Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/1-Ir2_SrrMEUsp69Z35leWoVb9hI.roa
File: 1-Ir2_SrrMEUsp69Z35leWoVb9hI.roa (raw, json)
Hash identifier: e+iUtMatTS0MbGybdUT0zyvP/GLy6DyEKUQm1UKh23M=
Subject key identifier: F8:8A:F6:FD:2A:EB:30:45:2C:A7:AF:59:DF:99:5E:5A:85:5B:F6:12
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018570398ED51A68797C341DC2A8BF1DEBB3
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/1-Ir2_SrrMEUsp69Z35leWoVb9hI.roa
Signing time: Mon 02 Jan 2023 02:04:58 +0000
ROA not before: Mon 02 Jan 2023 02:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34837
IP address blocks: 212.16.64.0/24 maxlen: 24
212.16.65.0/24 maxlen: 24
212.16.67.0/24 maxlen: 24
212.16.75.0/24 maxlen: 24
212.16.82.0/24 maxlen: 24
212.16.83.0/24 maxlen: 24
212.16.91.0/24 maxlen: 24
212.16.90.0/24 maxlen: 24
212.16.88.0/24 maxlen: 24
212.80.1.0/24 maxlen: 24
212.80.3.0/24 maxlen: 24
212.80.5.0/24 maxlen: 24
212.80.11.0/24 maxlen: 24
212.80.16.0/24 maxlen: 24
212.80.28.0/24 maxlen: 24
212.80.30.0/24 maxlen: 24
212.80.31.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:8e:d5:1a:68:79:7c:34:1d:c2:a8:bf:1d:eb:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 2 02:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f88af6fd2aeb30452ca7af59df995e5a855bf612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:3a:74:c3:a4:40:82:55:ed:4e:97:43:ef:
38:e2:d6:64:28:1f:f1:3b:b5:04:9b:a9:e8:4e:5b:
a9:3a:d1:40:62:e2:9c:63:cc:81:27:f0:9a:cd:5c:
24:92:12:12:a0:d2:ad:c6:24:4c:9d:7c:1e:4c:78:
f1:bc:bf:f0:b8:77:0c:3c:ea:c4:23:6b:13:92:6d:
57:4a:50:ca:f8:69:9a:94:14:f8:ca:3f:e4:58:c1:
3c:36:0f:44:f1:35:58:83:47:6e:98:6b:3e:0d:64:
a4:1d:0b:10:79:1a:e7:26:55:5f:09:aa:5b:e6:f0:
6c:00:4a:5a:6a:86:2a:fb:f2:57:fe:8f:94:79:fa:
65:dd:17:c4:12:42:24:fd:83:7f:e8:c3:e6:a6:18:
30:c3:9e:12:6e:fb:e3:d4:a0:82:b4:71:49:e2:79:
48:bd:d8:59:b7:6c:d7:1f:79:44:3d:f2:8e:f9:37:
64:16:c4:a5:c3:44:63:54:b5:4c:24:a1:62:9e:56:
38:fb:87:53:b8:8e:0b:e0:7f:e6:70:2e:bd:88:3f:
cb:7d:55:db:a7:ca:11:70:1d:c2:b3:fb:cd:b4:cd:
ff:3d:5b:2e:1d:9d:9d:e6:6c:70:de:cf:47:a0:a3:
d1:da:e9:e0:21:36:2a:55:26:24:e3:3e:31:39:b5:
41:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:8A:F6:FD:2A:EB:30:45:2C:A7:AF:59:DF:99:5E:5A:85:5B:F6:12
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/1-Ir2_SrrMEUsp69Z35leWoVb9hI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
212.16.64.0/23
212.16.67.0/24
212.16.75.0/24
212.16.82.0/23
212.16.88.0/24
212.16.90.0/23
212.80.1.0/24
212.80.3.0/24
212.80.5.0/24
212.80.11.0/24
212.80.16.0/24
212.80.28.0/24
212.80.30.0/23
Signature Algorithm: sha256WithRSAEncryption
00:f4:a3:e0:2c:56:2e:1f:4e:d8:51:15:ac:d0:6d:1d:44:2a:
d6:c5:67:b4:f6:8e:0d:67:7b:bd:29:ae:ba:24:d0:e1:19:44:
a4:10:e4:63:b1:81:82:51:c6:e9:4b:56:3b:e3:ad:85:17:ad:
b3:48:76:3c:6c:38:fd:95:8e:ff:ba:2e:40:d5:ca:f2:62:55:
8c:1e:f9:e2:f1:40:d2:f2:e1:d7:15:3d:29:ce:3e:8a:e7:96:
76:00:10:bc:08:cb:42:33:42:e3:87:45:6d:f8:ff:be:c8:fc:
7c:c8:16:76:27:bf:ff:07:8d:c5:80:fb:3a:7f:b4:50:33:01:
0a:a6:5d:fa:80:43:50:28:3a:af:f6:c0:9e:03:83:1b:25:3f:
f2:4d:99:57:13:53:34:b7:8f:15:55:96:33:3a:e6:e2:c5:ba:
e8:70:a9:bc:6c:53:4b:73:96:45:58:d2:6b:97:77:df:83:fa:
b8:f5:52:6d:26:61:65:29:8c:11:43:cc:1f:27:ff:26:c9:a7:
ca:17:71:98:b2:f9:f0:45:13:6c:65:d4:70:e8:fb:ec:04:c9:
57:79:26:20:18:b3:74:c2:73:75:20:27:e3:56:6a:4b:62:21:
bc:16:bc:bb:06:70:07:f2:75:07:91:d9:57:0e:00:00:3a:97:
73:d7:3e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 09:24:11 2023 by rpki-client on console-fra.rpki-client.org