Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/1nMmY1NWCoNuAiLX7CUwh23MKq0.roa
File: 1nMmY1NWCoNuAiLX7CUwh23MKq0.roa (raw, json)
Hash identifier: cwmDuxEhHfZ8Bm+r4jetI/Bm3LE07rXXhij8QtRKNJI=
Subject key identifier: D6:73:26:63:53:56:0A:83:6E:02:22:D7:EC:25:30:87:6D:CC:2A:AD
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 01856D387739680797929B8060DDA54C529D
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/1nMmY1NWCoNuAiLX7CUwh23MKq0.roa
Signing time: Sun 01 Jan 2023 12:04:55 +0000
ROA not before: Sun 01 Jan 2023 12:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48159
IP address blocks: 185.11.90.0/24 maxlen: 24
185.11.89.0/24 maxlen: 24
185.11.88.0/24 maxlen: 24
178.251.208.0/24 maxlen: 24
178.251.213.0/24 maxlen: 24
178.251.212.0/24 maxlen: 24
178.251.215.0/24 maxlen: 24
178.251.214.0/24 maxlen: 24
2a03:57c0:7c00::1208:201/128 maxlen: 128
2a03:57c0:7c00::1208:143/128 maxlen: 128
2a03:57c0:7c00::1208:3/128 maxlen: 128
2a03:57c0:7c00::1209:85/128 maxlen: 128
2a03:57c0:7c00::1208:45/128 maxlen: 128
2a03:57c0:7c00::1208:185/128 maxlen: 128
2a03:57c0:7c00::1209:211/128 maxlen: 128
2a03:57c0:7c00::1209:55/128 maxlen: 128
2a03:57c0:7c00::1209:155/128 maxlen: 128
2a03:57c0:7c00::1209:95/128 maxlen: 128
2a03:57c0:7c00::1208:95/128 maxlen: 128
2a03:57c0:7c00::1208:215/128 maxlen: 128
2a03:57c0:7c00::1208:55/128 maxlen: 128
2a03:57c0::/32 maxlen: 32
2a03:57c0:7c00::1208:220/128 maxlen: 128
2a03:57c0:7c00::1209:25/128 maxlen: 128
2a03:57c0:7c00::1209:165/128 maxlen: 128
2a03:57c0:7c00::1208:65/128 maxlen: 128
2a03:57c0:7c00::1208:165/128 maxlen: 128
2a03:57c0:7c00::1208:25/128 maxlen: 128
2a03:57c0:7c00::1209:27/128 maxlen: 128
2a03:57c0:7c00::1208:27/128 maxlen: 128
2a03:57c0:7c00::1209:135/128 maxlen: 128
2a03:57c0:7c00::1209:75/128 maxlen: 128
2a03:57c0:7c00::1208:235/128 maxlen: 128
2a03:57c0:7c00::1208:175/128 maxlen: 128
2a03:57c0:7c00::1208:75/128 maxlen: 128
2a03:57c0:7c00::1209:177/128 maxlen: 128
2a03:57c0:7c00::1208:137/128 maxlen: 128
2a03:57c0:7c00::1208:177/128 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:77:39:68:07:97:92:9b:80:60:dd:a5:4c:52:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Jan 1 12:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d673266353560a836e0222d7ec2530876dcc2aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a5:1b:5b:61:5a:6a:c0:c2:f0:1f:73:23:13:
57:6e:68:c7:b2:f4:ee:c1:8a:22:b7:93:8a:df:79:
f6:8a:4c:00:01:86:6e:10:ec:6a:40:ab:58:9f:6e:
26:3e:7b:5e:5b:25:6b:3b:17:6e:e0:2a:7c:11:d3:
4e:c1:e2:2f:92:6b:17:e4:98:e4:e4:49:dd:9b:2b:
cf:c0:b9:86:18:e2:71:07:fc:ee:0f:4e:52:db:46:
c1:ea:49:f8:bc:eb:64:c4:21:2e:ef:4f:ad:33:1a:
bb:a1:52:62:d9:3b:b0:7b:98:aa:87:1e:8b:b1:14:
5e:5f:20:ba:52:36:c4:46:a8:b7:09:35:42:8f:6d:
a2:e4:93:aa:70:8a:e8:f5:b2:a2:df:f0:4c:9f:47:
4b:97:66:1e:72:71:66:5b:0d:8c:ab:be:3e:63:f7:
b0:f0:db:34:d2:f2:2d:8e:ce:0d:4a:6c:9a:a9:92:
a4:f4:ff:99:ac:66:47:9d:08:77:69:3d:40:f4:fd:
61:53:8c:a8:ed:b9:6d:38:12:87:05:43:3c:ff:42:
3e:a5:d0:5a:9b:b6:8d:2d:95:62:28:5a:bd:c9:88:
37:2e:e6:1c:c4:ec:5e:3e:b6:46:13:14:28:14:0a:
94:d8:d0:af:2b:53:a5:b8:07:e7:05:b1:34:9d:5a:
1f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:73:26:63:53:56:0A:83:6E:02:22:D7:EC:25:30:87:6D:CC:2A:AD
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/1nMmY1NWCoNuAiLX7CUwh23MKq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.208.0/24
178.251.212.0/22
185.11.88.0-185.11.90.255
IPv6:
2a03:57c0::/32
Signature Algorithm: sha256WithRSAEncryption
a5:2b:e3:e6:17:3b:82:1c:8f:6c:01:8c:ad:84:35:03:ad:94:
be:f6:e0:a9:72:79:c1:4b:dd:ad:65:d0:4a:0a:cc:34:a9:fd:
eb:73:76:3c:e2:8c:c6:7b:b7:f4:37:41:36:17:27:f0:5c:76:
4c:4e:a1:90:26:29:5c:64:51:21:14:e2:f4:51:32:0a:b7:da:
70:61:0d:ef:f4:d7:3d:f9:75:c2:e5:da:bc:13:65:c4:df:d2:
e5:7b:ac:ce:43:81:c6:23:bf:2d:25:53:58:97:71:69:f2:fb:
ba:f7:d4:0f:03:77:f5:4b:e4:0e:34:4c:af:d6:96:e1:f4:c1:
be:f5:3d:3c:15:e0:31:1d:99:31:41:3d:af:7f:01:78:fd:0b:
50:24:d6:63:1e:58:8f:ac:1c:0b:4d:96:3c:35:c3:cd:22:25:
a8:b7:55:64:f5:40:e7:7c:ce:ca:a9:a9:5b:fc:d7:cd:2a:b4:
2e:60:15:b1:5a:e4:8b:32:97:c5:cd:25:7b:28:38:5c:9d:3a:
63:30:ab:db:88:f2:62:ce:c0:80:ee:97:b7:98:10:94:a7:12:
77:48:1e:9f:c1:70:83:10:c7:a0:37:de:f9:fb:d2:2c:f2:1e:
9b:43:24:35:a2:c2:2f:2b:e2:ed:8b:7e:7d:e8:e0:0f:ae:c5:
41:da:48:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:21 2024 by rpki-client on console-ams.rpki-client.org