Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/CcqhWwtkpq6IKHJWggt0L19dzuI.roa
File: CcqhWwtkpq6IKHJWggt0L19dzuI.roa (raw, json)
Hash identifier: aKMSmSo1A2H3eQ42ELz509afK2eqE5DM6PzPCVk2AxM=
Subject key identifier: 09:CA:A1:5B:0B:64:A6:AE:88:28:72:56:82:0B:74:2F:5F:5D:CE:E2
Certificate issuer: /CN=f992d817ec34b4731d8d36c7b094d2b045d0bc7c
Certificate serial: 0187C3ED9AD36E2250EC785E6A39E88C01CB
Authority key identifier: F9:92:D8:17:EC:34:B4:73:1D:8D:36:C7:B0:94:D2:B0:45:D0:BC:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ZLYF-w0tHMdjTbHsJTSsEXQvHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/CcqhWwtkpq6IKHJWggt0L19dzuI.roa
Signing time: Thu 27 Apr 2023 18:15:41 +0000
ROA not before: Thu 27 Apr 2023 18:15:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51185
IP address blocks: 94.124.64.0/21 maxlen: 21
94.124.67.0/24 maxlen: 24
94.124.65.0/24 maxlen: 24
185.45.208.0/24 maxlen: 24
185.45.209.0/24 maxlen: 24
185.45.210.0/24 maxlen: 24
185.45.211.0/24 maxlen: 24
178.248.52.0/24 maxlen: 24
178.248.53.0/24 maxlen: 24
178.248.54.0/24 maxlen: 24
178.248.55.0/24 maxlen: 24
185.187.156.0/24 maxlen: 24
185.187.157.0/24 maxlen: 24
185.187.158.0/24 maxlen: 24
185.187.159.0/24 maxlen: 24
178.248.48.0/24 maxlen: 24
178.248.49.0/24 maxlen: 24
178.248.50.0/24 maxlen: 24
178.248.51.0/24 maxlen: 24
2a02:2891:13::/48 maxlen: 48
2a02:2891:4::/48 maxlen: 48
2a02:2890::/48 maxlen: 48
2a02:2891:29::/48 maxlen: 48
2a02:2891:10::/48 maxlen: 48
2a02:2890:ffff::/48 maxlen: 48
2a02:2891:15::/48 maxlen: 48
2a02:2891:1::/48 maxlen: 48
2a02:2892:36::/48 maxlen: 48
2a02:2891:32::/48 maxlen: 48
2a02:2891:12::/48 maxlen: 48
2a02:2892:40::/48 maxlen: 48
2a02:2891:40::/48 maxlen: 48
2a02:2891::/48 maxlen: 48
2a02:2892:32::/48 maxlen: 48
2a02:2891:16::/48 maxlen: 48
2a02:2891:11::/48 maxlen: 48
2a02:2891:2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c3:ed:9a:d3:6e:22:50:ec:78:5e:6a:39:e8:8c:01:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f992d817ec34b4731d8d36c7b094d2b045d0bc7c
Validity
Not Before: Apr 27 18:15:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09caa15b0b64a6ae88287256820b742f5f5dcee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:2e:0d:9f:6c:9e:40:f3:ce:18:a9:3f:af:a1:
f1:d2:33:c0:bd:6e:07:a8:a2:b4:dc:e3:89:46:35:
93:25:91:eb:60:11:75:74:e6:d9:e8:b2:df:17:55:
68:47:38:98:1f:1e:c5:fb:54:cb:bb:50:6d:89:00:
53:48:03:38:62:07:3d:6c:5a:a3:b2:c0:04:4a:25:
3d:34:51:55:eb:46:e2:b3:e2:03:45:06:fd:aa:49:
a6:e2:e0:72:59:e3:3c:ed:34:d1:97:e3:f1:e7:90:
73:20:69:bd:80:00:fd:76:61:6b:e5:13:8c:98:3f:
e9:f4:c4:79:d2:16:9c:b3:25:cf:3c:cc:95:fe:ec:
3c:81:6d:9b:fb:e3:69:0a:49:10:53:9d:53:02:f1:
9a:e0:90:5d:bd:e1:27:a4:5b:51:91:4b:0b:2d:b4:
9a:70:d0:9b:c5:f0:d0:13:dc:5d:00:8a:80:fa:ac:
5f:53:a0:6b:ea:e9:fd:48:25:12:a9:4c:77:ea:67:
7e:52:39:f9:52:ac:a3:cd:6e:5d:ed:fe:ee:5b:d1:
8e:d5:dc:74:b2:d9:b7:d7:e9:c5:27:2d:f0:9a:6f:
ad:d2:67:1b:41:98:9d:d5:61:66:3d:bc:bb:f3:47:
21:3e:29:f2:c8:88:e0:d6:40:82:2e:05:cb:dc:8c:
e8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CA:A1:5B:0B:64:A6:AE:88:28:72:56:82:0B:74:2F:5F:5D:CE:E2
X509v3 Authority Key Identifier:
keyid:F9:92:D8:17:EC:34:B4:73:1D:8D:36:C7:B0:94:D2:B0:45:D0:BC:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ZLYF-w0tHMdjTbHsJTSsEXQvHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/CcqhWwtkpq6IKHJWggt0L19dzuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/b3a111-08a0-475d-b691-bdc90a15f7f3/1/1-ZLYF-w0tHMdjTbHsJTSsEXQvHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.64.0/21
178.248.48.0/21
185.45.208.0/22
185.187.156.0/22
IPv6:
2a02:2890::/48
2a02:2890:ffff::-2a02:2891:2:ffff:ffff:ffff:ffff:ffff
2a02:2891:4::/48
2a02:2891:10::/46
2a02:2891:15::-2a02:2891:16:ffff:ffff:ffff:ffff:ffff
2a02:2891:29::/48
2a02:2891:32::/48
2a02:2891:40::/48
2a02:2892:32::/48
2a02:2892:36::/48
2a02:2892:40::/48
Signature Algorithm: sha256WithRSAEncryption
69:86:c6:55:21:1a:50:c6:0a:36:ca:11:d7:45:5e:9b:4e:6e:
6a:e8:d7:67:50:f4:02:a7:f7:96:c8:53:0d:21:e6:c5:8c:d9:
6a:00:0e:35:76:36:90:47:e8:ee:ed:1f:7b:96:67:7f:57:d0:
91:7b:19:08:4e:f1:55:9a:60:4c:7b:08:9a:da:bb:a1:37:13:
20:d7:ef:79:60:af:48:99:ae:0f:d8:96:03:3f:3e:ff:59:89:
56:40:df:44:df:a4:4c:34:f8:de:c5:01:32:81:fe:24:eb:63:
8e:8a:66:2e:d1:8a:68:bc:44:92:5a:74:23:bf:dc:45:3c:7f:
e4:b7:8a:80:8c:cb:c7:a0:b2:21:98:e1:c1:57:cc:09:69:75:
e2:4f:36:65:05:fb:e7:d6:56:06:38:3e:17:ce:d1:3c:1d:03:
b1:46:7a:30:b5:46:4e:a9:64:d4:ff:68:f7:3b:e1:ff:13:8f:
3e:56:d9:60:b6:33:34:09:49:f6:1c:d5:fa:b8:19:82:83:6d:
0a:32:f6:85:3e:1a:81:fe:bd:92:b7:b1:09:d6:ca:ae:9a:fc:
31:5d:09:10:a6:bc:a3:52:a3:95:ca:ba:1a:20:01:b9:88:dd:
d1:15:bc:16:a7:bf:4a:4e:74:ce:79:59:18:fd:fa:4d:04:66:
21:53:4f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:37 2023 by rpki-client on console-fra.rpki-client.org