Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/vovxCScg9WYhcsPl3RtGc_OOtxI.roa
File: vovxCScg9WYhcsPl3RtGc_OOtxI.roa (raw, json)
Hash identifier: 66FAHTtYGZhmXWm2AkpAgLt6AKXCYrLk3dBnnUCw1r0=
Subject key identifier: BE:8B:F1:09:27:20:F5:66:21:72:C3:E5:DD:1B:46:73:F3:8E:B7:12
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018921D711D2BCFB7B411D07CBC8F35B0C9E
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/vovxCScg9WYhcsPl3RtGc_OOtxI.roa
Signing time: Tue 04 Jul 2023 16:58:10 +0000
ROA not before: Tue 04 Jul 2023 16:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50131
IP address blocks: 194.124.218.0/23 maxlen: 32
194.124.224.0/23 maxlen: 32
45.142.157.0/24 maxlen: 32
45.142.158.0/23 maxlen: 32
45.142.156.0/24 maxlen: 32
194.147.98.0/23 maxlen: 32
194.147.100.0/23 maxlen: 32
45.150.226.0/23 maxlen: 32
193.218.200.0/23 maxlen: 32
45.154.212.0/22 maxlen: 32
193.221.94.0/23 maxlen: 32
45.150.164.0/22 maxlen: 32
45.151.132.0/22 maxlen: 32
45.145.74.0/23 maxlen: 32
45.145.72.0/23 maxlen: 32
2a0e:da40:4000::/34 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:21:d7:11:d2:bc:fb:7b:41:1d:07:cb:c8:f3:5b:0c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jul 4 16:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be8bf1092720f5662172c3e5dd1b4673f38eb712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7e:a9:c4:ca:3a:94:32:de:c2:7f:12:32:46:
ce:08:17:84:14:77:83:43:20:f0:96:5c:13:a5:46:
84:29:7f:72:45:fb:c1:50:c9:cb:62:dc:35:75:16:
1b:1b:19:2e:04:fb:bc:68:70:6d:58:13:7b:dd:3e:
aa:f5:47:84:7a:4c:b9:66:9b:3c:f1:8c:8b:0f:b9:
88:e0:42:92:af:e8:81:4c:7e:da:ad:e0:71:19:8e:
d0:74:3c:7d:a9:ba:21:5e:d3:48:40:91:6c:c6:d2:
54:a9:59:8c:85:d9:31:e2:1a:93:f7:8b:13:bd:6c:
36:c5:5f:33:e9:bb:4c:76:b7:f1:91:6b:fe:9e:cb:
e0:3b:b7:5e:94:86:a4:1a:1b:e1:ab:30:25:21:8c:
70:b7:59:7f:89:b6:92:48:40:6a:9f:a9:d8:01:40:
d9:b9:63:89:24:04:7f:c9:04:45:87:c4:10:35:14:
df:a6:a1:3f:89:41:e4:52:27:8e:87:b4:3d:6f:1c:
48:0b:a2:02:1b:d8:49:64:fa:21:7e:be:53:29:7b:
9d:f1:8a:02:c0:ac:ba:1d:0b:9b:8f:b6:48:75:0c:
1c:8c:92:fb:9e:c2:4d:11:57:b6:0d:64:1c:cd:aa:
07:5f:b7:1c:92:fa:e2:57:25:6b:7d:95:bd:27:9a:
b7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8B:F1:09:27:20:F5:66:21:72:C3:E5:DD:1B:46:73:F3:8E:B7:12
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/vovxCScg9WYhcsPl3RtGc_OOtxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.156.0/22
45.145.72.0/22
45.150.164.0/22
45.150.226.0/23
45.151.132.0/22
45.154.212.0/22
193.218.200.0/23
193.221.94.0/23
194.124.218.0/23
194.124.224.0/23
194.147.98.0-194.147.101.255
IPv6:
2a0e:da40:4000::/34
Signature Algorithm: sha256WithRSAEncryption
e4:79:fd:84:5d:30:2b:d5:66:00:08:74:51:ae:4e:24:c9:67:
7e:86:43:71:4a:21:42:eb:45:84:b8:09:3c:2c:6a:25:16:60:
8e:ca:e5:96:66:98:2b:d2:eb:84:92:58:c7:b6:3d:9a:16:e4:
43:19:25:84:a3:38:89:17:ec:89:f5:c5:0c:62:bb:e0:03:c1:
c8:45:25:cd:6c:01:b2:12:fa:ea:17:00:57:4c:96:d7:e2:60:
e1:05:61:61:74:6a:9e:78:22:70:2b:48:03:5d:0f:9f:4e:6e:
2d:b3:99:0a:58:3e:b8:c1:18:8b:5a:be:69:d2:e0:81:30:16:
71:dc:61:cd:0f:5f:79:89:80:a9:2b:ba:cc:9e:d0:31:39:83:
99:af:15:23:14:9f:d1:f6:8a:40:61:4f:22:54:26:7e:6e:53:
4c:c5:f1:c4:a4:bc:a6:b1:c2:7f:38:f8:f1:83:23:bc:b3:c6:
cf:66:9d:69:5c:4e:e2:d2:fa:19:fd:af:31:e2:29:0d:75:81:
eb:31:7c:15:f2:e0:d8:ae:26:e9:c2:9a:4c:b7:4a:37:1f:fd:
9f:7a:3c:c6:e0:0c:36:a1:56:c0:31:b6:4e:72:26:c6:33:08:
e7:3f:17:eb:23:79:f4:c1:bc:9f:1b:d4:2f:ac:53:82:bd:e7:
ba:d7:45:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 24 02:56:21 2023 by rpki-client on console-fra.rpki-client.org