Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/7Mbusrx41ZaA5dE1E46SA1DtR-Y.roa
File: 7Mbusrx41ZaA5dE1E46SA1DtR-Y.roa (raw, json)
Hash identifier: qoGU7/nOUpiIc4bPAYBVU0sjIvOBeXt6FOqtlUty660=
Subject key identifier: EC:C6:EE:B2:BC:78:D5:96:80:E5:D1:35:13:8E:92:03:50:ED:47:E6
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 01856B8A2B409D080655D18C49536BD6B0A3
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/7Mbusrx41ZaA5dE1E46SA1DtR-Y.roa
Signing time: Sun 01 Jan 2023 04:14:55 +0000
ROA not before: Sun 01 Jan 2023 04:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49332
IP address blocks: 188.190.32.0/19 maxlen: 20
5.57.64.0/21 maxlen: 22
176.32.0.0/21 maxlen: 22
86.111.64.0/20 maxlen: 21
91.212.203.0/24 maxlen: 24
86.111.84.0/23 maxlen: 24
80.243.144.0/20 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:2b:40:9d:08:06:55:d1:8c:49:53:6b:d6:b0:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Jan 1 04:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecc6eeb2bc78d59680e5d135138e920350ed47e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:73:71:4c:5d:93:4e:07:7a:0b:04:b7:fa:af:
ba:20:ab:86:a1:83:31:ed:b4:a1:3f:73:5e:f0:f0:
86:42:6a:9a:35:61:13:29:d8:e8:88:0d:31:b8:ea:
fd:47:ae:dd:eb:72:7f:e2:bb:0a:bc:47:b4:db:ad:
29:f2:0b:33:f5:75:f3:d9:80:c2:4c:b4:d7:6d:86:
ef:b2:cf:d1:28:4f:01:5a:6f:0f:95:05:6a:a5:39:
94:cb:87:4b:50:c9:ad:7d:ed:02:14:5b:c9:56:6e:
61:19:4d:d0:c8:e5:d6:0c:d5:c6:3c:aa:45:ff:fa:
e9:c1:3a:50:2c:db:71:15:08:ae:d3:35:0a:93:3e:
92:88:ab:72:b4:1a:11:2b:f0:c8:88:16:49:12:d4:
2c:4d:e0:15:22:ab:41:24:1c:ec:d6:d5:18:37:5c:
88:07:58:12:58:75:f4:e7:60:f9:52:85:a0:90:de:
0c:96:b0:b6:d4:86:46:21:6c:80:ea:b0:10:80:93:
45:d3:cb:2e:d1:c0:c9:81:f4:d9:42:d1:f4:6b:99:
f0:05:e3:38:59:78:56:c1:8a:15:ee:e7:8f:6f:1a:
47:0d:95:3b:8e:d4:69:6a:0f:6d:8f:d7:a3:b5:87:
2f:7c:b4:4a:a7:16:9c:ad:be:61:5c:36:cb:5b:c9:
81:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C6:EE:B2:BC:78:D5:96:80:E5:D1:35:13:8E:92:03:50:ED:47:E6
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/7Mbusrx41ZaA5dE1E46SA1DtR-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.64.0/21
80.243.144.0/20
86.111.64.0/20
86.111.84.0/23
91.212.203.0/24
176.32.0.0/21
188.190.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:ed:31:5a:26:dd:f1:f9:65:9b:ca:6a:3e:cf:cc:89:c7:9b:
f5:cf:09:a7:61:2d:79:42:9e:2e:51:50:e8:b5:9a:24:b5:88:
fe:56:68:22:dc:ed:cf:cd:68:89:34:e4:f8:4e:af:0a:57:31:
0b:6a:32:6b:e7:8e:b7:5a:b9:46:af:49:a4:21:bc:fe:63:1c:
4b:25:8a:c2:b7:dc:6f:e2:e4:48:97:ee:ad:96:27:61:1a:09:
10:1f:4c:bf:98:36:a4:87:43:8d:22:1b:a9:60:bf:de:70:f2:
39:6e:10:88:ca:fa:7a:5c:6d:48:e9:92:3b:58:34:20:ec:61:
f2:e3:33:7b:a8:f4:00:f0:b1:2c:0c:7c:d7:fd:24:ce:11:85:
ae:d1:18:8f:84:57:c9:82:27:93:87:1d:84:89:f4:d2:97:3e:
fd:3f:f8:fe:9f:d8:f9:75:14:01:fb:8f:4f:97:c6:94:89:8c:
06:a0:8a:fb:61:9f:52:73:6d:b3:0e:94:2d:95:69:4e:93:ec:
98:f5:b2:bc:d2:15:53:c2:66:c8:d1:6a:1b:0d:48:83:02:13:
ad:6d:92:bb:23:ae:2c:36:d3:96:05:5e:af:38:42:c2:de:1d:
c5:ff:30:9b:7c:43:d5:75:ac:0a:43:e0:ba:66:fb:5a:75:4c:
7e:22:e3:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 4 11:42:04 2023 by rpki-client on console-ams.rpki-client.org