Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/Y3sUsI0h-qLf19fSe2bBwABiRJo.roa
File: Y3sUsI0h-qLf19fSe2bBwABiRJo.roa (raw, json)
Hash identifier: Z945V82hV2dpruzZPTz4Pf5SisXR+P4kFLqO2+bmtKU=
Subject key identifier: 63:7B:14:B0:8D:21:FA:A2:DF:D7:D7:D2:7B:66:C1:C0:00:62:44:9A
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 0188AAA0E9B8B6E07F20486F549410EA0263
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/Y3sUsI0h-qLf19fSe2bBwABiRJo.roa
Signing time: Sun 11 Jun 2023 13:24:12 +0000
ROA not before: Sun 11 Jun 2023 13:24:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205647
IP address blocks: 151.242.0.0/21 maxlen: 21
31.56.116.0/24 maxlen: 24
151.241.224.0/21 maxlen: 21
151.247.214.0/23 maxlen: 23
151.247.216.0/21 maxlen: 21
151.247.224.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.238.0/23 maxlen: 23
151.247.237.0/24 maxlen: 24
151.247.240.0/24 maxlen: 24
151.247.236.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
151.247.248.0/22 maxlen: 22
31.58.240.0/20 maxlen: 20
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
151.240.240.0/21 maxlen: 21
31.59.12.0/22 maxlen: 22
94.183.192.0/18 maxlen: 18
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.0.0/18 maxlen: 18
94.183.0.0/18 maxlen: 18
151.240.80.0/21 maxlen: 21
94.182.192.0/18 maxlen: 18
94.182.204.0/24 maxlen: 24
94.182.205.0/24 maxlen: 24
94.182.206.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.222.0/23 maxlen: 23
94.182.228.0/22 maxlen: 22
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
94.183.128.0/18 maxlen: 18
31.58.236.0/22 maxlen: 22
94.183.64.0/18 maxlen: 18
94.182.41.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.60.0/22 maxlen: 22
94.182.64.0/18 maxlen: 18
94.182.72.0/21 maxlen: 21
94.182.97.192/28 maxlen: 28
94.182.0.0/18 maxlen: 18
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
94.182.82.0/24 maxlen: 24
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
94.182.128.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:aa:a0:e9:b8:b6:e0:7f:20:48:6f:54:94:10:ea:02:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Jun 11 13:24:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=637b14b08d21faa2dfd7d7d27b66c1c00062449a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:49:89:25:7e:03:8b:85:36:d1:b4:eb:b2:b7:
8b:d5:c4:5f:d9:52:57:2d:76:6a:6b:3a:7e:32:6b:
33:1e:b8:df:a0:fc:a8:58:ac:0d:24:4d:38:b8:c7:
1b:df:00:d7:fb:fb:0c:68:4f:20:85:42:f1:39:af:
14:ab:6c:c3:73:76:e3:78:8a:3d:af:cc:4f:ef:28:
89:d4:05:40:68:b2:b8:d3:df:58:0b:f0:76:91:0a:
c3:ab:e4:79:5e:ad:17:cf:68:2c:0c:52:7a:7d:ee:
ac:14:cf:09:c0:09:94:08:37:3e:4f:89:a8:3e:d4:
8a:9a:25:27:c0:62:ee:8d:2c:b0:c4:13:69:c3:26:
f2:36:f9:cc:a2:58:06:a8:84:ce:fb:f7:0b:ed:b1:
be:90:74:2c:66:8d:36:64:89:6d:e1:7a:51:53:96:
cf:80:9b:2f:da:14:60:0e:5b:75:90:9a:c4:a4:6a:
8c:90:9c:fa:97:93:4f:7c:8e:db:56:4c:0d:f0:e5:
02:16:51:c2:30:ea:8a:d5:92:6c:66:e7:db:31:b5:
19:01:24:3f:3e:08:5f:6b:6b:cd:0a:77:75:1f:bf:
24:2b:15:95:08:7b:92:1f:2a:02:3f:59:df:dd:01:
0a:55:40:a0:41:66:c5:e9:82:b1:f9:75:ec:75:5a:
eb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7B:14:B0:8D:21:FA:A2:DF:D7:D7:D2:7B:66:C1:C0:00:62:44:9A
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/Y3sUsI0h-qLf19fSe2bBwABiRJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.58.236.0-31.58.255.255
31.59.12.0/22
85.15.48.0/23
94.182.0.0/15
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.241.224.0/21
151.242.0.0/21
151.247.214.0-151.247.241.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
23:01:bc:03:12:41:ee:22:c4:97:94:7a:5d:69:79:df:9c:5f:
75:f6:d8:c2:05:d4:bc:24:4b:30:1a:5f:46:ee:14:a4:54:8e:
22:72:b3:b6:12:a8:9a:24:e5:6f:a8:1d:4c:60:8b:7e:48:89:
a1:b8:55:fe:b3:7c:ce:89:6a:e0:23:80:f3:0a:ac:66:92:80:
8f:6a:8b:1f:f2:43:db:2e:98:a9:ed:ce:86:f8:6d:b1:6b:21:
3d:91:ed:e8:af:c5:3e:46:46:af:c0:87:c2:a3:c5:46:ed:f0:
61:a0:84:f0:75:b4:96:26:4a:fc:61:56:fd:bf:42:38:81:e3:
55:4b:47:c9:95:e6:2e:8d:41:ca:77:82:53:01:0a:07:f7:46:
ba:bf:e1:79:dc:90:11:4e:72:c3:ae:91:a0:d3:f3:d1:6c:8e:
39:ab:84:cf:22:cd:17:e1:b5:73:cc:8b:cc:d4:ab:78:16:e6:
8a:4b:df:ac:36:1b:72:78:75:00:e6:a8:71:64:12:a4:b4:90:
c1:e5:49:c2:39:01:96:d4:0c:3a:01:2d:df:8f:59:4c:fe:14:
62:bf:b4:f0:dd:7c:a0:35:60:6a:86:25:6f:64:64:cf:40:70:
b6:45:8e:f2:4a:05:2c:f9:a2:dd:05:a9:c1:cb:34:c8:17:8a:
2f:1e:a6:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-ams.rpki-client.org