Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/o1E62AmN8josnZ6Yhg6LOY4jDNY.roa
File: o1E62AmN8josnZ6Yhg6LOY4jDNY.roa (raw, json)
Hash identifier: gBOlyolMnJBwqaftPKWM8pkKIXkuNZ9YBWZr6T3nQi0=
Subject key identifier: A3:51:3A:D8:09:8D:F2:3A:2C:9D:9E:98:86:0E:8B:39:8E:23:0C:D6
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 018572BA5F3BC9A6D7676EF81C58AE4E28A6
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/o1E62AmN8josnZ6Yhg6LOY4jDNY.roa
Signing time: Mon 02 Jan 2023 13:44:54 +0000
ROA not before: Mon 02 Jan 2023 13:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 84.46.139.0/24 maxlen: 24
89.117.69.0/24 maxlen: 24
89.117.93.0/24 maxlen: 24
89.117.92.0/24 maxlen: 24
89.117.14.0/24 maxlen: 24
82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
217.9.248.0/23 maxlen: 23
89.117.225.0/24 maxlen: 24
89.117.223.0/24 maxlen: 24
89.117.221.0/24 maxlen: 24
89.117.220.0/24 maxlen: 24
89.117.125.0/24 maxlen: 24
89.117.127.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
89.117.138.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.117.141.0/24 maxlen: 24
89.117.156.0/24 maxlen: 24
89.117.165.0/24 maxlen: 24
86.38.245.0/24 maxlen: 24
89.116.124.0/24 maxlen: 24
89.116.129.0/24 maxlen: 24
89.116.143.0/24 maxlen: 24
89.116.151.0/24 maxlen: 24
89.116.155.0/24 maxlen: 24
86.38.215.0/24 maxlen: 24
86.38.230.0/24 maxlen: 24
86.38.228.0/24 maxlen: 24
89.116.232.0/24 maxlen: 24
89.116.235.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.117.10.0/24 maxlen: 24
89.116.162.0/24 maxlen: 24
89.116.160.0/24 maxlen: 24
89.116.176.0/24 maxlen: 24
89.116.174.0/24 maxlen: 24
89.116.178.0/24 maxlen: 24
86.38.41.0/24 maxlen: 24
86.38.73.0/24 maxlen: 24
86.38.74.0/24 maxlen: 24
86.38.72.0/24 maxlen: 24
86.38.75.0/24 maxlen: 24
86.38.1.0/24 maxlen: 24
213.226.161.0/24 maxlen: 24
185.189.154.0/24 maxlen: 24
86.38.152.0/24 maxlen: 24
84.15.0.0/16 maxlen: 24
86.38.153.0/24 maxlen: 24
86.38.81.0/24 maxlen: 24
86.38.84.0/24 maxlen: 24
86.38.97.0/24 maxlen: 24
213.252.223.0/24 maxlen: 24
213.252.224.0/22 maxlen: 22
213.252.234.0/23 maxlen: 23
213.252.236.0/23 maxlen: 23
213.252.252.0/24 maxlen: 24
213.252.254.0/24 maxlen: 24
89.117.247.0/24 maxlen: 24
213.252.192.0/20 maxlen: 20
89.117.255.0/24 maxlen: 24
213.226.128.0/18 maxlen: 24
2a00:f500::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:5f:3b:c9:a6:d7:67:6e:f8:1c:58:ae:4e:28:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 2 13:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3513ad8098df23a2c9d9e98860e8b398e230cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b0:d3:14:04:5c:0e:c5:dd:ee:92:f3:c4:ca:
27:ed:13:68:0d:b3:4e:36:1a:11:66:02:6b:f2:71:
d0:36:d7:3b:a5:18:5a:31:14:6c:78:6c:b6:1d:44:
8a:68:c5:b2:8b:e7:f4:ed:14:bc:d6:71:b1:0c:31:
e6:57:1b:57:f4:d1:63:67:65:b0:9e:28:ed:b6:6c:
bf:00:cd:fd:47:96:db:28:71:72:c3:f3:c8:d4:b0:
c1:96:ad:9c:ca:4a:53:b8:be:a6:9f:a9:37:5d:2f:
8c:cd:75:ae:17:de:fd:8b:77:74:f0:fc:e3:6a:9c:
31:c9:be:33:f7:26:97:ee:fb:95:68:f4:89:65:7b:
df:cd:af:72:30:4f:e4:52:f7:61:7a:5d:9d:df:af:
a1:05:4f:e3:24:d6:40:60:f9:85:ef:51:c3:a7:27:
f1:7f:35:22:a9:35:ed:23:d8:97:e2:05:7f:b2:29:
80:b0:64:d3:c3:dd:0b:a2:0e:30:16:6b:0f:18:9e:
28:3b:c5:f8:d1:be:f6:7d:6e:ce:57:39:b0:96:85:
eb:de:b4:93:88:57:50:af:4c:b3:6c:3b:cc:3b:e1:
6c:e7:7f:3e:9e:ff:5b:9f:58:7b:92:96:0c:7c:67:
3b:30:29:0f:0a:21:a7:6e:4d:c3:55:1f:cd:db:53:
3e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:51:3A:D8:09:8D:F2:3A:2C:9D:9E:98:86:0E:8B:39:8E:23:0C:D6
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/o1E62AmN8josnZ6Yhg6LOY4jDNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.15.0.0/16
84.46.139.0/24
84.46.204.0/24
84.46.207.0/24
86.38.1.0/24
86.38.41.0/24
86.38.72.0/22
86.38.81.0/24
86.38.84.0/24
86.38.97.0/24
86.38.152.0/23
86.38.215.0/24
86.38.228.0/24
86.38.230.0/24
86.38.245.0/24
89.116.124.0/24
89.116.129.0/24
89.116.143.0/24
89.116.151.0/24
89.116.155.0/24
89.116.160.0/24
89.116.162.0/24
89.116.174.0/24
89.116.176.0/24
89.116.178.0/24
89.116.232.0/24
89.116.235.0/24
89.117.10.0/24
89.117.14.0/24
89.117.69.0/24
89.117.92.0/23
89.117.125.0/24
89.117.127.0/24
89.117.138.0/24
89.117.141.0/24
89.117.156.0/24
89.117.165.0/24
89.117.220.0/23
89.117.223.0/24
89.117.225.0/24
89.117.247.0/24
89.117.255.0/24
185.189.154.0/24
213.226.128.0/18
213.252.192.0/20
213.252.223.0-213.252.227.255
213.252.234.0-213.252.237.255
213.252.252.0/24
213.252.254.0/24
217.9.248.0/23
IPv6:
2a00:f500::/29
Signature Algorithm: sha256WithRSAEncryption
29:06:b5:8c:84:96:a6:3b:81:d6:c7:18:01:be:da:df:97:22:
f5:8e:17:00:6c:0f:bb:55:42:1b:f0:45:91:ff:ba:49:04:fa:
27:2d:37:0f:ef:a8:ac:a1:ad:38:76:3c:03:de:6c:a8:9d:44:
22:74:33:81:fc:57:f0:46:e0:44:b7:7e:7b:f7:9e:7a:ff:3d:
8f:bf:a7:74:4a:ac:43:e3:25:4e:e8:30:65:d2:7d:c1:74:d9:
7e:d0:5b:ee:81:c9:30:f6:9a:4d:ba:0c:1b:ce:4d:4a:84:d3:
86:1d:32:f5:b7:8b:36:8c:de:40:18:8f:39:01:8d:55:b4:5c:
cf:a0:82:84:03:d7:1d:38:76:04:57:47:74:d1:3a:e6:f2:c2:
da:34:73:3c:b9:c3:85:5e:f2:c4:dc:5a:da:5b:b1:5e:34:e4:
56:10:29:a8:68:4a:30:26:84:6a:c3:c5:a4:dc:bb:56:83:58:
36:a5:80:91:e1:89:29:b1:0c:a8:09:56:00:a5:23:85:6a:c7:
09:4c:c4:46:1f:b7:e6:c3:bc:4e:29:93:8b:be:6b:c4:ea:f6:
98:54:ae:e0:f8:13:61:55:9c:77:1e:f5:a5:8c:13:22:b2:22:
f2:41:c2:ab:b8:ce:7a:ae:69:5a:80:5c:f2:91:04:bf:8e:fb:
dd:97:e2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:26 2023 by rpki-client on console-fra.rpki-client.org