Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/AZgASc0AlM7tPYdF8cf8IcOqPgs.roa
File: AZgASc0AlM7tPYdF8cf8IcOqPgs.roa (raw, json)
Hash identifier: kMbZwcW9WtjlP3LkfRlEv0AlCjcyNfz4VsUX5kjeVJY=
Subject key identifier: 01:98:00:49:CD:00:94:CE:ED:3D:87:45:F1:C7:FC:21:C3:AA:3E:0B
Certificate issuer: /CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Certificate serial: 0185722803E9A5AC88E5090CC9EDD81C4EA2
Authority key identifier: DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/AZgASc0AlM7tPYdF8cf8IcOqPgs.roa
Signing time: Mon 02 Jan 2023 11:05:03 +0000
ROA not before: Mon 02 Jan 2023 11:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200773
IP address blocks: 185.71.201.0/24 maxlen: 24
185.71.200.0/24 maxlen: 24
185.71.200.0/22 maxlen: 24
185.71.203.0/24 maxlen: 24
185.71.202.0/24 maxlen: 24
194.38.44.0/24 maxlen: 24
194.38.45.0/24 maxlen: 24
194.38.47.0/24 maxlen: 24
194.38.46.0/24 maxlen: 24
185.242.97.0/24 maxlen: 24
185.242.96.0/24 maxlen: 24
185.242.98.0/24 maxlen: 24
185.242.99.0/24 maxlen: 24
89.38.176.0/24 maxlen: 24
188.247.136.0/21 maxlen: 24
89.38.177.0/24 maxlen: 24
188.247.136.0/24 maxlen: 24
188.247.138.0/24 maxlen: 24
89.38.179.0/24 maxlen: 24
188.247.137.0/24 maxlen: 24
89.38.178.0/24 maxlen: 24
188.247.139.0/24 maxlen: 24
188.247.145.0/24 maxlen: 24
89.38.183.0/24 maxlen: 24
188.247.143.0/24 maxlen: 24
188.247.144.0/24 maxlen: 24
188.247.140.0/24 maxlen: 24
89.38.180.0/24 maxlen: 24
89.38.182.0/24 maxlen: 24
188.247.142.0/24 maxlen: 24
188.247.141.0/24 maxlen: 24
89.38.181.0/24 maxlen: 24
188.247.150.0/24 maxlen: 24
188.247.152.0/24 maxlen: 24
188.247.151.0/24 maxlen: 24
188.247.147.0/24 maxlen: 24
188.247.146.0/24 maxlen: 24
188.247.149.0/24 maxlen: 24
188.247.148.0/24 maxlen: 24
188.247.157.0/24 maxlen: 24
188.247.159.0/24 maxlen: 24
188.247.158.0/24 maxlen: 24
188.247.154.0/24 maxlen: 24
188.247.153.0/24 maxlen: 24
188.247.156.0/24 maxlen: 24
188.247.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:03:e9:a5:ac:88:e5:09:0c:c9:ed:d8:1c:4e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Validity
Not Before: Jan 2 11:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01980049cd0094ceed3d8745f1c7fc21c3aa3e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a5:c4:16:c6:e5:3a:d2:44:3c:6a:ab:5f:97:
a8:2f:3b:fe:48:4f:9a:b7:2c:95:e2:69:02:ce:c5:
52:ac:bd:20:cb:78:70:e5:ca:b3:8d:6a:f3:63:db:
d2:d8:34:40:2a:27:72:82:45:d3:b3:75:70:51:ce:
d2:b7:e3:76:b7:f3:d3:b5:fb:10:f2:87:6b:6d:34:
b5:da:a7:bd:b9:49:a6:53:86:33:33:ba:cc:c4:bf:
02:16:dd:ae:d2:c7:b6:d2:37:d4:02:26:cd:bb:59:
59:f5:cd:a8:8c:26:8f:0b:23:c8:6a:f6:0a:2a:55:
99:9d:a4:ed:17:d0:5a:0d:3f:8c:8f:73:50:5f:ea:
de:2a:65:6c:10:b2:d0:2b:36:20:08:6f:07:dc:c2:
6c:b2:6d:df:19:fd:04:b3:1e:50:67:87:c5:fb:6a:
43:e5:3a:16:2f:79:83:5f:57:39:63:7c:10:75:10:
3d:2f:64:61:fc:01:11:a2:1c:11:6b:a4:27:01:f5:
7e:0c:cf:5c:27:f8:b1:b8:0b:65:1b:d1:a2:bd:c9:
e9:8e:77:14:ef:57:23:17:0e:f3:99:af:29:ef:f4:
10:73:31:94:c8:2d:e0:cc:f9:f4:e9:fa:8e:2b:8f:
50:c6:1b:91:0a:ff:30:d5:01:b0:11:40:d4:2f:de:
dd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:98:00:49:CD:00:94:CE:ED:3D:87:45:F1:C7:FC:21:C3:AA:3E:0B
X509v3 Authority Key Identifier:
keyid:DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/AZgASc0AlM7tPYdF8cf8IcOqPgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/3lHDxd3E-2E4HDvqJMG6T3SZjqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.38.176.0/21
185.71.200.0/22
185.242.96.0/22
188.247.136.0-188.247.159.255
194.38.44.0/22
Signature Algorithm: sha256WithRSAEncryption
21:bd:34:08:23:9b:28:c3:06:5a:f6:34:d6:a6:d6:e7:6e:b0:
dc:47:c7:ce:81:26:9e:68:03:09:f7:5e:b3:94:08:f8:15:38:
ad:fc:a3:d3:85:ba:09:dc:95:58:6e:34:20:e8:4a:78:07:04:
bc:52:e0:59:63:51:bf:09:7f:59:53:c5:48:69:8c:f8:9d:e8:
1c:36:54:9b:4f:46:5d:cf:e0:3a:8e:dd:19:ad:cd:ef:85:85:
6b:0c:8d:b8:59:2e:3c:ba:76:e7:1d:c5:c0:73:a2:89:93:f4:
99:69:57:88:c0:e8:c2:28:d4:24:ae:d4:64:59:57:b5:33:55:
af:06:f1:86:78:6b:c9:e8:95:4f:a6:c6:0e:8f:bf:fc:51:70:
43:b2:5a:69:79:73:79:25:fd:9c:57:91:58:ee:9d:b1:e1:03:
7f:af:7d:84:18:6f:5d:a4:8b:8f:f0:77:c6:dc:34:ba:83:18:
b6:70:9d:9e:5c:2c:5e:63:65:97:30:dc:1d:78:e8:8a:f7:f8:
3a:85:c6:6a:2d:37:50:ca:de:0d:92:9b:ea:83:fb:57:2b:c4:
b0:7d:3c:70:38:29:7c:fe:65:3c:d2:06:77:85:62:c2:10:1f:
16:71:8d:21:0c:d2:f5:bf:4e:22:29:be:04:41:ff:9f:f3:1e:
7e:0a:25:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-fra.rpki-client.org