Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0893f1-ffb4-46b3-bf27-a7016980c86f/1/M_GbL6jgIOYRnax43ZioVtWw06Y.roa
File: M_GbL6jgIOYRnax43ZioVtWw06Y.roa (raw, json)
Hash identifier: C3C5r2gNeaG7Lq7+qieQB19CiBz6tsVQn4q4UP5aZUw=
Subject key identifier: 33:F1:9B:2F:A8:E0:20:E6:11:9D:AC:78:DD:98:A8:56:D5:B0:D3:A6
Certificate issuer: /CN=dc5facca14de08174ef5c96c91f1e7825f42d07b
Certificate serial: 01856E820F724089DC7583094BE2F5C10358
Authority key identifier: DC:5F:AC:CA:14:DE:08:17:4E:F5:C9:6C:91:F1:E7:82:5F:42:D0:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3F-syhTeCBdO9clskfHngl9C0Hs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0893f1-ffb4-46b3-bf27-a7016980c86f/1/M_GbL6jgIOYRnax43ZioVtWw06Y.roa
Signing time: Sun 01 Jan 2023 18:04:55 +0000
ROA not before: Sun 01 Jan 2023 18:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205330
IP address blocks: 37.130.216.0/24 maxlen: 24
37.130.217.0/24 maxlen: 24
37.130.218.0/24 maxlen: 24
37.130.219.0/24 maxlen: 24
37.130.216.0/22 maxlen: 22
37.130.216.0/21 maxlen: 21
37.130.222.0/24 maxlen: 24
37.130.223.0/24 maxlen: 24
37.130.220.0/22 maxlen: 22
37.130.220.0/24 maxlen: 24
37.130.221.0/24 maxlen: 24
185.109.56.0/24 maxlen: 24
185.109.57.0/24 maxlen: 24
185.109.58.0/24 maxlen: 24
185.109.56.0/22 maxlen: 22
185.109.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:0f:72:40:89:dc:75:83:09:4b:e2:f5:c1:03:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc5facca14de08174ef5c96c91f1e7825f42d07b
Validity
Not Before: Jan 1 18:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33f19b2fa8e020e6119dac78dd98a856d5b0d3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f7:06:b2:1c:9c:e7:76:ab:23:d9:50:67:59:
b0:5a:9a:60:8a:fa:89:bd:d2:d6:da:91:4b:6c:16:
d5:3e:1e:16:4b:13:9e:81:18:0c:ba:44:af:ca:cd:
0a:b7:71:95:1b:ad:96:91:01:f1:36:8e:40:d0:d4:
e5:96:c9:17:51:c8:6a:b3:28:5d:d5:26:4c:cd:39:
4d:c4:bd:88:35:18:a9:36:6b:b2:6e:45:60:32:b8:
2d:49:3a:82:d7:a6:e7:a0:9e:bb:73:b1:e1:a4:0d:
6c:b4:05:c1:41:78:c3:33:6f:02:f7:2f:f0:e1:59:
ea:4e:1c:09:87:e7:a8:d7:ea:31:bb:cb:03:33:66:
7d:11:b1:34:4e:58:42:f8:5d:76:6a:8f:c2:54:fa:
97:71:8f:9b:c5:bc:aa:ec:d8:bd:2d:e1:3d:c0:e9:
14:15:ac:88:ed:ab:f7:16:05:c7:08:98:31:9a:ed:
a3:19:8f:4f:ff:63:98:8b:88:46:45:10:b4:91:fd:
5c:cd:63:84:6a:ea:78:73:8f:17:af:38:96:06:f9:
f6:3f:6d:e6:46:8c:80:84:d2:3e:87:cb:d6:b3:65:
0d:7e:06:5b:7f:3a:c1:a0:ea:73:99:22:26:1e:28:
4f:45:45:9a:d4:39:9b:fa:94:7c:c0:ac:b5:be:38:
8e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F1:9B:2F:A8:E0:20:E6:11:9D:AC:78:DD:98:A8:56:D5:B0:D3:A6
X509v3 Authority Key Identifier:
keyid:DC:5F:AC:CA:14:DE:08:17:4E:F5:C9:6C:91:F1:E7:82:5F:42:D0:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3F-syhTeCBdO9clskfHngl9C0Hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0893f1-ffb4-46b3-bf27-a7016980c86f/1/M_GbL6jgIOYRnax43ZioVtWw06Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0893f1-ffb4-46b3-bf27-a7016980c86f/1/3F-syhTeCBdO9clskfHngl9C0Hs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.216.0/21
185.109.56.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:61:d0:11:ad:32:e1:2f:f4:78:9a:4b:61:4f:2e:6b:3a:40:
ec:46:80:bb:aa:ee:d3:d5:dd:9a:c5:9f:a9:72:ac:3b:ee:7a:
fd:84:b5:95:20:8b:bb:89:b8:08:40:9c:34:6d:8c:23:82:5b:
f0:4d:76:d8:4f:ab:e9:47:66:06:e6:2a:28:df:28:b8:8a:40:
aa:ae:6a:68:79:9b:4f:2e:6d:48:16:ca:d9:f6:9c:bb:02:45:
dd:b7:c8:d3:29:ea:df:1c:de:8d:b4:b2:d3:7c:71:51:03:76:
63:c6:91:29:88:9c:e5:56:67:df:6b:65:d1:3f:eb:de:8a:d6:
a9:c7:dc:e2:da:e5:b8:7e:8a:4b:73:30:da:b5:06:ea:b7:0e:
9a:3b:af:7f:44:42:78:7e:ab:b0:aa:22:95:86:cc:32:df:03:
2b:0d:b3:4c:3d:40:de:41:cc:36:09:89:16:51:74:d3:4f:42:
25:b1:f0:37:7d:ea:d2:e4:34:26:45:13:9e:ce:89:e4:27:5d:
43:1a:63:fb:87:03:b4:82:55:96:86:f1:93:58:30:82:8c:c6:
9f:73:36:2f:ac:0f:f3:6b:81:f5:37:00:bc:9d:b7:4f:87:87:
16:d8:3a:e7:b5:70:0f:14:3c:45:e0:7e:ae:ea:6f:e4:10:de:
38:11:cc:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:24 2024 by rpki-client on console-fra.rpki-client.org