Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/V02QTrls9u1Nup232GqxKXl9gWk.roa
File: V02QTrls9u1Nup232GqxKXl9gWk.roa (raw, json)
Hash identifier: /8SiCSjeW/wdjZ4VYUTDEiQmQzaSk8Dmpw+jQ8u0/1U=
Subject key identifier: 57:4D:90:4E:B9:6C:F6:ED:4D:BA:9D:B7:D8:6A:B1:29:79:7D:81:69
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018C53A87F53E648D253F84516D87E0269CE
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/V02QTrls9u1Nup232GqxKXl9gWk.roa
Signing time: Sun 10 Dec 2023 12:16:40 +0000
ROA not before: Sun 10 Dec 2023 12:16:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205647
IP address blocks: 151.242.0.0/21 maxlen: 21
151.242.8.0/22 maxlen: 22
31.56.116.0/24 maxlen: 24
151.241.224.0/21 maxlen: 21
151.247.216.0/21 maxlen: 21
151.247.214.0/23 maxlen: 23
151.247.224.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.237.0/24 maxlen: 24
151.247.238.0/23 maxlen: 23
151.247.240.0/24 maxlen: 24
151.247.236.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
151.247.248.0/22 maxlen: 22
31.58.240.0/20 maxlen: 20
151.244.56.0/21 maxlen: 21
151.244.52.0/22 maxlen: 22
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
151.244.64.0/21 maxlen: 21
151.244.72.0/22 maxlen: 22
151.244.80.0/21 maxlen: 21
151.240.240.0/21 maxlen: 21
31.59.12.0/22 maxlen: 22
151.244.88.0/21 maxlen: 21
94.183.192.0/18 maxlen: 18
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.0.0/18 maxlen: 18
94.182.244.0/23 maxlen: 23
94.182.248.0/23 maxlen: 23
94.183.0.0/18 maxlen: 18
151.240.80.0/21 maxlen: 21
94.182.192.0/18 maxlen: 18
94.182.206.0/24 maxlen: 24
94.182.204.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.205.0/24 maxlen: 24
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.222.0/23 maxlen: 23
94.182.232.0/23 maxlen: 23
94.182.228.0/22 maxlen: 22
94.182.240.0/23 maxlen: 23
94.182.234.0/23 maxlen: 23
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
94.183.128.0/18 maxlen: 18
31.58.236.0/22 maxlen: 22
151.244.48.0/22 maxlen: 22
94.183.64.0/18 maxlen: 18
94.182.41.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.60.0/22 maxlen: 22
94.182.64.0/18 maxlen: 18
94.182.72.0/21 maxlen: 21
94.182.97.192/28 maxlen: 28
94.182.0.0/18 maxlen: 18
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
94.182.82.0/24 maxlen: 24
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
94.182.128.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:53:a8:7f:53:e6:48:d2:53:f8:45:16:d8:7e:02:69:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Dec 10 12:16:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=574d904eb96cf6ed4dba9db7d86ab129797d8169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:36:cb:34:a6:e0:83:5e:54:8e:53:66:14:6d:
d9:fb:85:98:00:77:d6:04:ed:3f:3e:d9:f3:41:37:
df:26:9d:b5:1e:7c:ac:bc:b8:4e:7f:61:f4:c4:83:
0e:f6:b8:b3:db:8d:df:e3:6e:e9:34:f4:d8:f8:cb:
a1:3d:c4:42:16:2a:97:e1:f4:1a:df:36:66:66:2d:
a3:ad:9a:72:cf:48:3d:a0:7f:82:ab:6d:e9:90:23:
8d:15:13:07:76:32:df:84:71:c8:09:e0:c1:17:9a:
1a:d2:60:2d:db:77:39:dc:76:1f:31:f0:12:8d:eb:
86:bb:5a:fe:16:ec:d3:21:35:5a:7d:95:48:19:bb:
d1:07:67:8b:ac:b2:8f:78:19:6d:32:5c:92:38:ff:
97:4c:08:dd:15:e8:c2:b9:0c:c9:76:85:0a:28:7d:
16:7f:d6:f3:5b:15:ce:2f:f8:c0:ec:62:db:43:41:
22:0f:3f:76:3c:00:b2:64:1c:6c:91:bc:b8:d0:28:
c1:7c:8f:ee:5a:61:4a:6d:7a:71:0c:ac:ae:0c:56:
77:90:58:55:bd:d7:e2:af:d2:16:2f:07:b8:cb:2b:
14:80:b3:83:ff:51:76:ca:f9:a8:88:2f:ca:f0:2a:
3f:70:8e:8a:87:89:48:ac:4a:90:e8:45:ce:f9:6c:
0e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4D:90:4E:B9:6C:F6:ED:4D:BA:9D:B7:D8:6A:B1:29:79:7D:81:69
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/V02QTrls9u1Nup232GqxKXl9gWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.58.236.0-31.58.255.255
31.59.12.0/22
85.15.48.0/23
94.182.0.0/15
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.241.224.0/21
151.242.0.0-151.242.11.255
151.244.48.0-151.244.75.255
151.244.80.0/20
151.247.214.0-151.247.241.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
18:47:46:77:9c:e1:3b:55:39:0a:45:26:4d:cc:a3:67:f9:e6:
7d:4e:23:c9:48:fb:2c:c2:d9:f8:d4:3b:ca:f4:78:a6:cf:24:
4d:21:6e:1e:89:4c:74:94:f1:ce:35:19:b2:dc:5c:16:89:c2:
92:64:e5:78:b7:f4:8f:2f:52:63:95:3e:4a:05:7f:88:d8:2a:
9b:58:1a:b8:2d:79:e8:f0:1f:e5:9a:7a:68:df:47:9b:56:0a:
42:a4:a3:dc:94:ca:82:83:d1:33:26:78:f8:2d:eb:b9:1d:87:
ae:59:0c:f0:b0:92:1a:3d:77:03:62:4c:54:84:6f:42:97:eb:
51:8f:cd:d9:35:ff:75:eb:82:37:3c:1b:d7:27:01:85:5b:c5:
76:5f:3c:31:86:91:22:44:79:86:6a:8f:d3:ef:6b:82:dd:13:
42:39:d9:02:f0:d8:15:19:c2:f3:ef:43:b0:4c:29:37:24:c6:
c6:8a:f6:be:2d:09:ee:79:8a:a5:e8:bf:ae:c5:85:48:dc:06:
31:87:84:2a:57:08:7b:04:f6:79:0c:c2:54:f7:56:2c:1f:fe:
aa:97:45:da:21:63:8e:55:cf:f8:8b:8b:8d:fe:3e:04:11:d4:
77:71:a9:d6:d8:c6:dc:65:cb:eb:41:c5:f8:72:b5:0f:e2:87:
27:6b:e0:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 13 11:14:15 2023 by rpki-client on console-fra.rpki-client.org