Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/io3yAxETpLRdB__EKuqBH0Op88E.roa
File: io3yAxETpLRdB__EKuqBH0Op88E.roa (raw, json)
Hash identifier: IlceVOdVKVW60kYfGHe6Qpx5Gx+txgWI0H5qK0KveJs=
Subject key identifier: 8A:8D:F2:03:11:13:A4:B4:5D:07:FF:C4:2A:EA:81:1F:43:A9:F3:C1
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 018705F0EA5BE409FB851E4461AC530FBEEF
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/io3yAxETpLRdB__EKuqBH0Op88E.roa
Signing time: Tue 21 Mar 2023 20:51:27 +0000
ROA not before: Tue 21 Mar 2023 20:51:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 195.149.87.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
45.67.231.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.228.0/24 maxlen: 24
2a09:7c41::/32 maxlen: 32
2a09:7c44::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a09:7c40::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:f0:ea:5b:e4:09:fb:85:1e:44:61:ac:53:0f:be:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Mar 21 20:51:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a8df2031113a4b45d07ffc42aea811f43a9f3c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0b:bf:5d:96:17:39:f1:77:0a:1f:c7:71:83:
9b:cb:f8:61:34:24:80:d3:43:7c:b9:e6:00:68:d3:
98:5d:e5:6e:53:2b:17:31:8e:cc:fd:9d:21:d0:b0:
12:b5:89:bb:46:d7:59:ce:7f:db:b7:b0:53:ad:4c:
84:51:7e:ae:b0:d2:d8:45:c1:8f:84:64:11:0a:19:
94:b0:66:ec:f7:58:4a:ca:3d:8d:3a:d5:4c:b8:3e:
79:87:7a:69:6d:2e:15:d4:39:6b:28:40:0e:33:e0:
88:6e:2a:f8:88:5f:d4:f5:c4:24:c6:df:f2:e4:14:
28:ae:43:2f:8e:88:9d:3c:a0:e9:89:85:32:71:63:
bf:48:c7:29:84:ce:db:28:83:87:2d:e7:5d:7b:72:
40:43:94:c5:0b:d6:d9:82:2f:3c:28:74:ad:bf:6e:
d7:24:cb:9f:db:75:f1:07:d3:ce:cd:16:ec:20:98:
d0:c8:b4:90:e8:5d:a7:27:25:c3:39:d0:08:a8:67:
00:0e:8d:9e:ed:60:3f:f8:d1:2a:9a:09:6f:dc:4f:
99:94:8e:35:b5:67:aa:fe:6b:3b:0c:34:43:e0:64:
ef:7e:29:46:ed:4b:bb:7f:4d:1b:cc:dc:cd:a6:8d:
45:18:98:83:f7:26:5a:f8:ee:90:e4:4e:ff:1e:69:
21:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8D:F2:03:11:13:A4:B4:5D:07:FF:C4:2A:EA:81:1F:43:A9:F3:C1
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/io3yAxETpLRdB__EKuqBH0Op88E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.228.0/22
74.119.194.0/23
80.92.205.0-80.92.206.255
185.242.84.0/22
185.250.148.0/23
185.250.151.0/24
195.149.87.0/24
IPv6:
2a09:7c40::/31
2a09:7c44::/32
2a09:7c47::/32
Signature Algorithm: sha256WithRSAEncryption
30:eb:61:10:3c:73:1b:dd:77:55:6b:fd:85:02:b1:95:25:8f:
cc:51:87:46:0c:2c:99:81:3c:2a:ad:fa:b3:9e:5f:c8:63:e4:
4a:43:2c:3f:8f:dc:9b:f6:e2:ba:68:a1:fd:7b:e7:5c:9f:90:
5c:f4:b9:5e:18:22:d5:2f:9d:f7:0a:89:c2:13:4b:6d:14:f4:
60:69:a3:37:8a:89:ae:60:ec:85:ba:25:6d:61:fb:b9:de:9e:
45:5f:e0:f6:9d:d9:3f:9b:24:14:26:7e:89:78:da:fb:0b:67:
c4:0c:f1:a5:76:fb:05:ef:32:6f:cf:2a:6f:e3:c5:67:a4:e5:
cf:58:ad:76:37:05:61:3b:56:9e:65:5b:e1:b8:a8:ad:da:c2:
75:d3:b5:0c:df:ba:68:9e:0d:2d:82:a4:f2:b5:62:89:8d:8e:
a2:e9:fc:61:9d:79:45:3d:36:1b:e2:c5:f1:8e:b0:2f:7b:44:
27:98:9e:d8:b5:e4:9a:9a:9b:11:73:f3:bc:f0:d6:8f:53:c1:
10:d2:99:7e:a1:b0:e4:71:fa:cd:37:18:75:d2:41:dc:e6:c3:
e1:f5:b0:39:cb:98:17:56:d4:ea:f4:d2:bd:ed:9a:7e:8a:92:
b5:d5:04:28:b9:a7:ca:86:35:36:98:0f:7b:31:dd:93:d8:2f:
2a:bb:b1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:53 2023 by rpki-client on console-ams.rpki-client.org