Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/SD07dym30nY2cG8c0aNsfHdwKuY.roa
File: SD07dym30nY2cG8c0aNsfHdwKuY.roa (raw, json)
Hash identifier: T7SIwxiF3Xjs2FqLcFoko6tBlSwFhGwTLySTrE2BuTs=
Subject key identifier: 48:3D:3B:77:29:B7:D2:76:36:70:6F:1C:D1:A3:6C:7C:77:70:2A:E6
Certificate issuer: /CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Certificate serial: 018C256E1A7D2C5C1B42A983DF054CEF4045
Authority key identifier: 17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/SD07dym30nY2cG8c0aNsfHdwKuY.roa
Signing time: Fri 01 Dec 2023 12:50:21 +0000
ROA not before: Fri 01 Dec 2023 12:50:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15685
IP address blocks: 82.208.56.0/24 maxlen: 24
82.208.58.0/24 maxlen: 24
109.123.202.0/23 maxlen: 24
109.123.205.0/24 maxlen: 24
82.208.4.0/22 maxlen: 22
109.123.206.0/23 maxlen: 24
82.208.8.0/22 maxlen: 22
109.123.208.0/22 maxlen: 24
109.123.214.0/23 maxlen: 24
82.208.14.0/24 maxlen: 24
109.123.216.0/21 maxlen: 24
82.208.16.0/23 maxlen: 23
82.208.17.0/24 maxlen: 24
82.208.12.0/24 maxlen: 24
82.208.16.0/24 maxlen: 24
82.208.18.0/24 maxlen: 24
82.208.28.0/23 maxlen: 23
82.208.26.0/23 maxlen: 23
82.208.32.0/22 maxlen: 22
82.208.44.0/24 maxlen: 24
82.208.39.0/24 maxlen: 24
82.208.40.0/23 maxlen: 23
82.208.50.0/24 maxlen: 24
82.208.46.0/23 maxlen: 23
82.208.48.0/23 maxlen: 23
217.11.254.0/24 maxlen: 24
217.11.224.0/23 maxlen: 23
217.11.230.0/24 maxlen: 24
217.11.232.0/23 maxlen: 23
217.11.227.0/24 maxlen: 24
217.11.228.0/23 maxlen: 23
217.11.236.0/24 maxlen: 24
217.11.235.0/24 maxlen: 24
217.11.246.0/23 maxlen: 23
217.11.242.0/23 maxlen: 23
217.11.251.0/24 maxlen: 24
217.11.248.0/23 maxlen: 23
109.123.192.0/21 maxlen: 24
81.0.217.0/24 maxlen: 24
81.0.214.0/24 maxlen: 24
81.0.226.0/24 maxlen: 24
81.0.225.0/24 maxlen: 24
81.0.230.0/23 maxlen: 23
77.78.96.0/20 maxlen: 20
81.0.232.0/21 maxlen: 21
77.78.94.0/23 maxlen: 23
81.0.228.0/24 maxlen: 24
81.0.240.0/22 maxlen: 22
77.78.112.0/21 maxlen: 21
81.0.250.0/24 maxlen: 24
77.78.123.0/24 maxlen: 24
77.78.124.0/22 maxlen: 22
81.0.254.0/23 maxlen: 23
85.239.227.0/24 maxlen: 24
81.0.192.0/22 maxlen: 22
81.0.199.0/24 maxlen: 24
81.0.206.0/23 maxlen: 23
77.78.76.0/22 maxlen: 22
85.239.252.0/23 maxlen: 23
81.0.208.0/23 maxlen: 23
81.0.212.0/23 maxlen: 23
2001:1528::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:25:6e:1a:7d:2c:5c:1b:42:a9:83:df:05:4c:ef:40:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174847f8667d52fa2cf9cf9afcc43a07915575ca
Validity
Not Before: Dec 1 12:50:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=483d3b7729b7d27636706f1cd1a36c7c77702ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:df:4e:eb:e7:13:07:3f:70:52:77:7e:e2:76:
3a:e9:7a:03:68:24:e5:f9:56:5b:c6:c5:de:20:ea:
50:55:0b:26:30:ef:77:87:08:54:b1:2c:76:91:14:
c4:55:46:24:80:13:8d:79:35:79:75:55:68:cc:62:
af:16:06:11:d4:bc:97:f2:32:62:1e:f9:1d:54:f2:
eb:f1:fc:24:8b:95:a2:a5:4d:3c:26:a5:45:d1:6c:
c4:f5:0b:51:b7:ab:b0:23:29:85:8a:1e:d3:38:c8:
7e:e4:d4:64:16:24:cd:16:64:2e:3d:57:66:c6:92:
3c:ef:cc:88:a0:c1:35:a6:a7:f2:c1:fd:37:2f:dc:
78:37:19:5f:4c:b2:3a:87:78:d1:13:20:89:63:12:
19:63:21:63:a4:06:70:0c:aa:1f:56:5f:2c:4a:4d:
e0:7a:20:71:34:64:ad:4b:0f:fb:5a:7a:a4:c5:58:
44:20:d8:a5:e1:ea:f6:3f:bc:5b:65:02:ee:85:61:
c0:dd:7e:79:7a:b7:65:6c:9f:59:d7:e9:fe:16:e1:
e3:02:34:16:d9:19:8c:4b:33:51:27:89:65:b6:da:
ae:dc:48:77:a3:3d:56:ee:23:eb:fd:58:27:17:68:
77:74:ba:45:45:3f:bd:0f:ba:2e:35:36:dc:11:d1:
b1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3D:3B:77:29:B7:D2:76:36:70:6F:1C:D1:A3:6C:7C:77:70:2A:E6
X509v3 Authority Key Identifier:
keyid:17:48:47:F8:66:7D:52:FA:2C:F9:CF:9A:FC:C4:3A:07:91:55:75:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/SD07dym30nY2cG8c0aNsfHdwKuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/72cc4a-2d9c-4808-823e-1454ffe6182c/1/F0hH-GZ9Uvos-c-a_MQ6B5FVdco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.76.0/22
77.78.94.0-77.78.119.255
77.78.123.0-77.78.127.255
81.0.192.0/22
81.0.199.0/24
81.0.206.0-81.0.209.255
81.0.212.0-81.0.214.255
81.0.217.0/24
81.0.225.0-81.0.226.255
81.0.228.0/24
81.0.230.0-81.0.243.255
81.0.250.0/24
81.0.254.0/23
82.208.4.0-82.208.12.255
82.208.14.0/24
82.208.16.0-82.208.18.255
82.208.26.0-82.208.29.255
82.208.32.0/22
82.208.39.0-82.208.41.255
82.208.44.0/24
82.208.46.0-82.208.50.255
82.208.56.0/24
82.208.58.0/24
85.239.227.0/24
85.239.252.0/23
109.123.192.0/21
109.123.202.0/23
109.123.205.0-109.123.211.255
109.123.214.0-109.123.223.255
217.11.224.0/23
217.11.227.0-217.11.230.255
217.11.232.0/23
217.11.235.0-217.11.236.255
217.11.242.0/23
217.11.246.0-217.11.249.255
217.11.251.0/24
217.11.254.0/24
IPv6:
2001:1528::/32
Signature Algorithm: sha256WithRSAEncryption
00:cf:a7:cc:b8:a4:5b:cd:49:2b:c3:9e:87:b0:28:be:f7:e0:
a6:8b:26:9c:03:5a:e9:fb:af:a1:27:fe:80:df:94:28:11:e8:
b6:60:65:07:37:53:71:38:2e:95:a0:a9:f4:25:a0:d4:ac:61:
23:cd:5d:72:4b:06:b4:96:01:d7:e7:d8:27:2a:b2:f8:e4:c6:
13:95:c4:5d:79:bd:56:19:96:2b:f6:7d:4c:b8:90:b5:75:4f:
b4:34:2f:eb:b3:48:9a:96:93:29:1b:6b:97:e3:b0:12:9c:30:
7d:40:fe:0d:1c:72:fd:cf:25:c4:ff:68:0a:9d:e4:1f:f6:cb:
93:6e:09:65:2a:1a:dc:c0:8c:2d:5e:cd:85:73:e6:43:fc:47:
fd:2d:f9:69:96:d9:c4:6f:93:02:0a:8b:80:a5:d5:de:c6:d1:
a2:02:39:83:8d:fe:89:b5:3f:21:f1:db:d8:8b:77:03:df:c8:
68:3e:66:ce:82:8c:9b:62:80:b0:c3:28:fa:75:a5:13:99:b9:
bf:42:37:e9:7a:84:ed:c1:60:8a:cf:48:79:06:b7:28:e7:98:
a7:be:a4:bf:f1:32:c6:23:00:14:48:cd:34:4a:a4:5e:52:3d:
b8:93:4d:6c:c1:f6:e6:9b:9e:06:fd:a1:a9:dc:19:f3:76:e7:
56:72:36:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:01 2024 by rpki-client on console-fra.rpki-client.org