Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/_C0O9ce9jachdSj1de8vUlYAack.roa
File: _C0O9ce9jachdSj1de8vUlYAack.roa (raw, json)
Hash identifier: qgW9sPZjVLZBveJUXg5L3bmdl8Z9Ex8vLh6RzgjQoMQ=
Subject key identifier: FC:2D:0E:F5:C7:BD:8D:A7:21:75:28:F5:75:EF:2F:52:56:00:69:C9
Certificate issuer: /CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Certificate serial: 01856B8A2710C5CEB0E7578349ECB02F814D
Authority key identifier: F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/_C0O9ce9jachdSj1de8vUlYAack.roa
Signing time: Sun 01 Jan 2023 04:14:54 +0000
ROA not before: Sun 01 Jan 2023 04:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39608
IP address blocks: 91.216.165.0/24 maxlen: 24
185.53.76.0/23 maxlen: 24
185.53.78.0/24 maxlen: 24
176.39.0.0/16 maxlen: 16
176.39.34.0/23 maxlen: 24
176.39.36.0/23 maxlen: 24
194.33.189.0/24 maxlen: 24
86.111.64.0/19 maxlen: 19
193.107.224.0/22 maxlen: 22
176.38.0.0/16 maxlen: 17
193.93.160.0/22 maxlen: 22
86.111.88.0/21 maxlen: 22
194.50.85.0/24 maxlen: 24
91.194.81.0/24 maxlen: 24
176.36.0.0/16 maxlen: 17
176.36.0.0/14 maxlen: 14
176.37.0.0/16 maxlen: 17
194.60.69.0/24 maxlen: 24
2a01:bf20::/32 maxlen: 32
2a01:5800::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:27:10:c5:ce:b0:e7:57:83:49:ec:b0:2f:81:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f84128146b7bec8bd1185bbe0c3b9340aaf5b714
Validity
Not Before: Jan 1 04:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc2d0ef5c7bd8da7217528f575ef2f52560069c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cc:bf:d7:bb:29:95:02:5f:34:fd:8f:31:8e:
19:54:85:9b:8f:2d:49:1d:2e:a1:9f:af:9d:33:96:
6f:dd:e6:bb:58:33:9f:3a:91:01:ff:78:6c:c4:2b:
5b:f1:da:02:7f:fa:81:73:6a:bd:0b:a7:71:90:87:
57:a9:19:b0:0f:ad:56:d4:86:ab:84:ec:8d:7d:01:
52:a4:f9:1e:eb:93:f2:2d:d1:7b:b5:67:4b:fc:4f:
e9:61:68:11:cc:a8:f2:2b:af:22:8d:98:78:da:93:
56:57:20:a1:2f:b4:1c:af:36:0b:36:f5:3e:8e:55:
56:9e:55:cd:e4:d2:8d:8a:c8:7b:45:88:ac:81:c9:
e5:33:0f:a4:61:65:82:24:67:78:fe:fc:b6:c1:c1:
10:92:42:d7:d6:25:16:6b:32:e3:c6:79:6d:2e:9b:
83:e8:0a:fe:b0:f8:ee:96:47:eb:0a:5f:2b:16:3a:
ab:26:19:ae:ea:f3:19:31:6a:bc:d8:ec:ac:a6:21:
13:a2:0d:10:b5:af:d5:d1:5a:78:a5:6e:d0:97:73:
d8:f2:89:1d:13:1d:36:d2:f8:6f:fe:5e:74:07:6c:
3b:6d:42:1f:01:d4:71:5e:d7:69:50:53:c9:19:f2:
8a:2a:3b:bc:d4:24:fc:51:dd:ab:e9:09:69:84:1d:
7e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:2D:0E:F5:C7:BD:8D:A7:21:75:28:F5:75:EF:2F:52:56:00:69:C9
X509v3 Authority Key Identifier:
keyid:F8:41:28:14:6B:7B:EC:8B:D1:18:5B:BE:0C:3B:93:40:AA:F5:B7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-EEoFGt77IvRGFu-DDuTQKr1txQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/_C0O9ce9jachdSj1de8vUlYAack.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/fb2411-485b-4143-9241-13839640a604/1/1-EEoFGt77IvRGFu-DDuTQKr1txQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.64.0/19
91.194.81.0/24
91.216.165.0/24
176.36.0.0/14
185.53.76.0-185.53.78.255
193.93.160.0/22
193.107.224.0/22
194.33.189.0/24
194.50.85.0/24
194.60.69.0/24
IPv6:
2a01:5800::/32
2a01:bf20::/32
Signature Algorithm: sha256WithRSAEncryption
90:b3:fc:7b:18:5b:fc:74:f5:45:5b:c2:f9:78:0a:26:96:1c:
77:17:61:89:87:67:04:fe:38:24:63:a4:1d:50:a4:21:34:d4:
47:85:fb:a2:01:44:19:03:de:f9:13:9c:45:43:aa:15:e4:0b:
d9:a3:cf:13:21:74:f0:ad:1a:7e:e5:03:e2:a5:cc:42:52:4a:
4d:6c:89:7b:d4:80:0a:bd:1b:7f:dd:cf:e2:e0:a4:ec:4a:bd:
cd:c5:aa:3a:ff:b0:59:78:d5:f0:cb:0c:96:fe:2c:e4:51:fd:
a6:12:06:aa:51:99:fc:fb:a4:93:bb:cf:0e:1c:2b:88:9d:85:
7b:9f:95:22:4d:7d:fb:6e:13:08:62:7f:22:81:51:1b:a0:ff:
66:ba:e1:f5:ee:cc:2e:7a:81:0d:c7:b6:b4:93:6a:ae:65:da:
b0:76:e0:83:87:bd:13:79:5b:44:c2:2e:d9:cd:fb:7b:a9:fa:
b0:30:68:66:67:11:b8:fe:49:36:1e:60:ca:50:18:28:b7:20:
91:20:8f:72:38:f6:1b:98:a5:2e:90:bc:82:f9:f3:34:fc:c3:
45:4c:d5:e0:30:34:e6:8e:38:7f:8f:84:05:63:fa:67:3b:97:
69:6a:5d:93:58:6c:6d:d7:2b:7b:93:dd:cb:5c:d4:ed:72:e0:
e6:12:12:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org