Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/_2UkK074HVZpb6XqI2yP86Qilyc.roa
File: _2UkK074HVZpb6XqI2yP86Qilyc.roa (raw, json)
Hash identifier: 9mmzT5cNM5XWqklxxPoo1v2N8coFmUpo12MJo88VmtQ=
Subject key identifier: FF:65:24:2B:4E:F8:1D:56:69:6F:A5:EA:23:6C:8F:F3:A4:22:97:27
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0186A6BE858438223CD02B718786204F88C6
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/_2UkK074HVZpb6XqI2yP86Qilyc.roa
Signing time: Fri 03 Mar 2023 09:12:29 +0000
ROA not before: Fri 03 Mar 2023 09:12:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 85.208.105.0/24 maxlen: 24
45.66.152.0/22 maxlen: 24
5.180.32.0/22 maxlen: 24
5.180.48.0/22 maxlen: 24
85.208.112.0/22 maxlen: 24
45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.198.0/24 maxlen: 24
45.8.197.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
5.180.82.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.232.0/22 maxlen: 24
85.209.160.0/22 maxlen: 24
85.209.163.0/24 maxlen: 24
5.253.36.0/22 maxlen: 24
5.253.44.0/24 maxlen: 24
45.8.252.0/22 maxlen: 24
5.253.46.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
5.253.45.0/24 maxlen: 24
45.9.0.0/22 maxlen: 24
45.9.4.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:be:85:84:38:22:3c:d0:2b:71:87:86:20:4f:88:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Mar 3 09:12:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff65242b4ef81d56696fa5ea236c8ff3a4229727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1e:f1:fe:4c:5e:cd:54:52:81:2f:a5:7b:56:
d8:98:d0:df:1e:e3:90:d0:c4:a1:79:1c:02:35:6d:
1e:ac:7e:3d:b1:81:ec:29:57:7f:4a:e0:a4:38:90:
c1:34:3f:cf:89:c5:43:12:cd:99:14:3b:d2:84:fc:
50:f6:09:a1:23:ae:e6:c1:32:d9:94:de:b0:b9:a6:
fc:2a:61:40:4d:c4:70:97:e2:bd:e1:41:3e:f7:b3:
a1:ed:59:c4:0f:9a:e7:b2:ea:86:33:74:b4:d1:b1:
d3:50:4c:0b:8f:e0:8d:48:8c:5f:62:db:ce:c3:12:
7d:45:ab:c6:f1:e2:b1:52:ed:c9:95:8c:fd:0b:15:
3b:cd:a0:88:67:d9:f9:00:77:72:40:9c:36:3d:20:
71:e0:ed:e4:6a:40:72:11:4a:00:ed:e9:bc:a0:c8:
39:d8:87:53:2b:7a:2d:1f:86:13:25:eb:79:cc:b6:
48:92:d8:4a:88:7a:69:c2:4b:76:ea:d0:e7:db:d8:
95:9b:ac:81:61:65:b9:bc:69:d7:3a:a2:47:93:0b:
34:e8:44:2f:ba:b4:c6:e3:76:3b:2f:7f:f8:70:01:
93:73:45:52:f9:3c:2a:aa:3e:cf:ae:b8:ca:b6:e0:
05:82:e0:04:8a:7b:9c:ac:84:9f:fe:f8:82:46:5e:
f8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:65:24:2B:4E:F8:1D:56:69:6F:A5:EA:23:6C:8F:F3:A4:22:97:27
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/_2UkK074HVZpb6XqI2yP86Qilyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/22
5.180.80.0/24
5.180.82.0/24
5.180.232.0/22
5.253.36.0/22
5.253.44.0/22
45.8.184.0-45.8.195.255
45.8.197.0-45.8.199.255
45.8.203.0/24
45.8.252.0-45.9.7.255
45.66.152.0/22
85.208.105.0/24
85.208.112.0/22
85.209.160.0/22
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
29:05:51:16:9d:6c:33:6c:74:46:b2:1b:f3:54:eb:0a:ff:0f:
4f:ba:75:6b:2e:5f:61:00:1a:ae:b4:e2:78:ee:e8:6d:25:83:
ee:b6:88:d5:2b:7b:4a:e9:0f:40:1f:f3:e3:7b:d5:a9:0d:29:
ee:ea:f4:ba:40:77:e6:05:06:1a:bd:81:b3:37:2f:53:92:30:
c8:8d:7e:fd:66:42:6f:7b:d7:e0:42:bb:84:50:da:3f:4e:0f:
7e:a7:c4:bd:47:0c:ce:28:89:42:2d:ae:71:28:33:74:0f:ba:
bb:0e:78:44:c7:16:16:4a:6e:92:46:c6:a2:b4:00:30:a6:49:
a8:17:cc:d8:d2:82:c9:5f:9a:7d:fd:d9:fb:65:e9:43:25:37:
7d:5d:fd:4f:29:a0:19:6d:95:a0:bf:a1:61:64:5c:1b:e9:14:
f6:1f:55:c5:1e:cf:44:46:a2:9c:fc:9f:23:04:de:13:55:e4:
a3:0c:e6:31:9d:cd:8b:b3:be:e9:d1:48:24:e3:4c:38:00:64:
7a:56:33:b2:d3:57:29:23:a2:ed:01:3f:32:c4:de:c1:85:86:
06:fc:65:d7:13:74:4d:36:d7:04:95:60:70:2f:c5:8d:ec:77:
09:fb:35:69:ae:49:d2:16:20:6b:c0:b6:12:7b:3d:63:c7:53:
d7:07:c4:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org