Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/eQ6IfokufjCMxTzKLueMs2Obg0k.roa
File: eQ6IfokufjCMxTzKLueMs2Obg0k.roa (raw, json)
Hash identifier: AROg9PUhubv4jtJ0pLpFexutlCNjRnvKM63wRdiG6uc=
Subject key identifier: 79:0E:88:7E:89:2E:7E:30:8C:C5:3C:CA:2E:E7:8C:B3:63:9B:83:49
Certificate issuer: /CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Certificate serial: 018572B429A5CB70CCB401AD9A69EC8D60CC
Authority key identifier: DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/eQ6IfokufjCMxTzKLueMs2Obg0k.roa
Signing time: Mon 02 Jan 2023 13:38:07 +0000
ROA not before: Mon 02 Jan 2023 13:38:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52145
IP address blocks: 185.21.120.0/24 maxlen: 24
185.21.121.0/24 maxlen: 24
185.21.122.0/24 maxlen: 24
185.21.123.0/24 maxlen: 24
185.21.120.0/22 maxlen: 22
46.253.82.0/24 maxlen: 24
46.253.84.0/23 maxlen: 23
46.253.85.0/24 maxlen: 24
46.253.84.0/24 maxlen: 24
46.253.82.0/23 maxlen: 23
46.253.83.0/24 maxlen: 24
46.253.80.0/20 maxlen: 20
46.253.80.0/23 maxlen: 23
46.253.80.0/21 maxlen: 21
46.253.80.0/24 maxlen: 24
46.253.81.0/24 maxlen: 24
46.253.86.0/24 maxlen: 24
46.253.87.0/24 maxlen: 24
46.253.88.0/24 maxlen: 24
46.253.89.0/24 maxlen: 24
46.253.90.0/24 maxlen: 24
46.253.91.0/24 maxlen: 24
46.253.88.0/21 maxlen: 21
46.253.86.0/23 maxlen: 23
46.253.92.0/24 maxlen: 24
46.253.93.0/24 maxlen: 24
46.253.94.0/24 maxlen: 24
46.253.95.0/24 maxlen: 24
185.71.140.0/24 maxlen: 24
185.71.141.0/24 maxlen: 24
185.71.142.0/24 maxlen: 24
185.71.143.0/24 maxlen: 24
185.71.140.0/22 maxlen: 22
2a04:19c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:29:a5:cb:70:cc:b4:01:ad:9a:69:ec:8d:60:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Validity
Not Before: Jan 2 13:38:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=790e887e892e7e308cc53cca2ee78cb3639b8349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a3:fb:64:7b:23:ce:f7:8f:93:a0:75:dc:d9:
52:ad:2b:ef:f3:8f:70:21:c0:b2:b1:1c:61:e7:ac:
20:1f:42:4a:93:a2:b9:3d:2b:a3:60:72:5b:a5:59:
3e:e7:d4:7d:0a:e2:80:7c:65:62:99:26:b1:75:76:
5d:a8:c5:de:8c:bb:e4:0d:10:3b:fc:d8:04:21:67:
40:6b:1f:99:e1:fd:4c:93:46:b6:f9:a1:1d:4e:e7:
d9:38:ef:a6:e4:3d:b4:15:49:8c:72:ea:20:39:e6:
6f:f3:82:57:a4:8d:27:f2:fc:6a:c3:a0:e2:14:b3:
f3:36:aa:8b:f2:10:e7:89:e7:d2:ec:97:8e:97:2c:
a3:b3:58:b5:69:7e:97:56:32:c3:cc:0d:8f:9a:48:
7b:c2:5c:95:31:d8:3b:99:5f:11:b5:3f:aa:1d:83:
d1:e5:ed:79:51:8b:44:30:b6:7f:89:e9:40:a1:1d:
e7:cd:f5:89:05:f7:08:f6:fe:7f:8e:5c:71:6d:2a:
d3:f8:85:d5:cd:8e:d1:e7:37:39:93:a7:e0:03:e5:
da:65:c1:8e:18:0f:62:12:7d:4b:75:ba:5a:b0:80:
8b:6a:47:03:66:00:12:1c:91:ef:6b:0d:a7:3e:85:
b2:b4:35:af:ab:bf:5a:4a:72:48:c7:de:db:a0:09:
da:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0E:88:7E:89:2E:7E:30:8C:C5:3C:CA:2E:E7:8C:B3:63:9B:83:49
X509v3 Authority Key Identifier:
keyid:DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/eQ6IfokufjCMxTzKLueMs2Obg0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.80.0/20
185.21.120.0/22
185.71.140.0/22
IPv6:
2a04:19c0::/29
Signature Algorithm: sha256WithRSAEncryption
63:03:21:88:92:64:18:2a:cd:21:fc:23:86:37:17:85:14:e5:
38:62:81:33:20:3b:3e:40:14:38:5b:ab:3b:03:2c:19:6b:77:
14:36:fd:09:ac:51:75:93:74:c2:0a:b9:6c:f6:03:31:5a:b8:
2a:58:7a:c4:58:dc:a7:6b:70:5a:ec:50:1e:74:76:34:71:15:
e2:85:81:74:ea:69:7e:1c:06:54:19:83:b0:2b:1f:98:0c:27:
a7:8d:92:54:b0:a0:0c:43:3e:4a:d7:63:73:f0:44:42:3c:d4:
39:37:6a:98:08:8f:ae:e1:46:04:d1:ba:78:26:3c:fb:1c:b5:
09:9c:1d:ea:d2:8c:4c:b6:fe:4d:8b:a1:ed:f4:21:1c:1c:b0:
24:91:92:49:73:f3:3c:43:6d:f0:05:50:b5:f8:eb:51:fa:8d:
87:aa:ae:18:4a:94:a7:92:82:fd:3d:ea:07:2a:ad:85:ae:d8:
57:4a:02:35:94:83:9b:4f:ba:7a:ed:a9:a5:b8:93:ef:c6:06:
89:9a:95:ec:bb:f5:2b:01:95:79:28:04:2e:ed:5a:0d:1f:ca:
ea:87:27:77:0b:cd:88:50:20:0b:b8:11:70:a2:5c:67:e6:80:
33:4e:0e:1b:da:88:2d:9f:c3:b0:e0:75:a9:84:6f:69:23:53:
2f:df:b9:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:03 2023 by rpki-client on console-fra.rpki-client.org