Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/m4w-XZvmApyWLuJuzv9VRWs2jkI.roa
File: m4w-XZvmApyWLuJuzv9VRWs2jkI.roa (raw, json)
Hash identifier: wvCDgab7k1kZQcw+aGEMEW27OefmaE0BueDPfhQFwZg=
Subject key identifier: 9B:8C:3E:5D:9B:E6:02:9C:96:2E:E2:6E:CE:FF:55:45:6B:36:8E:42
Certificate issuer: /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial: 01856D01B43DFAF68225A57F17A6F0017936
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/m4w-XZvmApyWLuJuzv9VRWs2jkI.roa
Signing time: Sun 01 Jan 2023 11:05:06 +0000
ROA not before: Sun 01 Jan 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197922
IP address blocks: 188.214.25.0/24 maxlen: 24
93.118.32.0/22 maxlen: 22
91.236.239.0/24 maxlen: 24
185.41.152.0/22 maxlen: 22
91.236.254.0/24 maxlen: 24
91.236.255.0/24 maxlen: 24
93.115.96.0/23 maxlen: 23
91.229.20.0/24 maxlen: 24
188.213.24.0/22 maxlen: 22
188.213.28.0/22 maxlen: 22
93.113.206.0/23 maxlen: 23
89.38.238.0/23 maxlen: 23
86.105.254.0/24 maxlen: 24
86.105.255.0/24 maxlen: 24
86.107.189.0/24 maxlen: 24
86.107.190.0/24 maxlen: 24
188.213.140.0/22 maxlen: 22
185.13.36.0/24 maxlen: 24
185.13.37.0/24 maxlen: 24
185.13.38.0/24 maxlen: 24
185.13.39.0/24 maxlen: 24
86.104.252.0/23 maxlen: 23
86.105.212.0/23 maxlen: 23
2a03:75c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:b4:3d:fa:f6:82:25:a5:7f:17:a6:f0:01:79:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4e2896897a9721678e684693993a5a884903364
Validity
Not Before: Jan 1 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b8c3e5d9be6029c962ee26eceff55456b368e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0e:17:0c:e1:b6:bf:a1:d0:7d:98:7a:95:1d:
a6:6b:23:41:72:98:b6:42:e3:a3:d9:1f:23:3e:ef:
09:83:ed:3f:0c:30:d8:04:44:c8:82:48:31:db:e9:
82:73:37:dd:df:08:1b:f7:04:2c:86:94:02:52:c9:
a4:43:60:f1:57:32:84:52:7d:93:5d:25:3a:ea:e6:
1a:a9:f6:2c:01:cc:ea:f2:49:2b:10:d2:47:29:08:
95:2e:77:b1:63:f7:4e:34:a5:80:9e:be:58:0e:24:
8c:21:f2:4e:4f:b3:18:76:45:80:c0:45:78:b8:f4:
a6:0e:f2:49:c5:e4:0f:f1:36:ae:2d:f5:7e:fc:73:
95:8b:bc:4d:76:e5:e1:ab:7c:be:7d:66:bd:8b:c9:
2c:00:27:6c:a6:96:ac:c5:fa:75:3e:5d:4c:2c:8b:
0d:e6:78:c4:8f:62:71:0d:76:5d:32:8a:dd:da:f2:
c4:cb:cb:eb:bb:4d:e6:79:5a:db:aa:9d:16:72:cf:
e3:bd:e2:1b:6b:27:1e:68:9f:fa:7b:a4:88:03:22:
96:19:ec:91:05:71:d7:8d:b1:03:59:d8:b1:22:24:
e7:4a:58:6b:d5:10:d1:89:cf:e7:45:54:a6:89:8c:
6d:72:aa:67:6f:6e:43:02:4c:44:89:1e:9c:df:52:
d4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8C:3E:5D:9B:E6:02:9C:96:2E:E2:6E:CE:FF:55:45:6B:36:8E:42
X509v3 Authority Key Identifier:
keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/m4w-XZvmApyWLuJuzv9VRWs2jkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.252.0/23
86.105.212.0/23
86.105.254.0/23
86.107.189.0-86.107.190.255
89.38.238.0/23
91.229.20.0/24
91.236.239.0/24
91.236.254.0/23
93.113.206.0/23
93.115.96.0/23
93.118.32.0/22
185.13.36.0/22
185.41.152.0/22
188.213.24.0/21
188.213.140.0/22
188.214.25.0/24
IPv6:
2a03:75c0::/32
Signature Algorithm: sha256WithRSAEncryption
3a:97:cd:bc:0c:39:f9:84:4f:b9:c5:9f:28:e6:17:69:0a:7b:
e2:71:bd:5e:28:e6:37:c0:f0:55:bd:e1:a3:d4:53:5e:c0:5e:
16:7a:21:cf:cb:47:2c:2e:36:c9:93:e2:ac:fe:75:80:43:52:
a0:00:09:b5:ca:1b:f4:2f:2f:94:66:b4:fe:bc:16:24:51:b3:
d2:57:45:ec:8b:49:1f:d7:3d:5b:30:ce:1b:48:34:d2:c6:90:
48:54:ed:30:05:d0:ab:5e:07:08:17:ff:5c:f5:89:94:f3:48:
9a:56:12:e8:9a:6f:82:1a:ec:1d:8b:b8:b4:ec:3d:e6:8d:fb:
d9:a5:9f:69:c4:7b:6f:74:19:28:d3:40:b6:f1:7b:41:19:f6:
f3:b9:18:da:45:bb:52:6a:78:35:6d:05:36:c2:d2:9e:e4:9c:
5b:e8:1c:1d:4d:ab:a5:d8:32:56:56:f8:16:46:a2:97:f3:85:
2e:79:24:69:bb:fe:18:d9:a4:96:2d:b5:72:ef:ac:9e:67:cf:
2f:2e:47:34:47:93:f1:ec:1b:a9:ec:c5:c3:d8:3f:14:d9:51:
1b:df:8e:aa:2b:32:f1:1e:0c:83:a2:c9:2d:36:b8:d9:b0:96:
04:ac:df:df:df:ca:9a:47:f0:a6:d2:64:9f:f9:ac:76:2a:b8:
bf:9b:e2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:30 2024 by rpki-client on console-ams.rpki-client.org