Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/yrCFM55Zy5GQH0pmKCPqZ1bghOk.roa
File: yrCFM55Zy5GQH0pmKCPqZ1bghOk.roa (raw, json)
Hash identifier: qaWwnE/8chY3FgiynaV2z9Pykgg3MmEXGb81SMfhks4=
Subject key identifier: CA:B0:85:33:9E:59:CB:91:90:1F:4A:66:28:23:EA:67:56:E0:84:E9
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0BA481D683D13488C1F842BB846E0
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/yrCFM55Zy5GQH0pmKCPqZ1bghOk.roa
Signing time: Mon 02 Jan 2023 05:25:02 +0000
ROA not before: Mon 02 Jan 2023 05:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199715
IP address blocks: 82.177.240.0/23 maxlen: 23
82.177.209.0/24 maxlen: 24
88.220.108.0/22 maxlen: 22
88.220.136.0/23 maxlen: 23
88.220.56.0/24 maxlen: 24
82.177.25.0/24 maxlen: 24
82.177.28.0/23 maxlen: 23
82.177.26.0/24 maxlen: 24
82.177.38.0/23 maxlen: 23
82.177.40.0/24 maxlen: 24
81.15.131.0/24 maxlen: 24
81.15.134.0/24 maxlen: 24
82.177.62.0/23 maxlen: 23
82.177.60.0/23 maxlen: 23
195.136.208.0/21 maxlen: 21
88.220.162.0/23 maxlen: 23
81.15.220.0/23 maxlen: 23
82.177.143.0/24 maxlen: 24
81.15.231.0/24 maxlen: 24
81.15.228.0/23 maxlen: 23
81.15.247.0/24 maxlen: 24
81.15.253.0/24 maxlen: 24
81.15.252.0/24 maxlen: 24
195.136.216.0/21 maxlen: 21
81.15.166.0/24 maxlen: 24
81.15.162.0/24 maxlen: 24
81.15.162.0/23 maxlen: 23
81.15.163.0/24 maxlen: 24
81.15.165.0/24 maxlen: 24
82.177.26.74/32 maxlen: 32
81.15.176.0/24 maxlen: 24
81.15.177.0/24 maxlen: 24
81.15.179.0/24 maxlen: 24
82.177.104.0/22 maxlen: 22
82.177.108.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:ba:48:1d:68:3d:13:48:8c:1f:84:2b:b8:46:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cab085339e59cb91901f4a662823ea6756e084e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ee:01:fe:52:7d:95:c5:00:c6:9e:4c:fe:7f:
54:1f:eb:9b:65:64:37:3d:ec:6b:4b:6d:3a:1c:5c:
7e:88:54:ae:14:f4:b0:47:63:69:ef:37:3c:15:e6:
de:9e:4f:22:29:a3:0a:24:48:89:c3:dc:20:f6:2a:
a9:38:e8:82:e4:41:3f:d5:af:51:82:b0:bb:a9:3c:
a0:d2:13:db:f8:83:44:e9:1f:aa:8d:c0:c7:7a:5a:
65:94:48:cc:96:b4:a6:0d:7c:67:6c:90:a2:54:ba:
14:49:22:b3:c3:dc:af:35:f8:05:ef:c6:57:6a:4c:
57:08:74:45:75:e5:1b:ee:04:79:db:ec:b6:f6:2b:
6a:9c:8c:59:c1:c6:d9:ae:09:9a:db:e9:c9:5b:b6:
8c:63:dd:65:e3:b2:b4:07:ba:d0:d1:14:9b:ca:a9:
01:fc:d2:af:4f:c1:b2:fb:c0:83:95:47:f2:5b:6f:
66:57:4b:f8:e3:85:63:9e:0b:95:57:56:53:21:f2:
33:60:37:2d:2d:19:31:ac:b9:89:47:94:61:50:e5:
a5:04:64:f7:a1:42:a6:1b:bd:c0:94:e4:20:7a:c7:
b6:c7:9d:9a:93:58:41:25:5d:a2:17:82:96:aa:fc:
cd:28:1d:57:0b:ef:55:ff:6d:51:29:84:f0:84:59:
58:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B0:85:33:9E:59:CB:91:90:1F:4A:66:28:23:EA:67:56:E0:84:E9
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/yrCFM55Zy5GQH0pmKCPqZ1bghOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.131.0/24
81.15.134.0/24
81.15.162.0/23
81.15.165.0-81.15.166.255
81.15.176.0/23
81.15.179.0/24
81.15.220.0/23
81.15.228.0/23
81.15.231.0/24
81.15.247.0/24
81.15.252.0/23
82.177.25.0-82.177.26.255
82.177.28.0/23
82.177.38.0-82.177.40.255
82.177.60.0/22
82.177.104.0-82.177.109.255
82.177.143.0/24
82.177.209.0/24
82.177.240.0/23
88.220.56.0/24
88.220.108.0/22
88.220.136.0/23
88.220.162.0/23
195.136.208.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:73:a3:97:2f:06:f4:b8:d2:07:11:37:8b:e4:3e:ba:f2:46:
81:5b:0f:9c:b8:53:3c:be:6c:5d:13:a7:48:c1:22:f9:79:07:
22:5a:11:22:b2:65:a4:0d:bf:3b:dd:e5:b0:fc:61:0f:d1:d3:
45:c7:fe:ea:56:2a:9e:27:87:74:e8:5f:b7:50:81:a9:52:59:
5b:e5:3b:3a:9a:ce:c7:9e:81:99:c4:8c:d9:ef:cc:5c:fe:0d:
c5:75:a6:bb:fe:07:82:22:22:59:0d:e3:d5:62:e8:19:42:5f:
05:3e:e6:4e:8e:d6:da:22:9c:c4:c8:a0:09:c5:12:ea:09:56:
80:fd:c2:e7:c6:44:11:78:6a:d9:6a:21:06:a1:7c:46:a4:fb:
82:f1:93:be:76:cf:11:df:c1:3d:79:e0:17:f4:c0:13:13:fc:
87:b6:e6:75:4f:60:14:24:dc:d6:00:f2:6e:ba:b8:31:ad:ca:
05:b9:27:48:d4:39:01:1d:e5:e6:91:e6:68:b0:c2:26:ed:d5:
f2:e3:db:ee:e8:7a:f5:c1:6c:45:82:af:62:c0:6c:78:aa:a2:
33:92:d8:04:58:27:c0:4c:f7:a2:c3:ec:78:ca:0a:ef:08:fc:
a5:1c:17:21:0e:78:55:fa:e4:d5:63:1f:f2:38:95:49:48:3f:
e2:6a:38:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:20 2024 by rpki-client on console-ams.rpki-client.org