Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/SeaqXl1R2Pm_SJznEhwGk7nyNqM.roa
File: SeaqXl1R2Pm_SJznEhwGk7nyNqM.roa (raw, json)
Hash identifier: aBAzoILzPn6PulUhdm1Uj7A+VpimjqZNBEPRuoJIQAg=
Subject key identifier: 49:E6:AA:5E:5D:51:D8:F9:BF:48:9C:E7:12:1C:06:93:B9:F2:36:A3
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018ADDC17E04366DB20FDC658226F95BBBD8
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/SeaqXl1R2Pm_SJznEhwGk7nyNqM.roa
Signing time: Thu 28 Sep 2023 21:46:00 +0000
ROA not before: Thu 28 Sep 2023 21:46:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50131
IP address blocks: 178.22.30.0/24 maxlen: 32
194.124.218.0/23 maxlen: 32
194.124.224.0/23 maxlen: 32
45.142.157.0/24 maxlen: 32
45.142.158.0/23 maxlen: 32
45.142.156.0/24 maxlen: 32
94.154.114.0/24 maxlen: 32
194.147.98.0/23 maxlen: 32
194.147.100.0/23 maxlen: 32
188.93.139.0/24 maxlen: 32
45.150.226.0/23 maxlen: 32
193.218.200.0/23 maxlen: 32
45.154.212.0/22 maxlen: 32
193.221.94.0/23 maxlen: 32
45.150.164.0/22 maxlen: 32
45.151.132.0/22 maxlen: 32
45.145.74.0/23 maxlen: 32
45.145.72.0/23 maxlen: 32
2a0e:da40:4000::/34 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dd:c1:7e:04:36:6d:b2:0f:dc:65:82:26:f9:5b:bb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Sep 28 21:46:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49e6aa5e5d51d8f9bf489ce7121c0693b9f236a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cc:42:b7:8e:74:42:14:b0:b4:f3:87:df:eb:
37:7e:97:de:62:27:ca:62:92:51:b9:31:00:9a:ed:
48:76:63:bf:1e:7d:13:f0:67:c5:18:a2:c6:70:a8:
6a:cb:16:88:f4:7d:10:5d:72:1b:be:9f:1b:3b:ff:
12:72:0e:cb:34:47:6b:8a:f7:5f:24:c5:3f:2f:fb:
a1:fb:ae:33:c0:3b:3a:7e:c1:f3:25:58:a8:52:31:
15:04:17:19:e8:ad:09:21:e2:27:8c:df:7e:68:52:
be:4a:f3:43:f7:09:09:a4:6c:71:17:c6:44:ca:c7:
2b:76:18:1e:17:bc:0a:c9:da:bb:dc:e8:da:d0:de:
ef:04:7d:c8:dc:10:1b:6a:bd:a8:27:a4:b6:8f:ab:
85:42:0f:6e:9d:e9:db:df:8a:45:e9:6d:80:fa:c4:
1e:d3:f8:26:49:9a:d2:57:4c:72:fe:8e:f2:05:5a:
d9:1f:b8:c8:08:11:ce:41:59:f5:b5:20:02:ae:d9:
de:ca:50:61:ee:1b:9d:95:5d:f0:13:db:78:dd:c6:
3f:80:ce:e8:a6:6e:f0:59:dd:13:9c:e6:4d:7d:eb:
0c:69:17:56:fd:ab:ab:8b:e8:9a:0c:b5:b1:91:b5:
9f:cc:53:96:ed:68:00:6e:6d:21:3e:20:31:07:d2:
c8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E6:AA:5E:5D:51:D8:F9:BF:48:9C:E7:12:1C:06:93:B9:F2:36:A3
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/SeaqXl1R2Pm_SJznEhwGk7nyNqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.156.0/22
45.145.72.0/22
45.150.164.0/22
45.150.226.0/23
45.151.132.0/22
45.154.212.0/22
94.154.114.0/24
178.22.30.0/24
188.93.139.0/24
193.218.200.0/23
193.221.94.0/23
194.124.218.0/23
194.124.224.0/23
194.147.98.0-194.147.101.255
IPv6:
2a0e:da40:4000::/34
Signature Algorithm: sha256WithRSAEncryption
5c:b7:c6:2f:7d:8c:f5:47:37:96:27:e8:a1:fa:d8:5d:08:b9:
4d:ce:04:c0:4f:98:72:40:55:fb:38:14:e0:ef:27:60:3e:9e:
7a:a7:0c:aa:fa:b0:f9:65:4d:4c:bd:5a:6f:98:d7:0f:ca:76:
61:bb:10:54:ae:a8:d8:2c:3d:fb:d8:1b:ca:04:8a:22:6c:01:
51:8b:d1:8b:cd:a3:aa:b3:d1:fd:1e:4a:03:48:f2:c1:bb:d7:
22:d4:77:ef:af:e3:ab:2e:e9:1d:43:f6:30:b7:87:c6:d3:46:
7d:42:ee:f0:5d:c9:f3:fe:b4:1b:aa:26:21:23:4c:ce:3c:9b:
9e:21:0b:fe:4b:00:93:de:b0:d3:c3:f7:ed:70:51:4a:fe:f8:
38:f6:87:69:ac:4f:f1:97:e2:22:21:79:83:fa:c0:e3:6b:40:
2a:42:77:34:09:a0:8d:04:d4:06:b3:05:cf:0b:19:3c:f2:fc:
d9:62:09:5e:bb:0e:8a:2c:c4:ac:b9:ba:87:42:31:82:64:db:
77:c4:fc:cc:6f:d6:0f:2c:0b:8a:35:c5:0f:6c:7a:c6:04:a5:
ad:f2:95:1f:d2:f5:49:06:37:f3:38:6b:3f:f3:65:41:ae:aa:
55:5d:51:25:f0:8b:5f:51:d2:24:44:ee:e7:49:c4:90:5e:14:
6a:31:4e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:07 2024 by rpki-client on console-fra.rpki-client.org