Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/IaXtAQr65POjFo51uwshEum7inY.roa
File: IaXtAQr65POjFo51uwshEum7inY.roa (raw, json)
Hash identifier: 8pMZAExWVAHcvFEMHhHmQqirjz57yAukQABZE2hixPc=
Subject key identifier: 21:A5:ED:01:0A:FA:E4:F3:A3:16:8E:75:BB:0B:21:12:E9:BB:8A:76
Certificate issuer: /CN=178235df535526d9e6d6aff6fa7ac52293a92c71
Certificate serial: 018944256FD28F91E7049E3309DA0C593748
Authority key identifier: 17:82:35:DF:53:55:26:D9:E6:D6:AF:F6:FA:7A:C5:22:93:A9:2C:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4I131NVJtnm1q_2-nrFIpOpLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/IaXtAQr65POjFo51uwshEum7inY.roa
Signing time: Tue 11 Jul 2023 08:50:51 +0000
ROA not before: Tue 11 Jul 2023 08:50:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25467
IP address blocks: 81.17.229.0/24 maxlen: 24
81.17.228.0/23 maxlen: 23
81.17.228.0/24 maxlen: 24
82.214.66.0/24 maxlen: 24
82.214.76.0/24 maxlen: 24
82.214.76.0/23 maxlen: 23
82.214.77.0/24 maxlen: 24
82.214.78.0/24 maxlen: 24
82.214.85.0/24 maxlen: 24
82.214.84.0/24 maxlen: 24
82.214.84.0/23 maxlen: 23
82.214.96.0/21 maxlen: 21
82.214.97.0/24 maxlen: 24
82.214.98.0/24 maxlen: 24
82.214.96.0/24 maxlen: 24
82.214.100.0/24 maxlen: 24
82.214.101.0/24 maxlen: 24
82.214.99.0/24 maxlen: 24
82.214.102.0/24 maxlen: 24
82.214.103.0/24 maxlen: 24
82.214.112.0/24 maxlen: 24
82.214.108.0/22 maxlen: 22
82.214.111.0/24 maxlen: 24
82.214.110.0/24 maxlen: 24
82.214.114.0/24 maxlen: 24
82.214.115.0/24 maxlen: 24
82.214.112.0/21 maxlen: 21
82.214.113.0/24 maxlen: 24
82.214.118.0/24 maxlen: 24
82.214.116.0/24 maxlen: 24
82.214.117.0/24 maxlen: 24
82.214.121.0/24 maxlen: 24
82.214.119.0/24 maxlen: 24
82.214.120.0/23 maxlen: 23
82.214.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:25:6f:d2:8f:91:e7:04:9e:33:09:da:0c:59:37:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=178235df535526d9e6d6aff6fa7ac52293a92c71
Validity
Not Before: Jul 11 08:50:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21a5ed010afae4f3a3168e75bb0b2112e9bb8a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3e:f2:be:c6:fa:83:f8:26:55:14:88:71:15:
e5:63:0c:05:3d:c0:64:e0:e4:92:c6:02:8b:fd:34:
be:54:98:5c:ba:71:94:ac:df:21:3d:00:5f:27:fe:
4f:a7:3b:ad:ce:03:20:ae:4e:48:6f:ef:7d:f4:a1:
ee:d6:6d:ae:62:19:ba:b3:65:4b:b5:e6:d9:99:e8:
e9:5c:d9:c5:31:66:0c:15:88:8b:58:6c:dc:49:01:
c1:81:26:ad:b1:fc:d9:bb:57:eb:b3:09:3b:f2:93:
2c:ad:77:2b:c0:bb:dd:5d:b5:e8:ac:b2:4e:ef:1b:
d4:fb:47:94:04:3a:21:20:c6:f9:4e:f1:c8:26:ef:
40:f9:7c:94:3a:93:da:32:03:90:59:cd:15:bd:a3:
00:46:0b:fc:06:6e:e2:16:84:82:97:85:81:0e:da:
db:97:de:44:63:88:af:5d:39:56:83:e8:df:a9:8a:
96:e6:87:0c:e5:9c:f7:2b:7f:5b:c6:4a:82:f5:6b:
2f:63:dd:73:4f:23:b4:74:5f:2b:47:f6:33:68:54:
f2:76:e9:94:96:e5:70:d2:6d:78:f6:5c:ce:f4:43:
a6:f8:64:6a:83:31:88:f6:92:24:d0:ca:1f:c5:4e:
05:87:b5:23:89:61:50:8f:63:1c:c7:b6:2b:ca:a9:
f8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A5:ED:01:0A:FA:E4:F3:A3:16:8E:75:BB:0B:21:12:E9:BB:8A:76
X509v3 Authority Key Identifier:
keyid:17:82:35:DF:53:55:26:D9:E6:D6:AF:F6:FA:7A:C5:22:93:A9:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4I131NVJtnm1q_2-nrFIpOpLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/IaXtAQr65POjFo51uwshEum7inY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/c383bb-e806-4a6d-a2e8-ee5ca36f1d9a/1/F4I131NVJtnm1q_2-nrFIpOpLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.228.0/23
82.214.66.0/24
82.214.76.0-82.214.78.255
82.214.84.0/23
82.214.96.0/21
82.214.108.0-82.214.121.255
Signature Algorithm: sha256WithRSAEncryption
b6:d2:36:59:47:31:8c:4b:21:89:e0:c1:a3:db:ef:a1:a0:8f:
98:f5:a2:1b:93:7d:5f:1b:45:40:d4:23:18:fd:df:1e:d7:1a:
ab:98:07:8c:f9:66:16:b4:84:2e:ca:22:83:dd:15:27:3e:d0:
b2:d9:43:d7:84:0c:f3:e6:f5:6c:f6:ea:01:3b:77:f4:44:ff:
69:4c:78:2b:4f:ea:b9:3e:21:cd:97:06:15:25:9a:0d:f9:04:
f5:4a:05:e4:80:01:c2:30:fc:f1:87:8a:c6:db:a9:b7:3c:a9:
e4:85:92:d4:e3:7c:4c:30:e4:bf:69:85:a0:80:63:ad:9b:bd:
55:7b:8c:58:a4:8b:3a:48:fd:f5:7b:a2:17:15:3f:61:6d:6d:
15:b8:ed:b6:ed:1c:b1:13:07:b5:8c:64:e6:ef:06:6a:4e:57:
0d:09:48:5f:18:6c:22:ab:a3:4e:be:0d:a2:cb:bc:86:4d:c6:
78:f5:d2:18:e6:a1:14:8e:86:12:0a:4b:a0:02:aa:ae:ca:84:
3c:dc:95:54:f6:2b:bf:1e:53:f4:d6:9f:bb:0f:9a:18:96:c4:
03:e7:80:ab:76:b6:17:ee:f1:a2:22:d3:ef:a2:cf:29:d5:9d:
67:41:29:96:61:e7:ea:68:34:49:ef:8e:13:ce:af:7d:34:30:
31:36:6d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:57 2023 by rpki-client on console-fra.rpki-client.org