Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/aIQwPy6gi2YEGEuyiVIvWxAC0Zw.roa
File: aIQwPy6gi2YEGEuyiVIvWxAC0Zw.roa (raw, json)
Hash identifier: UQcgYbaLCEKe3aay5HjmhVctQ4npc87DvQos6YTDDIE=
Subject key identifier: 68:84:30:3F:2E:A0:8B:66:04:18:4B:B2:89:52:2F:5B:10:02:D1:9C
Certificate issuer: /CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Certificate serial: 018664439B579319B1E233FA058850B9FD6D
Authority key identifier: D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/aIQwPy6gi2YEGEuyiVIvWxAC0Zw.roa
Signing time: Sat 18 Feb 2023 11:23:17 +0000
ROA not before: Sat 18 Feb 2023 11:23:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31034
IP address blocks: 185.58.116.0/22 maxlen: 24
94.177.192.0/18 maxlen: 24
89.46.104.0/21 maxlen: 24
95.110.128.0/17 maxlen: 24
31.14.128.0/20 maxlen: 24
31.11.32.0/21 maxlen: 24
77.81.224.0/20 maxlen: 24
46.37.0.0/19 maxlen: 24
89.46.192.0/21 maxlen: 24
62.149.128.0/17 maxlen: 24
188.213.160.0/20 maxlen: 24
176.107.144.0/21 maxlen: 24
80.73.224.0/21 maxlen: 24
89.36.208.0/22 maxlen: 24
217.198.128.0/20 maxlen: 24
5.249.128.0/19 maxlen: 24
195.231.0.0/17 maxlen: 24
217.61.0.0/18 maxlen: 24
89.46.64.0/20 maxlen: 24
94.177.160.0/19 maxlen: 24
185.56.8.0/22 maxlen: 24
80.211.0.0/16 maxlen: 24
194.182.110.0/23 maxlen: 24
195.231.88.0/21 maxlen: 24
2a00:6d40::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:64:43:9b:57:93:19:b1:e2:33:fa:05:88:50:b9:fd:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cb5cecc213b9f86dbba518521e8546ec93861c
Validity
Not Before: Feb 18 11:23:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6884303f2ea08b6604184bb289522f5b1002d19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:07:f0:11:68:c4:1e:9f:af:8b:ec:9d:58:24:
7d:fc:b0:f6:b8:4f:e3:9f:ab:14:5e:bc:b0:e3:38:
f5:fa:26:6d:9b:6d:c2:e4:94:20:c1:23:06:dc:e9:
01:89:9a:58:40:cf:41:92:13:1b:d7:6c:1f:1e:a9:
37:63:a1:b8:f7:57:bc:68:6c:28:b4:77:ee:27:00:
4c:bd:9d:5e:d1:00:ed:87:a9:b7:19:e8:12:58:87:
6b:2f:fb:02:da:05:5d:64:be:e3:7b:b8:08:a5:41:
e1:3e:63:70:f8:38:83:cd:e0:21:6e:f8:48:4e:3c:
ff:60:cb:22:98:39:7c:aa:56:0b:7b:d6:65:f2:77:
7c:30:f6:1c:f8:66:39:9f:76:79:2b:d2:3d:89:49:
6e:23:c7:45:23:ee:9a:aa:57:eb:70:52:ff:56:7b:
bc:d2:d6:88:1b:2a:bc:13:09:87:d7:68:be:7d:c3:
9f:e6:37:df:dd:28:eb:82:e5:86:54:8d:5a:89:07:
12:c3:2f:09:b7:0a:d6:c6:da:0b:eb:7e:be:8c:df:
85:81:7b:b5:73:2e:23:99:99:b8:b7:c2:41:68:d0:
13:11:fa:33:3f:8a:32:17:90:7b:df:95:e9:55:b0:
37:7d:15:06:5d:02:b1:aa:9e:4f:e9:5f:68:18:47:
98:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:84:30:3F:2E:A0:8B:66:04:18:4B:B2:89:52:2F:5B:10:02:D1:9C
X509v3 Authority Key Identifier:
keyid:D3:CB:5C:EC:C2:13:B9:F8:6D:BB:A5:18:52:1E:85:46:EC:93:86:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08tc7MITufhtu6UYUh6FRuyThhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/aIQwPy6gi2YEGEuyiVIvWxAC0Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e117fe-c9e7-4d41-94df-84269412d561/1/08tc7MITufhtu6UYUh6FRuyThhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.128.0/19
31.11.32.0/21
31.14.128.0/20
46.37.0.0/19
62.149.128.0/17
77.81.224.0/20
80.73.224.0/21
80.211.0.0/16
89.36.208.0/22
89.46.64.0/20
89.46.104.0/21
89.46.192.0/21
94.177.160.0-94.177.255.255
95.110.128.0/17
176.107.144.0/21
185.56.8.0/22
185.58.116.0/22
188.213.160.0/20
194.182.110.0/23
195.231.0.0/17
217.61.0.0/18
217.198.128.0/20
IPv6:
2a00:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
ab:c3:5a:13:58:2e:a2:26:33:c0:e7:3d:f6:98:0b:7c:25:54:
b8:fb:38:83:99:37:46:da:66:c6:46:ae:68:d5:ba:df:bc:af:
1e:9c:53:a1:77:00:5e:5a:5d:24:f2:6d:3d:0d:a3:29:86:f4:
7f:c4:39:44:9f:c5:04:30:0b:86:72:7d:ad:3e:fe:46:c3:25:
5c:44:6f:de:a0:97:58:dd:71:82:93:6a:f0:67:1a:54:f4:63:
94:32:4a:af:d1:9c:92:3b:7c:2f:9a:1b:33:12:18:e7:42:27:
af:ac:43:74:56:9f:05:9b:e9:5e:f2:e4:87:26:c5:76:d6:1f:
4d:bf:0b:15:36:65:4c:cb:ae:88:21:8c:4c:cc:05:f9:13:3e:
56:60:1d:af:e3:53:a9:4c:ef:75:65:9e:8b:7f:de:be:72:1b:
5c:47:d3:18:84:09:87:25:af:d1:88:8b:42:4c:ad:bf:a3:f8:
91:11:ea:4b:d2:b0:a0:e9:6f:bc:ab:29:49:fd:97:40:a5:38:
76:82:54:8a:52:d3:9a:4b:fd:ee:ab:e9:f1:f4:c6:e8:1d:9a:
8e:30:6a:ea:61:c0:99:06:5c:71:96:e3:e0:db:9d:6f:79:f8:
0a:d5:c4:80:9c:1d:36:99:60:14:bb:3e:59:ee:e3:7b:3e:79:
8c:24:ee:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org