Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/pGaPiW2F-BITAr1iFc9eKb-_nSo.roa
File: pGaPiW2F-BITAr1iFc9eKb-_nSo.roa (raw, json)
Hash identifier: kaS+WzfA/wcKd1SVwYaRAJ30zoKfiAs+h3KgHYjflQw=
Subject key identifier: A4:66:8F:89:6D:85:F8:12:13:02:BD:62:15:CF:5E:29:BF:BF:9D:2A
Certificate issuer: /CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Certificate serial: 018571B0E3A3BDC0788BEA28313572629C3E
Authority key identifier: F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/pGaPiW2F-BITAr1iFc9eKb-_nSo.roa
Signing time: Mon 02 Jan 2023 08:54:56 +0000
ROA not before: Mon 02 Jan 2023 08:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 176.53.74.0/24 maxlen: 24
176.53.96.0/24 maxlen: 24
185.184.208.0/22 maxlen: 24
77.75.32.0/21 maxlen: 24
31.210.64.0/18 maxlen: 24
213.128.64.0/19 maxlen: 24
46.45.186.0/24 maxlen: 24
46.45.185.0/24 maxlen: 24
94.101.80.0/20 maxlen: 24
46.45.188.0/24 maxlen: 24
46.45.187.0/24 maxlen: 24
94.101.90.0/24 maxlen: 24
213.128.95.0/24 maxlen: 24
213.128.94.0/24 maxlen: 24
213.128.93.0/24 maxlen: 24
46.45.128.0/18 maxlen: 24
185.25.103.0/24 maxlen: 24
185.25.102.0/24 maxlen: 24
185.25.101.0/24 maxlen: 24
185.25.100.0/24 maxlen: 24
176.53.0.0/17 maxlen: 24
79.98.128.0/21 maxlen: 24
185.157.40.0/22 maxlen: 24
178.211.32.0/19 maxlen: 24
2a00:56a0::/32 maxlen: 48
2a01:790::/32 maxlen: 48
2a0b:5f40::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:e3:a3:bd:c0:78:8b:ea:28:31:35:72:62:9c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f571bbf1d3d3c0efe36de110392be0c7ac447a84
Validity
Not Before: Jan 2 08:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4668f896d85f8121302bd6215cf5e29bfbf9d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:52:53:a3:c3:4d:a7:14:12:18:9d:ba:db:af:
52:7b:14:61:10:ab:7e:d8:10:4e:e8:2c:b4:32:b3:
0f:4a:fb:ce:d7:d2:0d:97:74:c4:be:0f:ba:ed:bc:
b6:9c:45:11:c8:28:22:49:50:b9:cd:12:8b:37:8b:
24:e1:f6:01:ba:8f:b3:7f:d9:02:f2:c6:a9:ad:6d:
e1:ea:8d:3d:7e:fb:06:28:27:0e:a7:5a:77:97:2f:
f9:fe:80:24:80:63:a4:08:c3:fd:24:bb:b4:0c:ec:
0a:7c:e8:e5:c0:e9:e9:b9:f4:d3:1f:d9:4a:bd:79:
0f:00:a4:3d:c5:fd:17:6c:8c:af:27:81:3f:3e:a6:
5a:39:e4:71:2f:aa:01:f9:3d:5b:1c:39:c6:5e:f7:
5d:a1:cb:91:e7:3f:cf:59:df:32:80:45:22:2c:05:
e7:80:55:14:da:7a:c0:fe:ea:b2:ad:41:50:1b:c8:
c1:3c:33:c5:ec:be:0e:cb:0c:93:83:d8:cf:1f:80:
f8:0c:60:cb:d2:1e:13:d9:72:75:92:10:22:c1:35:
b5:94:b3:e3:38:20:90:e2:39:30:99:a7:03:fa:7a:
ca:3f:80:08:c1:59:2f:82:bd:5b:19:ab:03:01:35:
ff:55:4a:60:4a:2b:c5:48:36:98:40:92:5f:43:2f:
38:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:66:8F:89:6D:85:F8:12:13:02:BD:62:15:CF:5E:29:BF:BF:9D:2A
X509v3 Authority Key Identifier:
keyid:F5:71:BB:F1:D3:D3:C0:EF:E3:6D:E1:10:39:2B:E0:C7:AC:44:7A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XG78dPTwO_jbeEQOSvgx6xEeoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/pGaPiW2F-BITAr1iFc9eKb-_nSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/68303f-e8b0-4fe0-96b6-a9657eb1f8d7/1/9XG78dPTwO_jbeEQOSvgx6xEeoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.64.0/18
46.45.128.0/18
77.75.32.0/21
79.98.128.0/21
94.101.80.0/20
176.53.0.0/17
178.211.32.0/19
185.25.100.0/22
185.157.40.0/22
185.184.208.0/22
213.128.64.0/19
IPv6:
2a00:56a0::/32
2a01:790::/32
2a0b:5f40::/29
Signature Algorithm: sha256WithRSAEncryption
67:1d:be:cb:aa:56:7b:ba:bd:96:c0:d6:e8:61:a9:2c:68:4c:
ea:61:c9:c4:a3:54:fe:66:bf:8f:71:67:76:b0:64:e3:a6:88:
fa:fb:d7:1f:58:95:75:d7:77:a7:11:5e:34:21:cc:83:d3:9c:
ba:ed:19:6c:68:cb:9e:44:07:9d:37:c9:b7:37:5a:ed:c5:2e:
5a:b2:5c:9c:f4:98:b8:91:b3:bd:bb:50:7b:f5:26:d9:c4:9a:
ce:82:6e:08:82:03:94:58:df:5e:7c:f9:ca:5d:67:99:cd:be:
a2:98:24:1b:8a:7f:f4:2a:fb:e3:d0:d0:4c:3c:87:cc:3a:78:
ef:20:15:69:05:71:e8:3f:ea:51:d1:49:1f:95:59:f3:a8:46:
31:82:5a:ea:48:ad:42:67:72:97:ac:13:7c:1e:b5:7f:37:c5:
46:4d:90:74:9e:44:13:c4:43:0c:b5:30:52:31:c5:f0:11:a6:
f0:de:f2:0c:67:3b:f2:ac:2a:ea:79:3e:f9:de:7a:12:91:26:
46:85:91:a2:5b:24:fe:29:32:01:bd:55:bb:99:3c:21:c5:66:
62:00:5e:5c:d8:3d:b8:fa:3c:83:d9:76:ac:9a:db:10:c5:6f:
cd:e3:27:c0:b5:a8:8c:27:5b:d3:4e:8a:e9:8b:69:30:a1:6c:
0d:af:30:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:43 2024 by rpki-client on console-ams.rpki-client.org