Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/YM4at-KKrta0INmWOs8sjQG5zgQ.roa
File: YM4at-KKrta0INmWOs8sjQG5zgQ.roa (raw, json)
Hash identifier: es3sGm1dzSHMmtzU/KwGUtiD9i5Qy/8wyEAcQPp/lYA=
Subject key identifier: 60:CE:1A:B7:E2:8A:AE:D6:B4:20:D9:96:3A:CF:2C:8D:01:B9:CE:04
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0186CC3904676354DA94EC2199E0F9EC508C
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/YM4at-KKrta0INmWOs8sjQG5zgQ.roa
Signing time: Fri 10 Mar 2023 15:52:14 +0000
ROA not before: Fri 10 Mar 2023 15:52:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8888
IP address blocks: 80.66.196.0/22 maxlen: 24
141.98.196.0/22 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
149.62.44.0/22 maxlen: 24
45.90.210.0/24 maxlen: 24
193.111.30.0/23 maxlen: 24
195.245.219.0/24 maxlen: 24
45.139.192.0/22 maxlen: 24
45.92.157.0/24 maxlen: 24
45.131.152.0/22 maxlen: 24
45.130.20.0/22 maxlen: 24
195.245.242.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
194.36.24.0/24 maxlen: 24
45.143.233.0/24 maxlen: 24
95.214.164.0/22 maxlen: 24
194.36.27.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
45.143.235.0/24 maxlen: 24
45.143.234.0/24 maxlen: 24
194.169.54.0/24 maxlen: 24
194.169.54.0/23 maxlen: 24
185.222.216.0/21 maxlen: 24
185.194.52.0/22 maxlen: 24
2a09:0:15::/48 maxlen: 48
2a06:57c0::/29 maxlen: 48
2a09::/29 maxlen: 128
2a07:fa00::/29 maxlen: 48
2a0d:7540::/29 maxlen: 48
2a0d:3640::/29 maxlen: 48
2a0c:ed40::/29 maxlen: 48
2a06:4fc0::/29 maxlen: 48
2a0d:4340::/29 maxlen: 48
2a0d:de80::/29 maxlen: 48
2a0e:6200::/29 maxlen: 48
2a07:e900::/29 maxlen: 48
2a0d:1fc0::/29 maxlen: 48
2a10:2600::/29 maxlen: 48
2a0d:4bc0::/29 maxlen: 48
2a09:6::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:39:04:67:63:54:da:94:ec:21:99:e0:f9:ec:50:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Mar 10 15:52:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60ce1ab7e28aaed6b420d9963acf2c8d01b9ce04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c6:87:93:c2:7a:0b:dc:1e:0b:3d:19:aa:e5:
e6:19:9a:f5:af:c2:d2:81:ea:1c:15:f7:9b:75:fb:
2a:ee:ad:ae:86:56:e9:40:6b:a6:0f:2f:b7:61:bb:
d7:d3:61:78:1f:cc:d3:29:63:6f:6f:f8:56:d9:38:
5c:5f:21:0d:5a:6b:73:15:9e:f9:25:47:f1:1f:a6:
97:f7:83:80:a8:4e:02:2a:15:fe:a9:f6:70:28:b1:
fd:54:ff:80:36:56:76:d3:aa:a0:67:27:51:ef:3f:
59:b7:91:83:9e:46:96:2a:0b:32:ed:e3:35:d5:f8:
3f:05:6f:92:54:07:37:13:74:4f:7b:8d:67:83:6c:
a8:88:f6:3d:4c:e0:1d:c3:9e:e7:05:0d:6c:2f:5b:
fa:d3:a6:ac:1d:68:4c:d1:04:ec:d1:25:29:a9:7d:
49:d4:af:4f:62:dc:7c:4b:8a:f5:70:7f:b2:20:f1:
9a:4c:0d:1a:a7:cb:cf:11:c9:b5:fd:22:de:1d:9c:
fb:07:bb:73:94:b8:61:fb:2b:8a:e1:33:a5:16:a7:
79:0c:d1:ef:4e:5f:ec:a2:86:71:b8:55:a4:ff:8d:
ad:82:a1:b5:fd:43:f5:8e:9f:42:ac:0e:e4:f5:ab:
94:2a:3b:3e:96:7a:50:cb:ef:de:25:67:b2:78:3a:
84:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CE:1A:B7:E2:8A:AE:D6:B4:20:D9:96:3A:CF:2C:8D:01:B9:CE:04
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/YM4at-KKrta0INmWOs8sjQG5zgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.210.0/24
45.92.157.0/24
45.130.20.0/22
45.131.152.0/22
45.139.192.0/22
45.143.232.0/22
80.66.196.0/22
94.124.116.0/22
95.214.164.0/22
141.98.196.0/22
149.62.44.0/22
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
193.111.30.0/23
194.36.24.0/24
194.36.27.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
195.245.241.0-195.245.242.255
IPv6:
2a06:4fc0::/29
2a06:57c0::/29
2a07:e900::/29
2a07:fa00::/29
2a09::/29
2a0c:ed40::/29
2a0d:1fc0::/29
2a0d:3640::/29
2a0d:4340::/29
2a0d:4bc0::/29
2a0d:7540::/29
2a0d:de80::/29
2a0e:6200::/29
2a10:2600::/29
Signature Algorithm: sha256WithRSAEncryption
54:0e:3e:8d:48:3d:de:b0:ac:e3:3a:d5:65:26:2e:59:34:a8:
43:57:71:c5:2a:c6:49:4c:6b:d2:64:e3:d3:3e:b8:10:c7:35:
34:a7:e1:84:53:4e:ea:30:a3:ad:fd:c3:53:72:0b:8d:8f:7b:
eb:ee:4b:1d:22:52:0a:5a:17:cb:13:3d:db:f2:b5:92:7c:e5:
b1:81:16:f5:53:b9:52:6a:a1:94:be:56:0e:34:bc:0b:65:72:
0a:c8:02:ba:76:02:e5:c4:32:88:af:50:f8:76:84:f5:1f:0d:
55:e6:bf:94:e6:26:6a:50:94:2c:7c:58:5f:31:8a:f5:10:73:
48:2d:80:12:69:b2:65:d3:44:4f:06:4f:6f:56:5d:4c:2f:00:
59:f9:1f:fa:78:09:7c:dd:61:84:68:29:32:d4:5b:4b:31:ee:
95:bb:58:04:1c:ed:86:01:82:67:77:21:c8:6c:db:d4:ff:a9:
84:c0:96:ef:39:ff:3b:75:01:58:65:a7:fb:77:93:c7:ca:fe:
84:ab:ad:d4:bb:c8:d0:6b:d4:d4:3a:0e:4b:95:87:95:dc:87:
57:b1:7c:51:a5:af:f2:78:f9:99:e2:b8:d3:d1:9c:38:14:d0:
6a:1a:e6:b7:7a:3c:3f:33:63:6b:0d:b0:51:bf:7a:55:9a:a8:
33:03:6a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 23 01:55:33 2023 by rpki-client on console-fra.rpki-client.org