Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/V3FwaOZpAWZOfieoelQQDfzkMvI.roa
File: V3FwaOZpAWZOfieoelQQDfzkMvI.roa (raw, json)
Hash identifier: /c9qWT4reVebxQtfb1slBkuPxFcU1Zf1yHyU2eF6yug=
Subject key identifier: 57:71:70:68:E6:69:01:66:4E:7E:27:A8:7A:54:10:0D:FC:E4:32:F2
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 01867EB7C20F55A861DD45523E64513C70BD
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/V3FwaOZpAWZOfieoelQQDfzkMvI.roa
Signing time: Thu 23 Feb 2023 14:40:17 +0000
ROA not before: Thu 23 Feb 2023 14:40:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16347
IP address blocks: 192.214.192.0/19 maxlen: 19
23.90.192.0/18 maxlen: 18
185.87.100.0/22 maxlen: 22
185.20.16.0/22 maxlen: 22
185.134.156.0/22 maxlen: 22
45.133.68.0/22 maxlen: 22
185.133.80.0/22 maxlen: 22
79.99.160.0/21 maxlen: 21
92.119.232.0/22 maxlen: 22
185.197.108.0/22 maxlen: 22
5.183.248.0/22 maxlen: 22
45.89.76.0/22 maxlen: 22
45.92.180.0/22 maxlen: 22
185.48.252.0/22 maxlen: 22
45.129.218.0/24 maxlen: 24
45.129.217.0/24 maxlen: 24
185.163.136.0/22 maxlen: 22
45.129.216.0/24 maxlen: 24
185.241.140.0/22 maxlen: 22
94.154.4.0/24 maxlen: 24
88.218.12.0/22 maxlen: 22
185.191.36.0/22 maxlen: 22
185.163.212.0/22 maxlen: 22
185.86.88.0/22 maxlen: 22
45.86.96.0/22 maxlen: 22
185.163.220.0/22 maxlen: 22
31.204.80.0/21 maxlen: 21
185.163.228.0/22 maxlen: 22
94.187.128.0/19 maxlen: 19
2.59.144.0/22 maxlen: 22
185.186.88.0/22 maxlen: 22
185.169.156.0/22 maxlen: 22
185.132.64.0/22 maxlen: 22
45.142.108.0/22 maxlen: 22
185.135.176.0/22 maxlen: 22
195.216.140.0/22 maxlen: 22
46.18.120.0/22 maxlen: 22
46.18.124.0/24 maxlen: 24
46.18.125.0/24 maxlen: 24
46.18.126.0/23 maxlen: 23
185.254.8.0/22 maxlen: 22
185.138.116.0/22 maxlen: 22
5.10.128.0/21 maxlen: 21
45.80.252.0/22 maxlen: 22
185.98.116.0/22 maxlen: 22
45.152.16.0/22 maxlen: 22
62.192.156.0/22 maxlen: 22
2a00:41e0::/29 maxlen: 29
2a05:b780::/29 maxlen: 29
2a01:648::/29 maxlen: 29
2a00:6780::/29 maxlen: 29
2a05:c100::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:b7:c2:0f:55:a8:61:dd:45:52:3e:64:51:3c:70:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Feb 23 14:40:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57717068e66901664e7e27a87a54100dfce432f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8a:c8:4b:d1:e9:5d:66:37:16:14:9e:d5:5d:
92:e7:62:47:25:35:df:fe:4a:a8:ab:5c:17:4a:33:
ab:86:2a:74:d1:c1:4b:79:81:6f:bf:92:a7:db:90:
76:cf:28:0f:50:6c:09:ae:04:e2:47:69:68:06:4b:
d3:f9:96:e4:1a:06:2b:b8:2c:90:76:b9:11:45:c8:
08:d8:e5:4d:99:f4:72:da:ec:2e:58:10:80:c1:e0:
2f:34:47:1b:f3:c4:1f:33:b6:93:97:93:d9:1a:31:
3d:06:44:01:38:17:89:8c:06:25:f3:a5:2f:86:e2:
9a:3d:f7:6d:aa:9e:fc:54:46:b7:f0:d6:a8:b8:6d:
aa:44:19:1f:81:98:df:c0:6d:e7:e1:4e:db:8c:95:
89:1c:6d:1f:68:73:3d:33:7d:2a:7a:0a:db:e7:9c:
13:a0:aa:14:76:b4:96:fd:42:dc:77:0f:4a:dc:b9:
99:57:c7:98:22:7d:78:ca:5d:49:c8:f1:05:6a:9f:
e9:f3:a5:9e:8b:c1:fc:21:96:16:c6:e8:8a:50:52:
13:5a:45:c0:2a:fe:17:22:f4:d5:cb:1f:9e:cc:49:
cd:6f:85:a4:2a:58:db:c9:c4:b6:90:e0:60:5a:f7:
dc:00:c8:4f:e0:a1:61:99:c0:96:fa:bb:cb:a5:16:
31:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:71:70:68:E6:69:01:66:4E:7E:27:A8:7A:54:10:0D:FC:E4:32:F2
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/V3FwaOZpAWZOfieoelQQDfzkMvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.144.0/22
5.10.128.0/21
5.183.248.0/22
23.90.192.0/18
31.204.80.0/21
45.80.252.0/22
45.86.96.0/22
45.89.76.0/22
45.92.180.0/22
45.129.216.0-45.129.218.255
45.133.68.0/22
45.142.108.0/22
45.152.16.0/22
46.18.120.0/21
62.192.156.0/22
79.99.160.0/21
88.218.12.0/22
92.119.232.0/22
94.154.4.0/24
94.187.128.0/19
185.20.16.0/22
185.48.252.0/22
185.86.88.0/22
185.87.100.0/22
185.98.116.0/22
185.132.64.0/22
185.133.80.0/22
185.134.156.0/22
185.135.176.0/22
185.138.116.0/22
185.163.136.0/22
185.163.212.0/22
185.163.220.0/22
185.163.228.0/22
185.169.156.0/22
185.186.88.0/22
185.191.36.0/22
185.197.108.0/22
185.241.140.0/22
185.254.8.0/22
192.214.192.0/19
195.216.140.0/22
IPv6:
2a00:41e0::/29
2a00:6780::/29
2a01:648::/29
2a05:b780::/29
2a05:c100::/29
Signature Algorithm: sha256WithRSAEncryption
45:26:7b:e9:f7:a9:71:61:eb:68:5f:00:61:d4:ab:dc:bc:76:
b7:4a:6c:e2:c5:e7:85:b7:61:17:6a:8a:06:8c:6b:58:0d:61:
72:06:cb:83:25:7a:52:c4:8e:8d:77:0d:46:00:53:8c:bf:63:
6d:e7:57:c1:da:df:4e:f3:64:a7:de:e4:0c:ae:fe:f7:23:56:
05:6d:b2:e9:97:d5:69:0c:0b:fd:1a:8a:10:97:a6:c9:e3:fa:
17:d3:4f:f7:8a:0b:ab:48:5c:9a:36:88:72:ef:95:ee:e9:ef:
ba:c9:61:0e:d0:a4:19:3e:03:b7:7b:7b:ea:c4:49:c0:cb:56:
02:0e:09:03:7e:ad:d3:8f:0f:30:08:09:a3:36:b1:b4:17:60:
d4:d0:f0:37:e0:e4:08:c5:eb:f3:62:5f:50:87:a3:ff:8a:c8:
90:76:11:8a:e5:89:6f:ec:9b:53:27:94:3f:a9:8a:92:e1:58:
26:28:0f:a3:69:d8:6b:a5:ee:09:1c:21:72:6f:00:72:0d:dc:
8e:8f:aa:18:8d:cc:16:fc:0b:61:63:c4:9d:fb:97:9f:31:75:
c3:03:9c:64:5f:70:44:06:e6:e7:81:61:13:55:8e:23:93:80:
10:cf:1b:b3:cc:cd:4f:1e:50:ee:92:fd:da:54:ba:6a:e5:95:
62:fb:20:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:14 2023 by rpki-client on console-fra.rpki-client.org