Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/7wrZo9PkZyCMdTXO5WT5pwPXiKE.roa
File: 7wrZo9PkZyCMdTXO5WT5pwPXiKE.roa (raw, json)
Hash identifier: oOIKisjsI4VwZ/qJysnay+h/9jvy5GfdSlArI+Bo0Uk=
Subject key identifier: EF:0A:D9:A3:D3:E4:67:20:8C:75:35:CE:E5:64:F9:A7:03:D7:88:A1
Certificate issuer: /CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Certificate serial: 0187E1110AA0342415C5FE1F2921C9A5874B
Authority key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/7wrZo9PkZyCMdTXO5WT5pwPXiKE.roa
Signing time: Wed 03 May 2023 10:03:23 +0000
ROA not before: Wed 03 May 2023 10:03:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133499
IP address blocks: 77.95.116.0/22 maxlen: 32
89.44.245.0/24 maxlen: 32
89.34.7.0/24 maxlen: 32
94.177.52.0/22 maxlen: 32
185.221.221.0/24 maxlen: 32
94.176.216.0/22 maxlen: 32
78.138.30.0/24 maxlen: 32
185.243.108.0/22 maxlen: 32
185.223.58.0/23 maxlen: 32
103.204.212.0/22 maxlen: 32
94.176.163.0/24 maxlen: 32
89.44.115.0/24 maxlen: 32
188.241.146.0/24 maxlen: 32
78.138.16.0/24 maxlen: 32
89.41.62.0/24 maxlen: 32
188.214.93.0/24 maxlen: 32
89.32.129.0/24 maxlen: 32
31.14.219.0/24 maxlen: 32
185.225.104.0/22 maxlen: 32
31.14.236.0/23 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:11:0a:a0:34:24:15:c5:fe:1f:29:21:c9:a5:87:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Validity
Not Before: May 3 10:03:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef0ad9a3d3e467208c7535cee564f9a703d788a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:80:3e:ef:5c:34:8b:89:eb:af:91:f3:76:
f1:45:45:be:5c:0d:31:54:9b:47:e7:86:8f:6d:7c:
fb:39:15:98:0f:8e:67:f2:48:63:d6:33:ca:ee:c8:
99:dd:be:14:08:5d:21:73:1d:59:b1:64:f7:da:e3:
1b:5b:66:66:49:94:1a:fa:c3:20:f3:fc:2b:7d:50:
59:57:e6:98:23:f2:f3:7e:9c:e9:73:d8:cd:90:cc:
03:73:3c:83:ba:12:ee:23:0a:50:af:be:75:ca:77:
30:d2:cd:44:18:de:a3:26:02:73:26:ae:ac:d3:3a:
6f:ac:94:26:77:56:c6:16:50:3a:71:36:4f:2a:48:
b1:7d:3c:92:f0:67:33:1a:9c:fe:ef:d0:37:7e:7d:
7c:09:1b:ae:dd:08:3f:9a:a2:8b:c9:2b:aa:32:3e:
45:3a:e3:ee:45:84:0b:ca:26:7e:56:ce:9d:bc:d3:
63:75:e4:28:18:24:df:14:5e:77:64:15:69:22:ac:
9f:93:e5:2d:b9:0d:ea:39:4e:d1:b0:a9:fd:d8:40:
6e:a4:80:0f:66:81:a2:11:e4:93:dc:e4:3f:37:20:
8e:90:cc:2d:d3:02:70:1d:aa:84:8c:b2:37:7f:b3:
60:55:6e:d2:e9:a3:e7:90:54:05:e8:28:fb:34:ac:
84:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0A:D9:A3:D3:E4:67:20:8C:75:35:CE:E5:64:F9:A7:03:D7:88:A1
X509v3 Authority Key Identifier:
keyid:1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/7wrZo9PkZyCMdTXO5WT5pwPXiKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.219.0/24
31.14.236.0/23
77.95.116.0/22
78.138.16.0/24
78.138.30.0/24
89.32.129.0/24
89.34.7.0/24
89.41.62.0/24
89.44.115.0/24
89.44.245.0/24
94.176.163.0/24
94.176.216.0/22
94.177.52.0/22
103.204.212.0/22
185.221.221.0/24
185.223.58.0/23
185.225.104.0/22
185.243.108.0/22
188.214.93.0/24
188.241.146.0/24
Signature Algorithm: sha256WithRSAEncryption
02:78:f7:9d:91:48:d1:47:11:37:b1:7b:48:a2:81:90:d7:70:
47:ba:3a:06:98:c4:c7:db:f7:45:27:8d:2a:75:f9:2b:2d:ae:
6a:d7:61:85:26:0a:52:dc:6f:cc:4b:f6:6e:86:be:8c:30:ec:
59:d0:fa:b4:48:37:13:2b:a7:a2:65:be:96:08:67:5d:d9:df:
0e:6f:68:60:b0:1b:ff:63:1e:9f:5a:aa:81:43:33:33:d1:f4:
9c:fb:b7:3a:e7:59:79:08:3e:38:94:2e:74:66:0a:18:58:81:
0b:60:24:ee:f0:99:a1:aa:1f:02:7c:0b:47:3c:00:58:a8:0e:
41:9e:3b:60:e4:ac:52:25:9d:97:50:5f:5e:3f:34:77:71:ec:
9a:32:7b:b8:63:b5:0d:18:67:fe:d0:6d:7b:35:0b:c1:56:8f:
01:01:97:3b:20:a9:a9:80:db:ac:ae:cb:10:d2:fd:e2:a0:ab:
ee:38:86:c9:3b:4f:3a:ce:29:0a:00:1c:bf:5a:c7:68:e9:f3:
c6:a5:87:07:db:42:dd:44:3a:83:73:51:b7:08:2b:3d:7b:52:
6b:c6:c3:53:13:89:23:c8:5b:e5:05:2a:a3:3d:5a:b6:42:35:
ff:09:f0:c7:50:a5:3d:dc:54:82:cd:d0:9c:cd:7d:39:37:3a:
65:05:a5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:17 2023 by rpki-client on console-ams.rpki-client.org