Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/GREH1iusyF2pbQEAedAI5yIOVzs.roa
File: GREH1iusyF2pbQEAedAI5yIOVzs.roa (raw, json)
Hash identifier: 6Q1S5UHQeYsKgecOpNvWFb5K6hYpe7CUgnojNsxcaaU=
Subject key identifier: 19:11:07:D6:2B:AC:C8:5D:A9:6D:01:00:79:D0:08:E7:22:0E:57:3B
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 01856FA707BCF090B2D2383B2B2DDCD1B4C8
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/GREH1iusyF2pbQEAedAI5yIOVzs.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
94.206.181.0/24 maxlen: 24
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
94.201.251.0/24 maxlen: 24
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
87.200.0.0/15 maxlen: 19
94.201.196.0/22 maxlen: 22
80.227.0.0/16 maxlen: 19
91.72.0.0/14 maxlen: 19
91.73.216.0/23 maxlen: 23
91.72.204.0/24 maxlen: 24
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
94.203.204.0/22 maxlen: 22
91.74.78.0/23 maxlen: 23
213.132.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
80.227.200.0/22 maxlen: 22
94.200.248.0/22 maxlen: 22
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:07:bc:f0:90:b2:d2:38:3b:2b:2d:dc:d1:b4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=191107d62bacc85da96d010079d008e7220e573b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:de:90:eb:91:28:ef:18:e1:c3:03:e2:1b:7b:
bb:1f:7d:ab:de:4a:6b:23:e9:b3:b0:d2:ce:ff:75:
15:9d:b7:48:cc:95:3f:17:40:6b:f7:9a:c8:46:d0:
0e:28:2b:de:ba:8e:92:70:f1:82:42:83:df:8d:7c:
44:09:59:8f:57:16:d9:6a:a4:c0:c1:52:b2:39:74:
be:f3:d4:3c:a5:e9:64:bb:ee:da:5b:69:95:6e:ae:
83:e3:7b:19:1a:76:ef:99:b7:8c:20:cb:75:7a:d7:
77:bd:9c:07:80:d0:22:d0:dc:ca:44:98:f2:54:27:
41:9b:e5:de:1e:9b:f5:6b:8a:96:e8:54:20:2d:da:
5a:06:bf:38:09:61:94:56:00:9d:f8:e8:2e:af:c4:
10:22:1b:1b:d6:60:1d:56:85:08:56:d8:6b:c6:84:
10:75:ce:5f:bb:47:ee:00:e4:30:21:a3:65:64:5d:
d5:f6:43:35:56:ce:c2:0f:19:f1:2b:cc:4d:59:b6:
27:d9:c8:e8:46:d6:4f:4c:db:fe:a7:c1:f6:bf:40:
8e:1e:87:16:7e:2d:0d:3f:fd:31:13:7f:b9:69:22:
a3:66:b8:eb:ca:84:c2:dd:ae:57:4b:19:00:5a:cc:
65:e7:1c:8f:fe:b4:6c:28:bc:51:27:7f:06:80:c3:
9c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:11:07:D6:2B:AC:C8:5D:A9:6D:01:00:79:D0:08:E7:22:0E:57:3B
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/GREH1iusyF2pbQEAedAI5yIOVzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6a:95:02:13:a7:b5:77:de:b8:ed:09:4a:1f:5a:92:04:f5:d1:
93:15:4a:2f:18:e1:39:47:8a:6b:7b:51:01:22:c4:7a:28:39:
42:4a:47:7a:2d:c4:26:7c:9b:36:79:7c:1c:aa:11:c3:78:64:
e7:01:01:09:1a:9f:8d:ec:5a:9e:3e:46:c0:e9:95:1e:2c:98:
7f:04:04:89:a1:fe:28:9e:f2:56:09:62:37:0d:5b:8f:f7:d0:
0f:d8:b3:05:ee:52:e2:a2:11:d8:b0:a4:52:e0:2a:32:37:cb:
d3:d4:7f:57:9c:a9:c2:e7:85:5c:37:b0:e6:71:b1:81:75:fa:
6a:e6:98:2d:c9:aa:a5:4d:5b:a5:62:65:6b:8f:15:42:dc:e9:
36:d5:d0:2d:bf:2c:9b:26:bd:55:6d:a4:a9:cc:3c:01:4f:7c:
93:17:8f:78:a2:43:ee:82:91:10:7b:48:14:22:5d:4d:54:1d:
ed:73:bc:6d:f1:ab:dd:f2:5c:47:1a:62:95:10:8e:59:59:16:
d7:35:44:a7:71:a8:74:32:d2:72:21:fe:4d:98:b8:fe:3c:52:
93:5e:d6:8b:c4:99:f4:26:1e:34:be:64:81:0e:09:32:ee:56:
c0:a5:55:16:07:eb:7c:e1:fe:ae:c8:85:c7:e7:42:8e:10:3a:
3f:b1:92:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org