Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pMH4fGJMC7kdeCqkPVNYYwQWz-c.roa
File: pMH4fGJMC7kdeCqkPVNYYwQWz-c.roa (raw, json)
Hash identifier: h9ynrKuaFDBYmVcICYOMnOSka4IKaLl0ZUg2TjG259k=
Subject key identifier: A4:C1:F8:7C:62:4C:0B:B9:1D:78:2A:A4:3D:53:58:63:04:16:CF:E7
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0187D680DC79003313E63D116A8737F54A3A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pMH4fGJMC7kdeCqkPVNYYwQWz-c.roa
Signing time: Mon 01 May 2023 08:49:41 +0000
ROA not before: Mon 01 May 2023 08:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 85.208.105.0/24 maxlen: 24
45.66.152.0/24 maxlen: 24
45.66.154.0/24 maxlen: 24
45.66.155.0/24 maxlen: 24
5.180.32.0/22 maxlen: 24
5.180.51.0/24 maxlen: 24
5.180.48.0/24 maxlen: 24
5.180.50.0/24 maxlen: 24
85.208.113.0/24 maxlen: 24
85.208.115.0/24 maxlen: 24
45.8.184.0/22 maxlen: 24
45.8.192.0/22 maxlen: 24
45.8.188.0/22 maxlen: 24
45.8.199.0/24 maxlen: 24
45.8.198.0/24 maxlen: 24
45.8.197.0/24 maxlen: 24
45.8.203.0/24 maxlen: 24
193.168.208.0/22 maxlen: 24
5.180.82.0/24 maxlen: 24
5.180.80.0/24 maxlen: 24
5.180.235.0/24 maxlen: 24
85.209.162.0/24 maxlen: 24
85.209.161.0/24 maxlen: 24
85.209.160.0/24 maxlen: 24
5.253.44.0/24 maxlen: 24
5.253.39.0/24 maxlen: 24
45.8.252.0/24 maxlen: 24
45.8.253.0/24 maxlen: 24
5.253.46.0/24 maxlen: 24
5.253.47.0/24 maxlen: 24
5.253.45.0/24 maxlen: 24
45.9.3.0/24 maxlen: 24
45.9.4.0/24 maxlen: 24
45.8.255.0/24 maxlen: 24
45.9.1.0/24 maxlen: 24
45.9.0.0/24 maxlen: 24
45.9.6.0/24 maxlen: 24
45.9.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d6:80:dc:79:00:33:13:e6:3d:11:6a:87:37:f5:4a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 1 08:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4c1f87c624c0bb91d782aa43d5358630416cfe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d0:5d:d0:49:4f:f3:12:1a:70:5a:1f:de:69:
35:cd:c4:43:1f:72:f7:55:66:2b:b7:f4:7d:59:cf:
a5:5d:95:0b:c6:c8:69:b2:1b:f8:f6:b7:67:31:01:
b1:72:92:67:e1:29:d5:da:0f:ad:93:e9:09:12:d0:
55:55:62:3e:2f:d1:fc:f7:ba:b4:f7:ca:9e:4d:3d:
b4:c0:05:30:19:78:40:f2:70:6b:98:6e:f1:00:3f:
36:2f:da:a5:d2:cd:bb:52:2f:1d:c9:ce:f0:9b:6b:
eb:2a:2e:ff:ce:89:86:f2:40:2b:9f:5c:f6:db:75:
04:b1:ae:08:46:0d:f6:f7:cc:fe:11:be:f8:3f:ba:
1f:4e:d8:48:11:78:03:a4:28:87:4f:0b:bb:96:00:
cd:00:45:28:aa:e4:72:f1:4f:66:98:a5:24:00:08:
d7:dc:b9:5f:31:b2:99:f3:7c:2f:4e:c6:4f:9d:42:
5b:cf:45:d6:ce:3f:2f:87:e9:18:8d:7d:43:47:d7:
bc:bb:f4:43:6c:fc:5e:fc:e5:26:7e:7d:7e:54:0f:
ad:1d:0d:15:d8:26:61:b8:28:5d:07:57:37:4e:30:
66:22:6c:36:d6:43:d7:e7:48:08:9b:70:db:67:1a:
3f:a4:d8:1c:d6:dc:4a:c9:41:2c:45:96:22:05:e2:
17:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C1:F8:7C:62:4C:0B:B9:1D:78:2A:A4:3D:53:58:63:04:16:CF:E7
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/pMH4fGJMC7kdeCqkPVNYYwQWz-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.32.0/22
5.180.48.0/24
5.180.50.0/23
5.180.80.0/24
5.180.82.0/24
5.180.235.0/24
5.253.39.0/24
5.253.44.0/22
45.8.184.0-45.8.195.255
45.8.197.0-45.8.199.255
45.8.203.0/24
45.8.252.0/23
45.8.255.0-45.9.1.255
45.9.3.0-45.9.4.255
45.9.6.0/23
45.66.152.0/24
45.66.154.0/23
85.208.105.0/24
85.208.113.0/24
85.208.115.0/24
85.209.160.0-85.209.162.255
193.168.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:28:1a:03:98:5d:76:aa:fc:84:eb:4d:77:c7:5b:cb:de:08:
e5:4d:4f:a0:88:2b:1a:45:cc:21:9f:19:d3:12:00:8c:83:1f:
98:c9:3b:87:1f:22:4e:4d:81:d8:c7:35:de:65:22:6c:42:c5:
c8:11:9e:e6:e2:72:ee:a2:9e:26:90:ef:0c:67:b4:95:0f:27:
44:8a:d9:9c:2b:a5:18:37:18:e3:9f:55:74:09:86:2f:0c:8b:
d0:7b:3f:98:5b:1d:82:38:7e:34:b0:4e:65:5b:db:bd:97:7e:
ee:76:11:e5:b2:80:d0:94:ec:3d:ee:d1:d0:6c:66:ab:4f:d9:
d0:14:b5:4e:d1:72:7e:7a:49:25:e6:73:9b:41:0c:1d:4c:c2:
70:46:08:07:71:7a:80:55:89:b7:dd:39:29:e2:34:26:e6:22:
bc:00:52:51:ec:7f:09:9e:54:ab:a7:8c:38:fa:0c:24:ae:b5:
9c:c4:90:5b:d8:c4:79:ad:6b:94:3d:68:ac:c1:1c:1a:ef:bd:
fe:61:ac:61:e6:a0:00:93:7a:97:31:70:3e:aa:ce:71:b9:72:
f6:49:39:e1:7b:88:2d:06:1a:39:e4:45:7a:f9:03:29:1a:09:
18:24:ae:98:35:8a:1b:46:f5:5e:c0:ad:9f:4a:70:13:d7:be:
bf:e3:dc:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org