Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/WxL3-ulhcWNo0twlC7tEt70cvZs.roa
File: WxL3-ulhcWNo0twlC7tEt70cvZs.roa (raw, json)
Hash identifier: d4Dx13y7/m6TNbbhGiF4VM1PlMFapCnCQ824tpJhvVg=
Subject key identifier: 5B:12:F7:FA:E9:61:71:63:68:D2:DC:25:0B:BB:44:B7:BD:1C:BD:9B
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 01872C8FB8DCA508DA3603FC028BB7D0EBC3
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/WxL3-ulhcWNo0twlC7tEt70cvZs.roa
Signing time: Wed 29 Mar 2023 08:50:29 +0000
ROA not before: Wed 29 Mar 2023 08:50:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 82.210.192.0/18 maxlen: 18
82.210.224.0/19 maxlen: 19
78.140.64.0/24 maxlen: 24
78.140.64.0/21 maxlen: 21
82.210.254.0/24 maxlen: 24
78.140.65.0/24 maxlen: 24
78.140.64.0/18 maxlen: 18
78.140.67.0/24 maxlen: 24
82.210.255.0/24 maxlen: 24
78.140.66.0/24 maxlen: 24
78.140.68.0/24 maxlen: 24
78.140.72.0/22 maxlen: 22
78.140.72.0/24 maxlen: 24
78.140.76.0/24 maxlen: 24
78.140.76.0/22 maxlen: 22
78.140.81.0/24 maxlen: 24
78.140.80.0/23 maxlen: 23
78.140.80.0/24 maxlen: 24
93.122.80.0/22 maxlen: 22
93.122.84.0/22 maxlen: 22
81.7.208.0/22 maxlen: 22
81.7.208.0/21 maxlen: 21
93.122.88.0/22 maxlen: 22
93.122.92.0/22 maxlen: 22
81.7.216.0/21 maxlen: 21
81.7.216.0/22 maxlen: 22
81.7.220.0/22 maxlen: 22
93.122.44.0/22 maxlen: 22
93.122.40.0/22 maxlen: 22
93.122.48.0/22 maxlen: 22
93.122.52.0/22 maxlen: 22
93.122.56.0/22 maxlen: 22
93.122.60.0/22 maxlen: 22
93.122.64.0/22 maxlen: 22
81.7.192.0/19 maxlen: 19
93.122.68.0/22 maxlen: 22
93.122.72.0/21 maxlen: 21
93.122.0.0/17 maxlen: 17
2a01:666:400::/40 maxlen: 40
2a01:666::/40 maxlen: 40
2a01:666::/32 maxlen: 32
2a01:667::/40 maxlen: 40
2a01:667:400::/40 maxlen: 40
2a01:667::/32 maxlen: 32
2a01:664:1600::/40 maxlen: 40
2a01:664:1300::/40 maxlen: 40
2a01:664:1200::/40 maxlen: 40
2a01:664:1700::/40 maxlen: 40
2a01:664:1800::/40 maxlen: 40
2a01:664:1900::/40 maxlen: 40
2a01:664::/38 maxlen: 38
2a01:664:1a00::/40 maxlen: 40
2a01:664:800::/38 maxlen: 38
2a01:664:1200::/39 maxlen: 39
2a01:660::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:8f:b8:dc:a5:08:da:36:03:fc:02:8b:b7:d0:eb:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Mar 29 08:50:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b12f7fae961716368d2dc250bbb44b7bd1cbd9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:61:be:ed:b3:41:c5:74:fb:38:58:c0:b7:11:
bc:dd:ab:9c:70:60:75:a7:f1:0a:1a:ec:ad:3b:8d:
e6:be:a8:25:1f:4f:20:ec:af:a7:3e:5a:ae:a7:a6:
72:e1:96:bb:45:26:0c:b8:c5:b2:ea:22:72:0f:01:
99:b2:0e:c7:e5:d7:8b:ac:3f:8f:e8:84:13:28:8c:
7e:71:9f:6e:0d:2c:1f:41:73:1e:8e:73:af:ea:f2:
d8:2e:cc:1b:12:74:a7:4e:7a:66:4b:cc:3e:b8:2b:
8c:a5:c0:25:f9:d9:a4:9f:4b:c0:03:c5:32:24:42:
7a:66:66:2e:48:03:a9:e5:6d:92:2c:4a:72:02:4e:
59:c9:b6:90:da:1b:e8:bb:44:71:ed:78:e4:7e:9d:
49:a2:cd:46:24:ca:0e:c7:0b:fb:20:aa:83:73:95:
19:08:c6:90:ab:b1:66:b7:0d:31:79:50:22:c8:9e:
f0:5b:c9:d2:eb:4e:d7:d2:63:a2:2d:60:95:92:59:
e9:c4:71:b0:32:22:26:8d:12:b1:9d:f9:1d:aa:89:
4f:b2:e8:4e:33:3c:5a:f3:68:24:63:f5:08:d1:c0:
db:8a:0d:fb:d1:c9:04:59:fe:30:b3:1e:1e:a1:48:
b1:3c:0f:90:7a:77:e2:a9:77:fe:8c:82:a6:5e:3b:
e6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:12:F7:FA:E9:61:71:63:68:D2:DC:25:0B:BB:44:B7:BD:1C:BD:9B
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/WxL3-ulhcWNo0twlC7tEt70cvZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
81.7.192.0/19
82.210.192.0/18
93.122.0.0/17
IPv6:
2a01:660::/29
Signature Algorithm: sha256WithRSAEncryption
81:67:1b:c9:6e:ac:c7:f1:50:1a:15:f1:10:b1:5f:67:3b:a3:
92:d6:a0:36:20:15:26:d7:48:41:88:70:35:6e:23:68:10:ef:
17:ed:92:3f:e9:5f:56:bb:8f:cb:21:7d:78:d5:ef:85:e9:ff:
5b:25:d1:c7:4a:90:17:13:e2:05:26:d9:4e:db:a4:39:71:05:
40:34:47:e0:22:84:1e:0c:ae:64:f5:5a:ff:60:1c:36:69:10:
df:25:32:50:d2:2b:29:ce:92:2f:0e:6b:be:f8:86:4b:96:bd:
17:67:8d:0e:f9:68:27:47:1c:e1:ea:eb:cf:e5:81:0c:13:91:
4c:47:ce:99:d4:1a:23:de:27:91:94:85:6a:b2:1e:4a:60:7e:
85:a9:62:77:42:c7:ec:2e:0f:bf:e6:ad:17:fd:f2:a5:95:78:
c9:fa:c2:f0:99:c5:d4:c7:63:79:b2:11:8e:a2:55:7d:89:64:
4f:84:0e:38:38:cd:e9:bf:bc:ef:02:01:61:df:b0:0c:e8:6b:
40:9f:07:3c:a5:c8:61:ad:33:15:6f:78:17:2b:14:6f:aa:69:
55:9b:df:56:a6:f0:12:c9:a4:7a:35:19:6b:06:7e:5e:94:e7:
fb:ed:e6:e8:ee:bf:f1:ce:47:e4:41:bc:37:05:1c:7f:24:4f:
7f:82:f0:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org