Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/yBZNrHY_Y3ppKAN0x5cyt-EsL1k.roa
File: yBZNrHY_Y3ppKAN0x5cyt-EsL1k.roa (raw, json)
Hash identifier: PEbEKHl6lJwipWOwcGsG9NauWnipGFUWD4H5OplF6Kw=
Subject key identifier: C8:16:4D:AC:76:3F:63:7A:69:28:03:74:C7:97:32:B7:E1:2C:2F:59
Certificate issuer: /CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Certificate serial: 018693A761C57331CEA0E4FBC345FB129075
Authority key identifier: DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/yBZNrHY_Y3ppKAN0x5cyt-EsL1k.roa
Signing time: Mon 27 Feb 2023 16:14:25 +0000
ROA not before: Mon 27 Feb 2023 16:14:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200773
IP address blocks: 185.242.97.0/24 maxlen: 24
185.242.96.0/24 maxlen: 24
185.242.98.0/24 maxlen: 24
185.242.99.0/24 maxlen: 24
188.247.150.0/24 maxlen: 24
188.247.152.0/24 maxlen: 24
188.247.151.0/24 maxlen: 24
188.247.152.0/21 maxlen: 21
188.247.147.0/24 maxlen: 24
188.247.146.0/24 maxlen: 24
188.247.149.0/24 maxlen: 24
188.247.148.0/24 maxlen: 24
188.247.157.0/24 maxlen: 24
188.247.159.0/24 maxlen: 24
188.247.158.0/24 maxlen: 24
188.247.154.0/24 maxlen: 24
188.247.153.0/24 maxlen: 24
188.247.156.0/24 maxlen: 24
188.247.155.0/24 maxlen: 24
185.71.201.0/24 maxlen: 24
185.71.200.0/24 maxlen: 24
185.71.200.0/22 maxlen: 24
185.71.203.0/24 maxlen: 24
185.71.202.0/24 maxlen: 24
194.38.44.0/22 maxlen: 22
194.38.44.0/24 maxlen: 24
194.38.45.0/24 maxlen: 24
194.38.47.0/24 maxlen: 24
194.38.46.0/24 maxlen: 24
188.247.136.0/21 maxlen: 24
89.38.177.0/24 maxlen: 24
89.38.176.0/22 maxlen: 22
89.38.176.0/24 maxlen: 24
188.247.136.0/24 maxlen: 24
188.247.138.0/24 maxlen: 24
89.38.179.0/24 maxlen: 24
188.247.137.0/24 maxlen: 24
89.38.178.0/24 maxlen: 24
188.247.139.0/24 maxlen: 24
188.247.145.0/24 maxlen: 24
89.38.183.0/24 maxlen: 24
188.247.143.0/24 maxlen: 24
188.247.144.0/21 maxlen: 21
188.247.144.0/24 maxlen: 24
188.247.140.0/24 maxlen: 24
188.247.141.0/24 maxlen: 24
188.247.142.0/24 maxlen: 24
89.38.180.0/22 maxlen: 22
89.38.180.0/24 maxlen: 24
89.38.181.0/24 maxlen: 24
89.38.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:a7:61:c5:73:31:ce:a0:e4:fb:c3:45:fb:12:90:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de51c3c5ddc4fb61381c3bea24c1ba4f74998eab
Validity
Not Before: Feb 27 16:14:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8164dac763f637a69280374c79732b7e12c2f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:36:24:d2:f0:9b:98:2d:be:29:67:ef:f3:6f:
b2:9e:a2:8e:27:e1:24:69:d6:2c:a0:65:68:ff:95:
6d:5d:dc:2d:de:47:99:c5:47:03:d4:62:c8:9d:97:
aa:9e:04:f7:f3:78:8e:b2:e5:c9:2e:d4:cc:8b:db:
14:55:b5:af:04:c4:57:17:a6:8b:0d:88:20:79:7c:
dc:03:53:25:8d:a2:b3:0c:45:ed:8e:ec:b4:77:7f:
dc:b6:45:90:bb:74:c2:3a:cb:19:15:5e:bf:d4:c3:
50:17:2f:cd:80:54:bc:e7:58:cb:93:fd:81:da:cd:
92:49:40:51:55:a3:47:61:f9:b8:db:76:84:5c:6f:
1f:36:40:79:4e:89:8e:a9:b9:b1:3f:4b:68:d1:78:
fe:13:c1:32:94:cb:12:f8:b9:56:3c:ee:05:36:34:
5a:8a:a9:1d:65:f4:b2:12:1a:28:1d:f1:85:5f:e1:
3a:eb:0c:15:75:0e:58:00:a4:07:a2:e2:32:62:ff:
07:f6:b4:b9:26:50:c1:a9:a8:c5:e0:40:1e:dc:92:
74:ee:bc:3c:da:4a:f2:df:62:35:8f:f7:be:c8:b8:
05:b2:0a:fc:64:dc:c4:18:cb:81:84:a1:22:b2:ba:
75:ae:30:92:76:d6:bd:8e:1e:f1:32:ee:f5:b6:93:
a5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:16:4D:AC:76:3F:63:7A:69:28:03:74:C7:97:32:B7:E1:2C:2F:59
X509v3 Authority Key Identifier:
keyid:DE:51:C3:C5:DD:C4:FB:61:38:1C:3B:EA:24:C1:BA:4F:74:99:8E:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lHDxd3E-2E4HDvqJMG6T3SZjqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/yBZNrHY_Y3ppKAN0x5cyt-EsL1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6de65e-04bd-4346-85b1-a5325d441702/1/3lHDxd3E-2E4HDvqJMG6T3SZjqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.38.176.0/21
185.71.200.0/22
185.242.96.0/22
188.247.136.0-188.247.159.255
194.38.44.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:f6:44:f9:58:19:53:ab:f7:a3:51:fb:42:93:68:1d:a7:f0:
13:c6:12:69:eb:7f:7a:13:ba:36:0c:9a:8c:60:5f:12:d5:bd:
2a:c3:fe:29:73:a3:37:02:98:13:06:0b:79:7e:13:ea:e2:aa:
3b:f6:dd:c9:6b:bf:ce:fb:8b:65:98:1c:84:cc:f9:25:e4:12:
b1:0b:3f:ab:3b:07:e6:0c:a5:f7:37:77:62:54:41:97:d1:42:
7d:a5:fc:65:3d:89:13:f6:1d:1e:f8:65:6d:ba:c0:9e:d2:30:
f9:4c:45:cd:c1:85:bd:2f:00:56:11:c5:f3:0a:ed:ea:aa:55:
f5:92:e7:21:b7:b0:d6:47:c2:e8:38:66:24:49:28:0a:04:4f:
9d:45:1d:ee:b3:26:ef:a9:9f:a9:be:6b:86:2a:8d:ab:c1:94:
af:24:6d:ea:3f:e1:d5:3b:f3:b9:b8:a6:7d:f7:ef:df:4e:d2:
04:76:01:e5:cc:b0:52:e8:d7:76:ed:44:fc:34:8b:bb:ca:17:
a4:26:ab:ab:c6:df:16:9d:b1:3d:6f:42:86:00:d5:34:8c:b3:
1f:80:15:25:c9:9d:76:70:11:5a:a9:ee:59:4f:f3:d5:d1:68:
d1:94:e4:48:c4:7e:ba:e3:7b:5b:2a:81:88:e2:61:54:da:ff:
32:12:db:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 10 12:18:24 2023 by rpki-client on console-fra.rpki-client.org