Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/fVne7gFN_BCojU-gtkhNVUZCqLM.roa
File: fVne7gFN_BCojU-gtkhNVUZCqLM.roa (raw, json)
Hash identifier: 8Op028rvMKtoRY/QsGgixXxJk83K4gK9doC9BOpkb4w=
Subject key identifier: 7D:59:DE:EE:01:4D:FC:10:A8:8D:4F:A0:B6:48:4D:55:46:42:A8:B3
Certificate issuer: /CN=c1098a1905bbd3381533828f6b7fd227170431ef
Certificate serial: 018572E7FA684B5F82C13234DF4762A5EA74
Authority key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/fVne7gFN_BCojU-gtkhNVUZCqLM.roa
Signing time: Mon 02 Jan 2023 14:34:43 +0000
ROA not before: Mon 02 Jan 2023 14:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57324
IP address blocks: 109.230.112.0/24 maxlen: 24
202.164.192.0/24 maxlen: 24
202.164.195.0/24 maxlen: 24
202.164.194.0/24 maxlen: 24
109.230.113.0/24 maxlen: 24
109.230.115.0/24 maxlen: 24
109.230.117.0/24 maxlen: 24
109.230.116.0/24 maxlen: 24
109.230.118.0/24 maxlen: 24
79.132.195.0/24 maxlen: 24
79.132.196.0/24 maxlen: 24
109.230.114.0/24 maxlen: 24
202.164.193.0/24 maxlen: 24
79.132.198.0/24 maxlen: 24
79.132.199.0/24 maxlen: 24
79.132.197.0/24 maxlen: 24
202.164.198.0/24 maxlen: 24
202.164.196.0/24 maxlen: 24
202.164.197.0/24 maxlen: 24
202.164.199.0/24 maxlen: 24
122.102.117.0/24 maxlen: 24
122.102.118.0/24 maxlen: 24
122.102.116.0/24 maxlen: 24
202.164.205.0/24 maxlen: 24
109.230.124.0/24 maxlen: 24
109.230.125.0/24 maxlen: 24
202.164.203.0/24 maxlen: 24
109.230.122.0/24 maxlen: 24
109.230.121.0/24 maxlen: 24
122.102.119.0/24 maxlen: 24
109.230.123.0/24 maxlen: 24
202.164.204.0/24 maxlen: 24
202.164.201.0/24 maxlen: 24
202.164.200.0/24 maxlen: 24
202.164.202.0/24 maxlen: 24
109.230.120.0/24 maxlen: 24
109.230.119.0/24 maxlen: 24
109.230.127.0/24 maxlen: 24
109.230.126.0/24 maxlen: 24
86.111.144.0/24 maxlen: 24
86.111.145.0/24 maxlen: 24
86.111.146.0/24 maxlen: 24
86.111.147.0/24 maxlen: 24
185.113.105.0/24 maxlen: 24
185.113.107.0/24 maxlen: 24
2a03:c340::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e7:fa:68:4b:5f:82:c1:32:34:df:47:62:a5:ea:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Validity
Not Before: Jan 2 14:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d59deee014dfc10a88d4fa0b6484d554642a8b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5c:dc:46:39:96:25:37:45:be:ce:df:cf:ea:
62:4c:f2:23:95:e6:f3:0c:bd:c8:d8:30:07:cc:4c:
da:14:e9:1c:f2:fd:26:e3:c3:c7:62:4b:5f:9a:27:
5d:8c:c4:ed:34:e1:4c:b9:67:6d:04:c0:4e:b1:dc:
ee:db:8b:fb:3a:1d:3c:66:83:52:2e:91:d4:ec:dd:
8a:7c:1b:74:a1:2c:2a:64:f5:bc:83:17:f2:84:c6:
91:27:73:64:0c:77:9d:84:5f:da:51:5e:9b:b8:f7:
51:1c:96:83:35:e0:38:b2:19:40:35:76:8b:67:7d:
e3:da:fb:da:60:8f:ff:b2:0a:bf:ef:7a:1b:44:dc:
ad:bd:3a:5d:ca:02:88:ea:d2:7c:ae:05:8c:81:d8:
c3:44:a4:fd:0a:eb:21:42:4a:19:df:9b:fb:7a:0f:
6b:ef:63:7c:a4:05:cc:ee:02:c7:6c:c4:41:db:c7:
34:78:20:b7:51:10:e9:4f:3c:d9:04:14:25:38:77:
13:25:33:63:24:e0:3e:6e:9d:8f:a0:e3:5a:e4:86:
e3:d9:ce:6d:47:6e:ba:89:69:98:52:e5:5e:15:54:
27:92:d2:64:f0:57:7c:9c:04:71:2f:9f:f9:89:01:
46:e0:6d:da:80:aa:f2:8e:bb:dd:83:55:d1:2c:d7:
16:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:59:DE:EE:01:4D:FC:10:A8:8D:4F:A0:B6:48:4D:55:46:42:A8:B3
X509v3 Authority Key Identifier:
keyid:C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/fVne7gFN_BCojU-gtkhNVUZCqLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0/20
122.102.116.0/22
185.113.105.0/24
185.113.107.0/24
202.164.192.0-202.164.205.255
IPv6:
2a03:c340::/32
Signature Algorithm: sha256WithRSAEncryption
40:9c:b8:49:29:68:86:98:53:f6:b3:90:7f:3a:50:d8:51:26:
07:7d:9c:b8:15:cf:df:70:01:05:8e:37:fe:76:45:1a:89:05:
04:fc:7f:54:ee:c9:cf:b1:4b:da:4e:f5:6e:ca:31:93:df:af:
72:f2:5c:2f:2c:76:07:b5:db:78:af:35:1d:a7:20:e3:9d:df:
58:03:84:09:f2:e2:11:f5:e1:7a:42:d0:b8:24:a8:d1:eb:11:
34:8f:7c:85:93:bd:9c:0d:73:06:62:97:0c:d3:83:4a:97:b3:
83:a9:e9:ff:44:12:ec:f8:21:6c:cd:a3:d5:1e:28:ba:ed:f1:
e0:e2:c5:1d:f5:3e:bd:6f:b9:8c:22:81:02:fd:2f:be:68:ea:
98:7e:0a:df:2c:3b:2a:85:f7:0f:78:68:76:58:40:80:46:af:
6b:93:da:6b:f0:60:6b:fa:92:17:0a:39:dd:63:9f:86:aa:7f:
cb:f7:ab:de:01:9e:d5:8f:44:65:f0:0d:71:46:85:f9:fa:37:
a8:3f:00:e2:99:68:c6:a9:d5:95:37:53:ee:73:5d:fe:92:7d:
e9:04:e3:8c:28:7a:6c:a5:62:fd:77:0c:e0:a1:30:5e:7a:76:
13:ed:5a:d5:61:3f:aa:0c:29:8b:4a:ab:b3:a4:0b:5a:14:b7:
08:76:cb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 13:09:18 2023 by rpki-client on console-ams.rpki-client.org