Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/TMMc3F3Sh0y2bK4jbpfHqsKp_x4.roa
File: TMMc3F3Sh0y2bK4jbpfHqsKp_x4.roa (raw, json)
Hash identifier: 2HocjHrMx/4WCxq4IUbSn8Al4fTqLFcy8DshiAN09y0=
Subject key identifier: 4C:C3:1C:DC:5D:D2:87:4C:B6:6C:AE:23:6E:97:C7:AA:C2:A9:FF:1E
Certificate issuer: /CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Certificate serial: 018AD0308C70093B96294D4FF0A76CE27A7C
Authority key identifier: 50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/TMMc3F3Sh0y2bK4jbpfHqsKp_x4.roa
Signing time: Tue 26 Sep 2023 06:32:37 +0000
ROA not before: Tue 26 Sep 2023 06:32:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204035
IP address blocks: 193.56.173.0/24 maxlen: 24
37.228.132.0/24 maxlen: 24
37.228.134.0/24 maxlen: 24
37.228.151.0/24 maxlen: 24
37.228.148.0/24 maxlen: 24
193.56.126.0/24 maxlen: 24
193.56.156.0/24 maxlen: 24
185.107.192.0/23 maxlen: 23
185.107.192.0/22 maxlen: 22
185.107.192.0/24 maxlen: 24
185.107.193.0/24 maxlen: 24
185.107.194.0/24 maxlen: 24
194.125.251.0/24 maxlen: 24
194.125.248.0/22 maxlen: 22
194.125.250.0/24 maxlen: 24
185.245.168.0/22 maxlen: 22
185.101.92.0/22 maxlen: 22
185.101.92.0/24 maxlen: 24
185.116.156.0/22 maxlen: 22
185.116.156.0/24 maxlen: 24
185.116.157.0/24 maxlen: 24
185.116.158.0/24 maxlen: 24
185.116.159.0/24 maxlen: 24
193.46.24.0/22 maxlen: 22
2a06:7f80::/29 maxlen: 29
2a06:7f80:3::/48 maxlen: 48
2a06:1c40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:30:8c:70:09:3b:96:29:4d:4f:f0:a7:6c:e2:7a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d18196b29f60e85d8712de4039a531cfc1ab31
Validity
Not Before: Sep 26 06:32:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cc31cdc5dd2874cb66cae236e97c7aac2a9ff1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:21:f4:a0:69:f1:b2:a2:30:de:d5:b5:76:ca:
ed:4c:23:9e:cf:27:20:51:de:1b:e4:54:6d:14:1e:
80:d7:4d:7f:8e:04:17:1e:f3:31:9e:e2:d5:06:50:
2c:7c:31:e2:a6:89:eb:b7:73:3d:9c:f0:91:60:ac:
ee:74:11:73:f7:d5:ff:93:a3:2b:3c:70:08:cc:5b:
88:40:f4:af:e6:75:1d:85:93:1b:11:1f:a3:31:27:
32:9e:cf:50:9d:69:21:2f:84:be:8f:e8:c6:56:6a:
3a:61:aa:63:3b:43:d9:6b:32:ae:6f:cd:ce:e3:8e:
32:ba:7e:04:fd:4e:ab:21:41:02:94:88:5e:44:a7:
00:45:01:cd:99:66:6e:46:df:8e:35:60:54:4f:0c:
39:06:3a:ec:41:83:1e:43:af:f6:26:c9:be:24:19:
d2:60:39:05:90:9c:78:f5:22:0a:e7:dd:05:23:3c:
09:df:66:d2:1a:5d:eb:cc:96:7d:a2:e6:44:b0:85:
af:46:82:90:54:1a:dc:4b:9a:79:1d:97:26:8f:ba:
73:d6:9e:48:a5:f5:cd:47:c6:ad:ac:e1:26:1b:2f:
1f:9f:a6:f3:46:d3:c8:da:85:7a:60:ac:34:a4:c8:
16:43:9b:e7:c3:e8:93:fb:4a:60:82:86:2f:b2:33:
1b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C3:1C:DC:5D:D2:87:4C:B6:6C:AE:23:6E:97:C7:AA:C2:A9:FF:1E
X509v3 Authority Key Identifier:
keyid:50:D1:81:96:B2:9F:60:E8:5D:87:12:DE:40:39:A5:31:CF:C1:AB:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNGBlrKfYOhdhxLeQDmlMc_BqzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/TMMc3F3Sh0y2bK4jbpfHqsKp_x4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/cbecf4-bced-4d83-bfca-b4a181cd40f6/1/UNGBlrKfYOhdhxLeQDmlMc_BqzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.132.0/24
37.228.134.0/24
37.228.148.0/24
37.228.151.0/24
185.101.92.0/22
185.107.192.0/22
185.116.156.0/22
185.245.168.0/22
193.46.24.0/22
193.56.126.0/24
193.56.156.0/24
193.56.173.0/24
194.125.248.0/22
IPv6:
2a06:1c40::/29
2a06:7f80::/29
Signature Algorithm: sha256WithRSAEncryption
01:3c:4e:65:79:af:67:70:f4:8c:59:03:60:3c:68:0f:15:01:
a8:8e:8e:de:6d:1a:3b:41:ef:0a:95:d9:f8:72:00:6d:4f:a7:
53:f2:23:97:a2:5c:6a:12:6e:30:93:07:5e:b1:82:35:32:ce:
9d:d8:ba:11:12:2f:b3:5a:e0:5d:6d:37:70:a8:9c:fe:35:4b:
f1:d7:28:8d:2c:8b:bc:61:58:ce:db:a7:b6:ca:e0:7d:ca:a6:
0d:af:02:d5:f1:61:9b:17:3a:b5:95:ad:bf:41:85:d3:6f:f9:
2b:4a:21:ce:f5:2b:20:8b:c2:b2:4a:b4:af:ec:bb:eb:2f:eb:
2b:17:86:99:d5:95:c3:42:f1:99:b9:50:7e:dc:0c:45:40:72:
46:77:3c:23:69:4f:b4:40:50:3e:ba:09:81:4d:79:e4:f7:05:
3c:f0:58:18:13:90:95:c1:bc:18:7f:42:5d:49:79:fc:2b:30:
3b:5a:cd:2b:3a:e2:f2:94:a2:14:a3:34:d3:9e:30:56:8d:29:
2e:cf:b5:8a:4c:12:b0:df:75:ba:a0:ee:38:5e:40:c4:9e:2b:
df:b1:cf:30:be:21:7b:fe:35:60:88:11:a4:c7:16:2c:00:23:
7b:c5:96:5b:a6:89:fe:d6:96:28:e8:e5:1f:79:62:b6:65:e4:
d7:2b:d8:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 26 07:38:22 2023 by rpki-client on console-fra.rpki-client.org