
5b:18:49:23:aa:40:2c:d0:a4:58:e8:19:61:90:12:
47:3e:fe:cb:ed:05:58:84:1f:3a:d4:dd:6d:8c:03:
5c:df:72:24:ef:77:ae:f7:f4:1d:8a:94:4c:ef:14:
6c:7a:ca:d8:cb:a6:bd:30:9a:ea:0c:4a:65:2b:36:
02:3c:56:db:d8:ee:2f:2d:d6:e7:01:d9:83:16:f2:
e6:ed:b7:76:73:44:73:a9:ea:1c:fd:e5:14:bb:5c:
b1:06:93:b8:7d:18:0b:9f:50:19:c0:21:97:c1:7c:
c8:00:00:71:85:55:7a:a4:a6:f4:90:24:cd:bb:96:
ae:1a:22:bb:7a:e0:a0:c9:1b:56:d1:89:6c:d4:c1:
62:38:89:90:8b:1d:69:3b:a8:ed:00:8e:54:43:54:
74:6b:4f:76:8a:3f:28:35:1b:ac:0c:af:32:4c:20:
4d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:77:B3:19:00:F7:66:AA:30:7B:0E:7E:E3:D1:F4:DE:6C:B8:0E:CF
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/yXezGQD3Zqowew5-49H03my4Ds8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.82.0/23
80.66.112.0-80.66.121.255
80.66.123.0-80.66.125.255
89.42.70.0/24
89.44.150.0/23
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
23:1e:6c:e6:a9:69:62:d8:f0:7b:4c:98:77:7e:eb:3f:d9:52:
2f:95:6b:70:22:c5:c7:54:30:0d:28:cb:af:01:14:90:50:65:
6e:c8:3a:e2:c0:91:e9:01:74:90:4e:0f:8d:12:1a:19:6e:32:
d1:24:b4:0f:9b:41:86:26:29:5d:aa:ff:c7:8a:77:f1:2a:2a:
ce:e7:43:10:61:00:1d:1e:ad:fc:b5:29:44:70:8f:01:a7:98:
ac:41:cd:5f:66:88:4a:04:50:17:bd:fd:15:b6:bb:8d:c0:89:
c6:21:f9:04:a8:fd:89:68:5c:63:8a:b3:c6:b8:32:40:c4:80:
d0:9e:36:2b:1d:d9:24:85:70:80:83:36:44:3e:d7:3b:d0:67:
1e:39:f2:ad:7a:6a:ae:b1:9d:ad:eb:ed:df:7e:6f:fc:1f:a5:
37:54:03:95:f3:5a:9a:e4:37:a4:9b:fd:8c:ee:5e:57:fc:c5:
ff:1c:a2:22:e3:e0:7f:71:ee:d3:c2:c4:56:f2:26:1b:49:31:
e8:da:00:a3:2e:69:80:33:8d:a2:ae:5e:00:b5:12:0a:23:63:
2c:d6:94:e3:c6:f1:a4:e3:5b:8d:98:22:9c:6b:af:18:c8:c7:
f5:ea:2f:1c:65:be:68:6d:e7:c2:a9:a6:24:ba:4b:62:3f:87:
f9:25:23:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 28 09:27:41 2023 by rpki-client on console-ams.rpki-client.org