Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/8Y0V0qj9iXp9WjkTnFk1jYdvtTI.roa
File: 8Y0V0qj9iXp9WjkTnFk1jYdvtTI.roa (raw, json)
Hash identifier: J+0p/S3Bxz14t6U+DKSbyNaTjwwW0oobqXxm+X6yz/w=
Subject key identifier: F1:8D:15:D2:A8:FD:89:7A:7D:5A:39:13:9C:59:35:8D:87:6F:B5:32
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 01880C34DA3EEE087380C214D2DAF9E07AAE
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/8Y0V0qj9iXp9WjkTnFk1jYdvtTI.roa
Signing time: Thu 11 May 2023 19:06:10 +0000
ROA not before: Thu 11 May 2023 19:06:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209854
IP address blocks: 89.37.94.0/24 maxlen: 24
86.106.116.0/24 maxlen: 24
86.104.213.0/24 maxlen: 24
86.104.212.0/24 maxlen: 24
188.208.221.0/24 maxlen: 24
188.208.220.0/24 maxlen: 24
188.208.223.0/24 maxlen: 24
188.209.125.0/24 maxlen: 24
188.209.124.0/24 maxlen: 24
193.30.255.0/24 maxlen: 24
89.41.27.0/24 maxlen: 24
93.119.125.0/24 maxlen: 24
46.102.178.0/24 maxlen: 24
46.102.177.0/24 maxlen: 24
46.102.179.0/24 maxlen: 24
86.104.2.0/24 maxlen: 24
86.104.1.0/24 maxlen: 24
86.104.0.0/24 maxlen: 24
176.223.160.0/24 maxlen: 24
77.81.91.0/24 maxlen: 24
77.81.90.0/24 maxlen: 24
89.42.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0c:34:da:3e:ee:08:73:80:c2:14:d2:da:f9:e0:7a:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: May 11 19:06:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f18d15d2a8fd897a7d5a39139c59358d876fb532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4c:3b:d0:2d:f0:e7:a7:3d:a5:7d:4d:d4:11:
d2:4f:eb:04:17:09:c4:c2:57:c3:45:8b:44:a6:95:
46:cc:ee:ef:c4:c2:1a:5e:e6:55:39:c2:23:7c:da:
b7:ca:cc:1d:ca:4a:f6:1a:40:d8:5a:28:2b:94:4a:
88:09:1c:89:a2:12:b0:17:78:a7:c9:f6:8a:5c:a7:
c2:16:7b:76:b7:74:1a:54:66:45:10:74:f6:d7:7a:
1c:b2:86:91:4f:fc:b2:8f:5d:c9:84:27:c8:06:9a:
e2:95:55:e2:1a:42:b2:ec:de:30:d2:0f:48:59:ee:
8a:62:1b:2f:1d:2c:93:9c:27:df:de:99:18:79:ac:
e4:c1:5c:62:ee:9e:26:48:fd:77:6e:d6:9d:e0:e2:
a0:29:d7:d7:f4:d0:7d:f0:da:cb:90:72:e8:ff:f6:
3b:a5:e4:5a:53:54:09:88:d7:e5:0e:74:51:52:63:
aa:05:f2:0f:df:40:c5:c0:fb:4a:1b:35:b0:ed:d8:
5c:6b:69:a0:a4:8a:55:a6:82:90:2a:b3:aa:57:81:
54:d7:8a:ea:07:d6:b0:ba:27:bc:28:5b:df:33:3e:
b2:95:8e:53:20:c3:38:5d:9d:39:63:78:b7:6f:08:
e5:22:d8:23:34:08:c4:f2:72:93:f5:7a:9d:75:1b:
c5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8D:15:D2:A8:FD:89:7A:7D:5A:39:13:9C:59:35:8D:87:6F:B5:32
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/8Y0V0qj9iXp9WjkTnFk1jYdvtTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.177.0-46.102.179.255
77.81.90.0/23
86.104.0.0-86.104.2.255
86.104.212.0/23
86.106.116.0/24
89.37.94.0/24
89.41.27.0/24
89.42.154.0/24
93.119.125.0/24
176.223.160.0/24
188.208.220.0/23
188.208.223.0/24
188.209.124.0/23
193.30.255.0/24
Signature Algorithm: sha256WithRSAEncryption
22:56:d9:92:86:c2:20:54:7d:da:50:6f:8d:03:47:88:d6:cc:
a8:c4:7a:c7:65:bb:44:8a:68:82:59:b5:a2:69:ee:6b:39:d6:
27:2d:27:09:c4:3a:1a:c3:2c:a0:ff:07:60:3f:ee:98:05:f3:
c5:73:80:55:66:bb:ec:66:ca:c5:d1:4a:a4:67:28:7c:28:68:
52:bb:9e:a2:5e:3d:59:89:1a:1b:30:c8:5e:60:ac:2d:16:1e:
bf:54:29:81:e4:9d:16:04:2a:98:4c:97:e0:01:6e:3b:ba:11:
93:87:56:fb:f9:ac:ac:49:d3:cf:97:35:1c:14:d6:ad:92:c4:
9a:3d:6f:9a:63:4a:93:3f:7f:e4:76:3a:94:99:0c:96:31:c3:
f0:95:5a:ef:4b:f7:91:93:f3:a8:e3:e6:1a:1f:bd:96:23:71:
f5:6e:69:a0:df:3d:5e:60:35:c8:75:35:b4:cc:fc:99:eb:c0:
74:76:e4:9c:2d:61:09:6c:db:89:55:40:4c:a6:8b:c5:76:08:
1c:5a:2f:4b:8b:12:10:05:83:e1:21:db:d8:f1:61:6a:ee:71:
51:ba:26:a1:8f:dc:37:2d:2c:63:e6:75:96:f1:9e:72:6a:57:
5f:1b:98:c4:80:ca:64:42:c4:c5:c3:60:79:bf:bc:c0:90:2d:
84:04:26:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 12:23:07 2023 by rpki-client on console-ams.rpki-client.org