Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/pQI4_8-VxoA6i624PfztjKIRU5Y.roa
File: pQI4_8-VxoA6i624PfztjKIRU5Y.roa (raw, json)
Hash identifier: dCxk9f7mGw+XZpVJJY40szuJqc9wqEG57c8SWq3iPGQ=
Subject key identifier: A5:02:38:FF:CF:95:C6:80:3A:8B:AD:B8:3D:FC:ED:8C:A2:11:53:96
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01864598D169051C653F0841CE1651D36233
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/pQI4_8-VxoA6i624PfztjKIRU5Y.roa
Signing time: Sun 12 Feb 2023 12:28:08 +0000
ROA not before: Sun 12 Feb 2023 12:28:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202723
IP address blocks: 185.112.59.0/24 maxlen: 24
185.177.237.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.79.138.0/24 maxlen: 24
185.24.109.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.75.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:45:98:d1:69:05:1c:65:3f:08:41:ce:16:51:d3:62:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 12 12:28:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a50238ffcf95c6803a8badb83dfced8ca2115396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:78:6f:46:fb:bf:91:27:12:87:37:37:b3:6d:
a5:4a:5a:c0:15:3a:d1:75:29:39:58:58:f4:f0:51:
43:ea:c8:26:1d:20:fd:40:63:35:b9:d3:2a:74:fa:
87:e0:2e:90:c3:fa:6a:f8:30:32:2c:55:0a:67:90:
4e:52:9c:0e:10:aa:8b:db:6c:a9:7c:dc:e6:28:87:
ac:00:7f:77:a7:96:fa:ad:23:20:ca:29:ce:9c:1d:
54:03:de:cd:09:6e:c6:0b:41:28:ac:6c:4b:ff:89:
f7:36:be:12:18:73:b4:b7:51:35:c6:4d:0d:5f:95:
5b:40:90:40:dc:04:f3:f1:8b:58:49:c1:01:7b:10:
b3:4b:1a:a9:2f:ac:cd:4f:46:29:5e:5d:b1:a6:16:
e3:ee:79:e6:4d:bf:7e:40:f2:30:5e:98:84:b7:c2:
fa:bb:7a:7e:eb:87:34:db:17:7d:a1:bb:fa:c7:1b:
d8:35:56:56:7c:78:42:9c:92:a2:02:63:16:e3:fd:
ce:cf:6a:1c:12:3c:61:a5:ff:93:3d:b6:6f:39:3f:
3e:5c:3b:db:a8:6a:35:33:9e:88:86:b0:f7:d6:3b:
08:d0:5c:05:8d:92:43:cd:5f:08:b6:4b:d9:e5:62:
76:2f:99:c9:9c:58:10:78:0f:6a:81:2e:6c:c0:40:
d5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:02:38:FF:CF:95:C6:80:3A:8B:AD:B8:3D:FC:ED:8C:A2:11:53:96
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/pQI4_8-VxoA6i624PfztjKIRU5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.109.0/24
185.75.134.0/24
185.77.138.0/23
185.79.138.0/24
185.105.47.0/24
185.112.59.0/24
185.177.237.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:45:9c:f9:72:48:b7:a5:36:22:68:08:37:dc:46:46:19:e2:
7f:ce:71:3b:4e:4a:01:03:10:8f:fa:c3:89:cd:ba:4c:86:2c:
87:44:cc:31:6e:04:59:85:0c:84:61:66:b9:f9:1a:e6:b0:88:
7b:07:29:38:67:da:b6:2a:43:8c:b8:79:db:57:1c:5f:08:d6:
d9:98:56:df:9b:8e:3a:79:11:38:b3:e8:e1:2e:91:a6:83:e3:
7c:d8:8c:3a:60:b6:d1:97:24:da:f7:86:b7:6f:f8:56:cb:45:
32:41:98:07:bb:84:ba:44:af:0f:df:8b:63:7e:8d:7c:7d:61:
d4:b0:6d:00:a1:3e:38:cd:85:d4:45:47:00:b3:c8:59:09:82:
e5:c8:21:44:7f:ff:d9:37:16:08:de:1c:14:ba:39:54:52:5a:
2b:82:fd:0c:68:f8:5a:ea:f5:e5:d6:b3:26:8a:24:73:38:1b:
3c:37:b2:3e:0b:3e:6b:f8:34:7d:b2:a7:80:b9:15:aa:c2:e2:
1a:a0:d2:b6:ec:71:c5:95:38:37:43:6e:67:8c:83:5f:cc:6f:
2b:ce:6c:c6:6c:0c:47:67:85:1d:e2:18:8e:e0:e3:f4:10:77:
cf:a4:d3:35:ac:40:5c:94:21:ea:20:22:92:64:6a:4f:c4:b3:
b3:33:26:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-ams.rpki-client.org