Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uFjKb_AV68zvOds1imKtYDwumxE.roa
File: uFjKb_AV68zvOds1imKtYDwumxE.roa (raw, json)
Hash identifier: K972hEl3hMi784/8rdEbIGf3LPuz1UQ9hsKHy7T3klE=
Subject key identifier: B8:58:CA:6F:F0:15:EB:CC:EF:39:DB:35:8A:62:AD:60:3C:2E:9B:11
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F799145D35041120F8919306B36F367
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uFjKb_AV68zvOds1imKtYDwumxE.roa
Signing time: Sun 01 Jan 2023 22:35:16 +0000
ROA not before: Sun 01 Jan 2023 22:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 45.86.202.0/24 maxlen: 24
45.86.200.0/24 maxlen: 24
136.144.17.0/24 maxlen: 24
193.37.33.0/24 maxlen: 24
193.37.32.0/24 maxlen: 24
136.144.19.0/24 maxlen: 24
194.5.48.0/24 maxlen: 24
194.5.49.0/24 maxlen: 24
136.144.33.0/24 maxlen: 24
194.5.52.0/24 maxlen: 24
194.5.53.0/24 maxlen: 24
136.144.42.0/24 maxlen: 24
194.34.173.0/24 maxlen: 24
45.84.216.0/24 maxlen: 24
193.36.224.0/24 maxlen: 24
193.36.225.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
193.176.211.0/24 maxlen: 24
45.154.138.0/24 maxlen: 24
45.146.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:91:45:d3:50:41:12:0f:89:19:30:6b:36:f3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b858ca6ff015ebccef39db358a62ad603c2e9b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6d:42:a5:bb:4a:05:d8:f3:a9:1c:7d:65:9c:
cd:d7:ae:3f:6b:d7:ee:de:f3:86:da:00:8b:12:1d:
c5:b6:4e:d5:74:50:2a:7d:0d:d7:84:8e:89:b4:a2:
ae:c3:4b:2c:a1:04:9c:b6:b4:3a:75:7b:73:2c:91:
41:7a:cd:2b:a2:37:3f:0e:cd:ac:85:ba:79:50:c9:
40:1b:63:c7:9f:bb:8d:fd:c7:63:35:a4:c4:60:cd:
3f:a6:a7:82:33:e2:b3:e4:74:93:f1:c9:59:14:01:
b7:4a:27:b0:01:c2:de:de:e0:f4:c2:a0:ce:63:fa:
38:97:05:84:b9:40:67:4b:e3:9b:2a:c0:0d:59:e8:
82:53:ad:9d:86:3d:86:25:65:87:b4:44:d1:50:8f:
68:1b:2e:17:01:71:2b:4e:34:06:d8:46:e0:f6:7a:
47:bc:a9:a2:31:8d:e8:ae:5f:5c:e9:4f:33:ce:df:
d9:65:c0:56:c1:6c:9a:1a:ef:0c:81:41:77:29:84:
f9:7b:b4:6a:96:9a:4c:bc:79:eb:d1:92:d1:a9:cb:
84:34:7a:98:ff:bb:9d:6b:75:d6:a9:01:60:83:df:
ef:51:a2:7a:1c:39:c0:1e:65:0f:4d:f2:48:e4:50:
e0:33:46:87:bc:1e:b7:43:be:fa:3a:7a:0d:4d:c0:
1a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:58:CA:6F:F0:15:EB:CC:EF:39:DB:35:8A:62:AD:60:3C:2E:9B:11
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uFjKb_AV68zvOds1imKtYDwumxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/24
45.86.200.0/24
45.86.202.0/24
45.95.243.0/24
45.146.54.0/24
45.154.138.0/24
136.144.17.0/24
136.144.19.0/24
136.144.33.0/24
136.144.42.0/24
193.36.224.0/23
193.37.32.0/23
193.176.211.0/24
194.5.48.0/23
194.5.52.0/23
194.34.173.0/24
Signature Algorithm: sha256WithRSAEncryption
67:5f:cd:55:65:8a:70:da:1c:76:99:c3:42:3c:9d:f0:0a:d6:
24:62:b3:6e:3b:8b:d2:4c:a2:93:2a:b9:7c:87:44:b9:a6:5b:
55:42:d5:7e:97:c6:46:44:ba:67:f4:f1:62:41:4d:1a:8c:b5:
9b:9f:f1:3a:fd:8e:0e:ab:10:e1:2f:20:3b:3f:ca:b6:e2:9f:
a5:29:fd:c5:c1:46:49:7a:1c:b5:0c:f4:fb:f4:4d:be:7a:84:
21:4b:16:3a:e9:0c:90:fe:28:db:5a:7e:4d:1c:e1:ac:3a:be:
d8:15:1d:41:08:36:8a:db:26:90:7f:af:88:7a:ed:49:22:45:
eb:e8:11:a5:03:a5:12:24:9b:80:72:5a:55:57:11:fc:81:10:
27:3c:6c:c3:c7:49:f9:8a:5d:99:6c:c7:3c:01:db:fd:0f:b4:
87:55:5f:ee:13:65:61:b2:6d:d7:79:5c:7a:4e:83:e9:77:ff:
ae:1f:95:10:04:75:cc:7d:0a:8c:56:73:2f:8e:62:8d:a9:ba:
4b:ee:55:91:3b:73:84:22:36:25:f2:44:f7:67:f9:57:99:17:
92:25:d3:e4:b3:6f:d7:d6:0b:d1:7e:8d:18:d5:68:97:72:5f:
a2:04:0d:ee:c0:82:7d:e3:51:42:a6:47:34:be:b8:d3:c7:37:
ae:02:4e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org