Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/dWiO1A_pw-xDo4h3CQI1GrG0LUA.roa
File: dWiO1A_pw-xDo4h3CQI1GrG0LUA.roa (raw, json)
Hash identifier: uZh21/6ArYsSw1CKKh4TSCHxItvyc286iQh8C/UgeIA=
Subject key identifier: 75:68:8E:D4:0F:E9:C3:EC:43:A3:88:77:09:02:35:1A:B1:B4:2D:40
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 01857227D7F35BDB6965822768B02E0DA18A
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/dWiO1A_pw-xDo4h3CQI1GrG0LUA.roa
Signing time: Mon 02 Jan 2023 11:04:51 +0000
ROA not before: Mon 02 Jan 2023 11:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57112
IP address blocks: 185.72.160.0/22 maxlen: 22
185.82.192.0/22 maxlen: 22
45.92.224.0/22 maxlen: 22
45.91.56.0/22 maxlen: 22
185.236.16.0/22 maxlen: 22
217.76.16.0/21 maxlen: 21
217.76.16.0/20 maxlen: 20
217.76.24.0/21 maxlen: 21
185.103.236.0/22 maxlen: 22
185.133.108.0/22 maxlen: 22
5.104.112.0/20 maxlen: 20
185.87.156.0/22 maxlen: 22
185.70.236.0/22 maxlen: 22
185.87.104.0/22 maxlen: 22
86.111.208.0/22 maxlen: 22
185.87.116.0/22 maxlen: 22
185.33.152.0/22 maxlen: 22
81.30.64.0/20 maxlen: 20
45.84.40.0/22 maxlen: 24
185.113.172.0/22 maxlen: 22
185.23.140.0/22 maxlen: 22
2a0e:9680::/29 maxlen: 29
2a0a:4980::/29 maxlen: 29
2a0e:c40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:d7:f3:5b:db:69:65:82:27:68:b0:2e:0d:a1:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Jan 2 11:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75688ed40fe9c3ec43a388770902351ab1b42d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:62:8f:9a:71:21:e8:83:4c:f4:f6:7f:55:30:
6b:8c:67:5c:d0:47:c6:d4:46:5b:8f:90:c0:c0:4c:
65:6c:ce:36:52:5e:7a:2e:0a:9c:ed:bb:b7:47:61:
be:a2:ac:83:3f:c8:1b:c0:67:77:f4:df:6b:b3:cf:
d5:f4:06:97:71:53:e5:bc:44:af:7e:4e:01:f4:fb:
d6:ff:8f:18:c5:2e:fe:f5:84:73:03:b6:19:e0:e3:
a5:77:7a:7b:e1:7a:2f:99:4f:4c:f6:a0:da:e5:cb:
e3:fa:e6:eb:12:5d:e6:76:ca:dc:cf:57:81:04:e7:
ee:ad:61:17:c3:46:e1:14:0f:b4:fb:46:af:bd:9e:
25:79:10:f9:ef:b9:f1:e6:73:a2:06:6c:56:7f:91:
f6:0c:1d:ee:b7:88:d3:78:7d:8f:d4:25:b2:e1:c7:
33:b0:1d:b7:d7:d9:a0:8b:74:9c:68:0e:af:b7:d3:
42:55:4e:e6:f1:1b:39:e6:19:a2:49:9f:b8:e1:b8:
1f:23:9c:54:f2:73:e4:73:96:90:f3:c4:fe:be:20:
2d:14:ae:32:af:15:d4:77:21:a8:ab:cd:2b:8b:61:
d8:2b:e8:84:fd:29:f9:75:69:18:6d:70:55:98:3d:
56:1d:9d:9a:a1:8f:7d:8f:8f:3c:08:df:ca:c7:d3:
12:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:68:8E:D4:0F:E9:C3:EC:43:A3:88:77:09:02:35:1A:B1:B4:2D:40
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/dWiO1A_pw-xDo4h3CQI1GrG0LUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.112.0/20
45.84.40.0/22
45.91.56.0/22
45.92.224.0/22
81.30.64.0/20
86.111.208.0/22
185.23.140.0/22
185.33.152.0/22
185.70.236.0/22
185.72.160.0/22
185.82.192.0/22
185.87.104.0/22
185.87.116.0/22
185.87.156.0/22
185.103.236.0/22
185.113.172.0/22
185.133.108.0/22
185.236.16.0/22
217.76.16.0/20
IPv6:
2a0a:4980::/29
2a0e:c40::/29
2a0e:9680::/29
Signature Algorithm: sha256WithRSAEncryption
28:e3:24:e1:b1:d4:d0:a4:dc:ed:0b:19:cc:99:56:92:54:53:
0d:b7:6c:5e:34:ed:17:e7:c9:7c:24:a1:de:6b:24:7f:50:3a:
a1:c3:05:19:96:0e:74:23:69:41:99:8c:03:80:12:f9:f0:61:
9c:07:0e:41:ab:e6:55:56:60:34:dc:db:06:06:0f:aa:c5:7a:
bd:d3:5b:4a:46:ee:ee:99:7b:86:77:e5:85:80:bf:f5:ed:fb:
26:97:41:b4:b3:c7:c8:07:5a:7c:6e:df:f9:05:4b:2b:de:45:
9b:f8:68:98:b7:ba:f8:31:d6:7b:2a:83:8c:81:8d:dd:57:5b:
9a:69:8c:d2:90:27:b1:b5:1d:80:3d:53:7e:c9:51:bb:75:ed:
79:d3:50:cd:d6:cc:31:51:55:a3:f3:df:6e:83:68:46:be:ab:
e5:3b:92:b3:9d:a1:3e:e4:8f:76:80:a9:bb:de:50:16:c4:30:
be:a5:3a:85:98:e8:27:e5:70:1d:e8:0f:6b:de:80:a9:21:77:
ea:24:17:0f:3b:8a:aa:dd:fa:ea:b1:52:84:2f:71:38:42:77:
4c:ac:26:51:47:b1:ae:bd:a4:2e:0f:bc:95:ec:42:a7:58:6b:
07:06:e2:08:47:84:06:98:ce:75:42:9e:b7:4c:f0:ae:31:17:
ef:d8:0b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:32 2023 by rpki-client on console-fra.rpki-client.org