Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/VVzySFqg0Hdk7HEzeBdmDgMYKVg.roa
File: VVzySFqg0Hdk7HEzeBdmDgMYKVg.roa (raw, json)
Hash identifier: XgNtqChWnjx0LjCPrukL8rlHGtPU0SrVV0XfpRVrW6w=
Subject key identifier: 55:5C:F2:48:5A:A0:D0:77:64:EC:71:33:78:17:66:0E:03:18:29:58
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A8890911B63FC65372AA64FA19DFFC28E
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/VVzySFqg0Hdk7HEzeBdmDgMYKVg.roa
Signing time: Tue 12 Sep 2023 08:44:50 +0000
ROA not before: Tue 12 Sep 2023 08:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 85.208.105.0/24 maxlen: 24
45.66.152.0/24 maxlen: 24
45.66.154.0/24 maxlen: 24
45.66.155.0/24 maxlen: 24
5.180.32.0/22 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.48.0/24 maxlen: 24
5.180.50.0/24 maxlen: 24
85.208.107.0/24 maxlen: 24
85.208.113.0/24 maxlen: 24
85.208.115.0/24 maxlen: 24
45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.198.0/24 maxlen: 24
45.8.197.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.235.0/24 maxlen: 24
5.180.234.0/24 maxlen: 24
85.209.160.0/24 maxlen: 24
5.253.44.0/24 maxlen: 24
5.253.39.0/24 maxlen: 24
45.8.252.0/24 maxlen: 24
45.8.253.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
5.253.45.0/24 maxlen: 24
45.9.4.0/24 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.1.0/24 maxlen: 24
45.9.0.0/24 maxlen: 24
45.9.6.0/24 maxlen: 24
45.9.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:88:90:91:1b:63:fc:65:37:2a:a6:4f:a1:9d:ff:c2:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 12 08:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=555cf2485aa0d07764ec71337817660e03182958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f5:3c:38:0e:f7:be:76:e9:06:f8:06:1b:9a:
ae:ef:ea:e9:e9:4f:f9:41:c8:ae:36:09:99:00:59:
cc:93:32:d0:00:a3:bc:c3:2c:ed:3b:35:2c:11:30:
fa:2e:a1:1b:3f:89:73:9b:87:76:b7:13:1b:60:6b:
c5:da:5d:20:cc:c8:38:52:e8:dc:7c:74:94:44:1d:
99:8c:82:5b:ce:d1:7b:ee:b1:d7:13:e1:c5:b0:cd:
46:a5:de:f6:cc:cb:44:7b:30:a7:f3:f6:f3:27:98:
f6:76:1f:3d:1d:ac:3f:98:41:2f:ad:5d:0d:23:df:
3e:c6:99:f3:5f:6d:d4:b9:75:bf:29:24:41:35:88:
d8:07:bd:e9:f6:ca:18:26:ba:f9:1f:33:cf:96:47:
fe:1c:88:3e:bb:e3:de:0c:1c:46:9c:90:97:cb:e4:
71:77:b5:0f:97:fd:5c:29:f8:78:9d:f2:9c:99:83:
8f:75:b6:22:b7:3a:08:10:9c:0b:ef:45:53:15:fb:
31:ff:66:99:a9:3d:e3:f3:2e:e9:0f:71:61:f5:fa:
50:0c:16:ad:6d:e4:e0:7c:24:56:e7:10:bb:f4:d7:
81:92:d0:ba:f6:32:98:35:77:d2:b7:96:93:3a:21:
96:59:a7:ae:2d:e4:9d:09:04:28:89:85:ed:e0:c3:
22:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5C:F2:48:5A:A0:D0:77:64:EC:71:33:78:17:66:0E:03:18:29:58
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/VVzySFqg0Hdk7HEzeBdmDgMYKVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/24
5.180.50.0/23
5.180.80.0/24
5.180.234.0/23
5.253.39.0/24
5.253.44.0/23
5.253.47.0/24
45.8.184.0-45.8.195.255
45.8.197.0-45.8.199.255
45.8.203.0/24
45.8.252.0/23
45.8.255.0-45.9.1.255
45.9.4.0/24
45.9.6.0/23
45.66.152.0/24
45.66.154.0/23
85.208.105.0/24
85.208.107.0/24
85.208.113.0/24
85.208.115.0/24
85.209.160.0/24
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:07:e6:29:2f:c2:f1:03:98:28:9a:47:c0:df:58:ec:67:57:
ee:dc:0f:5f:78:35:50:bd:3b:69:25:df:51:70:04:9a:3c:9d:
37:b3:ad:75:fb:ff:71:34:aa:bd:bc:fa:8d:5e:ff:7f:b5:59:
73:24:b6:b9:d0:ab:fa:fa:a6:c3:b6:d3:7c:b1:93:c3:7a:a4:
1d:a6:7d:eb:e5:e8:55:aa:46:59:b4:b9:52:f3:c9:b6:e2:f1:
27:6e:e5:f0:b9:88:54:b9:be:c4:9e:8c:d8:88:52:ee:ad:ca:
c3:c5:31:8b:a7:1f:85:a7:ec:9f:12:75:6f:af:2d:d9:b7:e3:
db:ba:97:a2:11:3c:01:64:7a:8f:e7:90:cc:74:db:0a:a4:cc:
38:15:18:ca:e3:34:f7:30:7d:e1:cc:23:f3:f5:0b:7c:7d:32:
8c:74:93:c3:b8:29:2c:b2:81:91:8c:11:e2:a3:95:2d:42:4a:
60:27:c9:98:77:bf:b2:72:b8:d4:8e:28:d8:19:b8:f8:e6:10:
3c:8c:d5:f0:98:84:52:43:00:85:f2:c8:55:f5:00:1c:2e:05:
dc:9b:39:2f:08:92:67:e2:62:94:3e:15:f4:2c:08:5d:8f:c9:
7c:a3:77:63:38:33:ca:4d:37:06:e1:3e:3a:27:f1:a1:6e:da:
22:81:d2:9f
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 18 11:24:47 2023 by rpki-client on console-fra.rpki-client.org