Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/APhZfiJL7jRiXT6odqp5USP7ApA.roa
File: APhZfiJL7jRiXT6odqp5USP7ApA.roa (raw, json)
Hash identifier: 5AbQdy+z4ZviKpeU162i9KOHMLlHAcg0gS8xdv0C6Po=
Subject key identifier: 00:F8:59:7E:22:4B:EE:34:62:5D:3E:A8:76:AA:79:51:23:FB:02:90
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 01862AFAD3F0603283B2507359D1082B78E8
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/APhZfiJL7jRiXT6odqp5USP7ApA.roa
Signing time: Tue 07 Feb 2023 08:25:26 +0000
ROA not before: Tue 07 Feb 2023 08:25:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1759
IP address blocks: 81.16.64.0/20 maxlen: 20
194.252.0.0/16 maxlen: 24
194.215.0.0/16 maxlen: 24
86.114.0.0/16 maxlen: 16
192.83.96.0/22 maxlen: 24
213.140.160.0/19 maxlen: 19
212.83.96.0/19 maxlen: 24
141.208.0.0/16 maxlen: 16
192.83.100.0/24 maxlen: 24
193.208.0.0/14 maxlen: 24
194.111.0.0/16 maxlen: 24
195.165.0.0/16 maxlen: 24
192.194.0.0/16 maxlen: 24
192.130.0.0/16 maxlen: 24
213.173.128.0/19 maxlen: 19
194.251.0.0/16 maxlen: 24
131.177.0.0/16 maxlen: 16
192.103.92.0/24 maxlen: 24
192.103.105.0/24 maxlen: 24
192.103.106.0/24 maxlen: 24
192.103.112.0/22 maxlen: 24
62.73.32.0/19 maxlen: 24
192.83.64.0/19 maxlen: 24
217.140.128.0/17 maxlen: 17
192.103.116.0/24 maxlen: 24
192.83.0.0/18 maxlen: 24
84.248.0.0/14 maxlen: 24
188.238.0.0/16 maxlen: 24
192.103.85.0/24 maxlen: 24
194.137.0.0/16 maxlen: 24
192.103.86.0/24 maxlen: 24
192.103.91.0/24 maxlen: 24
88.86.128.0/19 maxlen: 24
192.58.80.0/21 maxlen: 24
212.149.64.0/18 maxlen: 18
192.58.88.0/23 maxlen: 24
195.156.0.0/16 maxlen: 24
213.28.0.0/16 maxlen: 24
80.220.0.0/14 maxlen: 24
109.240.0.0/16 maxlen: 24
212.182.192.0/18 maxlen: 24
192.58.42.0/23 maxlen: 24
192.58.44.0/22 maxlen: 24
192.58.48.0/20 maxlen: 24
192.58.64.0/20 maxlen: 24
93.106.0.0/16 maxlen: 24
194.197.0.0/16 maxlen: 24
176.72.0.0/16 maxlen: 24
194.89.0.0/16 maxlen: 24
192.89.0.0/16 maxlen: 24
62.71.0.0/16 maxlen: 16
84.34.0.0/16 maxlen: 16
193.178.133.0/24 maxlen: 24
88.192.0.0/14 maxlen: 24
80.74.192.0/19 maxlen: 24
46.132.0.0/16 maxlen: 16
212.213.0.0/16 maxlen: 24
86.115.0.0/16 maxlen: 24
194.142.0.0/16 maxlen: 24
2001:8b8::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2a:fa:d3:f0:60:32:83:b2:50:73:59:d1:08:2b:78:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Feb 7 08:25:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00f8597e224bee34625d3ea876aa795123fb0290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ca:c9:61:e6:ff:b9:b4:69:f0:1d:bf:db:d1:
20:7d:66:c9:38:3a:59:1f:69:9e:65:a6:e1:f5:70:
17:dc:a7:c2:8c:1c:40:72:2c:e8:c3:86:8e:a5:32:
71:63:dc:2b:b7:9f:2b:b2:0b:2a:ff:27:41:9a:9d:
77:05:13:ee:20:db:cf:b5:b2:e4:f6:7f:2b:49:15:
48:6b:b4:15:1b:4c:d0:77:32:d8:2d:25:cc:e0:17:
d2:e4:91:b9:39:0e:81:4e:40:71:c9:22:66:1e:a6:
4c:18:50:1c:d6:d3:f7:8a:a0:f8:31:aa:9c:13:94:
ec:98:5c:ed:8c:c0:ab:cb:e6:77:1a:a1:d4:38:49:
b8:26:05:79:24:b1:97:ec:c0:01:fd:c3:2a:2f:d1:
47:94:55:8c:d6:37:a3:70:b3:65:c9:0e:d3:d5:67:
46:ce:0e:68:de:a6:d4:f9:96:6c:c9:38:09:98:27:
f1:60:1c:e6:cb:45:06:ab:7d:83:03:89:18:79:27:
b2:04:7d:24:2b:66:d6:b1:8e:50:e4:1e:38:00:6a:
36:2b:82:4c:92:0d:d4:11:d2:b5:c2:29:77:dd:e0:
53:7a:e6:9d:8a:0e:63:15:de:fe:91:f0:ca:98:1b:
12:a1:ca:e4:83:e2:3b:0f:36:cd:cd:52:3a:dc:e9:
dd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F8:59:7E:22:4B:EE:34:62:5D:3E:A8:76:AA:79:51:23:FB:02:90
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/APhZfiJL7jRiXT6odqp5USP7ApA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.132.0.0/16
62.71.0.0/16
62.73.32.0/19
80.74.192.0/19
80.220.0.0/14
81.16.64.0/20
84.34.0.0/16
84.248.0.0/14
86.114.0.0/15
88.86.128.0/19
88.192.0.0/14
93.106.0.0/16
109.240.0.0/16
131.177.0.0/16
141.208.0.0/16
176.72.0.0/16
188.238.0.0/16
192.58.42.0-192.58.89.255
192.83.0.0-192.83.100.255
192.89.0.0/16
192.103.85.0-192.103.86.255
192.103.91.0-192.103.92.255
192.103.105.0-192.103.106.255
192.103.112.0-192.103.116.255
192.130.0.0/16
192.194.0.0/16
193.178.133.0/24
193.208.0.0/14
194.89.0.0/16
194.111.0.0/16
194.137.0.0/16
194.142.0.0/16
194.197.0.0/16
194.215.0.0/16
194.251.0.0-194.252.255.255
195.156.0.0/16
195.165.0.0/16
212.83.96.0/19
212.149.64.0/18
212.182.192.0/18
212.213.0.0/16
213.28.0.0/16
213.140.160.0/19
213.173.128.0/19
217.140.128.0/17
IPv6:
2001:8b8::/29
Signature Algorithm: sha256WithRSAEncryption
ac:a3:3c:5c:b8:3d:2c:c9:5f:a9:4a:9d:f7:bf:d2:d9:d6:c3:
30:00:59:a0:22:df:ca:4b:dd:8a:43:98:f7:e7:f9:1b:40:ce:
77:a3:e1:31:14:ba:71:32:b5:2d:a6:73:e2:9f:a9:20:02:21:
2c:55:af:a4:31:5b:3a:ad:38:0c:b0:98:ec:f2:61:77:f1:76:
cb:4f:7c:87:af:84:53:a6:d8:81:09:df:bb:76:4e:8f:4f:73:
4a:4e:1f:79:36:00:d9:4e:a4:46:a0:07:53:46:ce:d5:e5:e3:
40:95:fa:71:54:2f:64:c4:10:8b:6e:ae:e8:0d:78:ab:18:0b:
a2:14:5a:9e:49:64:5b:20:07:b7:3e:f7:b9:18:9c:fc:30:9b:
41:50:c5:c1:69:6d:f8:d3:4c:f2:24:77:21:2c:42:e0:4a:f5:
06:9d:95:10:05:71:f2:77:bd:b2:83:62:22:e0:b7:2c:62:1b:
46:5a:11:4e:9f:a3:f3:b7:4d:2d:02:64:84:da:a4:c2:92:45:
2a:e0:ba:6d:af:19:06:cb:cb:6c:18:dd:68:fa:65:6a:ad:25:
bb:15:6e:36:a6:4b:8a:13:0d:55:61:b6:7c:59:0e:f2:39:0c:
f8:51:01:86:05:1c:e9:2b:62:62:71:32:ba:10:e7:26:03:41:
79:11:d6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:12 2023 by rpki-client on console-ams.rpki-client.org