Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/iJySxWQSFQHh79qbmOw88iz8ADg.roa
File: iJySxWQSFQHh79qbmOw88iz8ADg.roa (raw, json)
Hash identifier: js+jQOwdNGgvnLTRPDiTnPdmYxgHfpsr8u3b2F+APyk=
Subject key identifier: 88:9C:92:C5:64:12:15:01:E1:EF:DA:9B:98:EC:3C:F2:2C:FC:00:38
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 01857070589CA8E5C114B9FB3BDB4540A6CC
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/iJySxWQSFQHh79qbmOw88iz8ADg.roa
Signing time: Mon 02 Jan 2023 03:04:48 +0000
ROA not before: Mon 02 Jan 2023 03:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15774
IP address blocks: 37.61.176.0/21 maxlen: 32
31.216.170.0/24 maxlen: 24
46.166.65.0/24 maxlen: 24
109.233.172.0/22 maxlen: 32
185.43.86.0/23 maxlen: 32
83.234.240.0/21 maxlen: 21
62.33.122.0/23 maxlen: 32
81.18.128.0/19 maxlen: 32
46.166.80.0/24 maxlen: 24
46.166.80.0/23 maxlen: 24
46.166.79.0/24 maxlen: 24
46.166.83.0/24 maxlen: 24
46.166.82.0/24 maxlen: 24
46.166.81.0/24 maxlen: 24
46.166.84.0/22 maxlen: 23
46.166.88.0/23 maxlen: 23
46.166.91.0/24 maxlen: 24
46.166.95.0/24 maxlen: 24
46.166.94.0/24 maxlen: 24
46.166.93.0/24 maxlen: 24
81.4.192.0/18 maxlen: 32
46.20.64.0/20 maxlen: 32
185.6.236.0/22 maxlen: 32
83.234.136.0/23 maxlen: 23
185.61.24.0/22 maxlen: 32
91.204.96.0/22 maxlen: 32
46.182.128.0/22 maxlen: 22
46.182.131.0/24 maxlen: 24
2a03:3700:7000::/36 maxlen: 128
2a03:3700:6000::/36 maxlen: 128
2a03:3700:3000::/36 maxlen: 128
2a03:3700:2000::/36 maxlen: 128
2a03:3700:5000::/36 maxlen: 128
2a03:3700::/36 maxlen: 128
2a03:3700:1000::/36 maxlen: 128
2a03:3700:4000::/36 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:58:9c:a8:e5:c1:14:b9:fb:3b:db:45:40:a6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 03:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=889c92c564121501e1efda9b98ec3cf22cfc0038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:08:cb:10:01:9e:7f:b0:3a:18:bd:58:c5:bd:
0f:dd:03:53:e2:73:f6:95:b6:86:29:0c:64:d1:84:
92:eb:0e:4a:18:8a:a3:4b:d8:1c:ec:a3:14:15:1e:
41:4a:28:41:ff:57:5c:d2:fe:fa:9d:87:05:11:69:
6a:94:6e:33:ab:61:f1:bf:f3:11:71:c0:68:f6:19:
da:dc:4c:d7:52:94:6f:7e:a5:a2:65:88:d9:08:9c:
28:f4:dc:ad:c7:2d:a7:94:56:dd:cf:80:8a:98:e0:
1e:7a:df:7e:97:f7:95:65:f7:be:cb:3a:cb:02:0b:
cd:25:89:fc:b2:ab:e9:05:d5:0f:cd:d3:6b:ad:19:
46:15:b9:f1:f5:8b:ab:3b:ef:07:64:7c:77:b4:64:
e2:4c:93:3b:1c:88:23:e7:77:6f:70:28:c0:37:1e:
8e:e7:b4:e4:b2:ff:a0:77:12:02:f9:92:5a:3a:68:
35:d5:7d:b7:b3:f3:4e:47:c4:9a:15:56:3f:21:97:
78:0a:99:83:59:ce:68:18:71:2e:0a:80:80:30:f6:
00:82:4d:de:97:79:b3:3c:9d:a0:b8:45:fb:7b:6c:
7a:a3:43:42:1c:59:7e:d4:5b:cc:79:e2:bb:5e:f9:
6f:90:3e:bd:42:25:f2:3f:f7:22:e9:5f:4d:81:8e:
3b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9C:92:C5:64:12:15:01:E1:EF:DA:9B:98:EC:3C:F2:2C:FC:00:38
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/iJySxWQSFQHh79qbmOw88iz8ADg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.170.0/24
37.61.176.0/21
46.20.64.0/20
46.166.65.0/24
46.166.79.0-46.166.89.255
46.166.91.0/24
46.166.93.0-46.166.95.255
46.182.128.0/22
62.33.122.0/23
81.4.192.0/18
81.18.128.0/19
83.234.136.0/23
83.234.240.0/21
91.204.96.0/22
109.233.172.0/22
185.6.236.0/22
185.43.86.0/23
185.61.24.0/22
IPv6:
2a03:3700::/33
Signature Algorithm: sha256WithRSAEncryption
b9:1c:36:7d:7a:bf:83:dc:ac:4f:6a:06:a8:48:19:9a:2d:11:
d6:b6:58:97:05:b9:7c:19:7d:38:ec:88:a7:d0:b8:48:a5:14:
44:a4:2e:e8:4f:c1:dd:42:91:ba:7e:07:98:0a:34:0f:a3:5f:
1e:9c:67:4e:06:1d:3a:13:29:0f:e4:37:f3:c7:7e:33:47:99:
47:de:16:22:b1:82:97:c2:e1:14:76:b8:98:d3:79:95:c5:b6:
84:56:65:4d:e5:e7:08:91:5a:c9:02:e3:81:dd:c8:71:0d:5e:
ae:66:cf:8c:43:66:75:2f:4c:8f:39:fa:ef:ec:d7:cd:f0:23:
f9:e7:6b:d7:ff:f5:3e:a4:9f:0b:13:7c:8d:53:12:fb:89:e3:
f8:28:b9:0a:6e:aa:6a:bb:34:06:4a:10:99:f8:b8:09:0a:2c:
1a:22:08:ef:98:ff:bc:09:f9:0d:68:9b:d4:a9:7e:a8:97:a0:
7e:66:39:88:bf:cc:4b:98:5a:eb:de:5c:9c:5d:b2:7b:6d:5e:
cf:01:92:6e:48:e4:96:c4:15:02:f9:c2:c6:73:5b:c8:d6:55:
9b:3f:34:62:65:63:50:96:50:ad:cc:32:23:9b:ae:6c:e2:bc:
f0:ba:06:89:cb:f2:b1:8a:41:3c:bc:c9:42:89:72:ff:fa:e4:
d1:03:ac:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:43 2023 by rpki-client on console-fra.rpki-client.org