Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/0buT69a9FbHggQ5ZrjGiCnS4K7c.roa
File: 0buT69a9FbHggQ5ZrjGiCnS4K7c.roa (raw, json)
Hash identifier: LHKk6oHvfRt3SAoB3AxI5+cMtiFSmHUCt6yBDYn1P2k=
Subject key identifier: D1:BB:93:EB:D6:BD:15:B1:E0:81:0E:59:AE:31:A2:0A:74:B8:2B:B7
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018A313917248C165EEAE9389CFDF92D6B56
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/0buT69a9FbHggQ5ZrjGiCnS4K7c.roa
Signing time: Sat 26 Aug 2023 09:42:19 +0000
ROA not before: Sat 26 Aug 2023 09:42:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 24
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 24
87.107.112.0/22 maxlen: 24
87.107.106.0/23 maxlen: 24
87.107.108.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 24
62.220.104.0/21 maxlen: 24
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.48.0/22 maxlen: 24
81.12.58.0/24 maxlen: 24
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:39:17:24:8c:16:5e:ea:e9:38:9c:fd:f9:2d:6b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Aug 26 09:42:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1bb93ebd6bd15b1e0810e59ae31a20a74b82bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:df:34:b2:2e:d9:ec:44:20:16:71:d5:3b:23:
b1:fa:9c:33:a5:e1:c2:b9:26:6c:38:dd:23:1b:55:
4b:a1:24:9b:27:d3:93:ac:26:39:53:d9:6b:ec:2e:
d3:68:5f:c5:20:a0:e8:99:9c:1d:93:79:d5:fa:26:
c5:a0:5d:3d:8d:97:e2:18:ea:6f:63:3c:13:2d:d0:
0c:f7:66:b4:58:a4:04:22:06:5a:0d:78:12:e1:05:
e5:be:c8:c1:df:22:a8:59:83:7e:b8:b6:9e:65:c3:
d0:a8:24:07:73:98:4a:e1:99:44:a8:6d:30:1c:51:
6c:a2:80:eb:e2:11:70:64:3d:70:2a:fb:2d:a5:14:
27:f9:e2:89:01:0e:c5:1d:33:5e:9f:34:ec:a4:fc:
fb:0f:68:0e:77:f6:6d:b1:4d:b0:c4:ee:0d:dc:d2:
5e:21:78:90:54:5b:77:e3:4d:51:bd:80:ef:82:03:
4d:62:6e:07:64:b7:04:43:44:fd:bb:a4:1f:8c:b6:
a4:4e:94:f3:c8:e0:90:51:0e:5f:c1:47:c2:49:69:
d3:af:e2:61:33:96:11:16:3e:44:9a:0a:7b:4a:e8:
98:a6:b4:85:00:79:c0:9e:ef:d7:db:80:2a:cf:ec:
70:87:78:d6:df:26:0f:fe:db:a6:42:67:d5:be:12:
32:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BB:93:EB:D6:BD:15:B1:E0:81:0E:59:AE:31:A2:0A:74:B8:2B:B7
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/0buT69a9FbHggQ5ZrjGiCnS4K7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.23.255
81.12.48.0/22
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.106.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
50:4a:f4:b2:b3:45:37:a2:c9:54:03:b6:3f:ea:79:eb:2e:23:
3a:ec:d8:1f:f7:7f:58:cb:bc:81:42:5b:79:89:7f:2a:fa:b5:
80:0c:84:43:e6:68:33:e5:7a:51:f7:ef:6b:75:77:0d:30:30:
e3:5a:50:01:e1:06:4b:ad:e0:3f:aa:ed:ae:7d:a1:0a:1d:09:
c0:d2:81:03:62:c3:60:07:78:1c:73:00:40:89:15:af:e8:46:
46:50:dd:9f:a7:e2:d8:3d:6b:2f:dd:bb:64:f9:54:da:da:f1:
f3:4b:1a:ff:b9:e6:9f:d2:24:90:67:0d:c4:fc:75:ff:86:d3:
91:e6:64:aa:69:38:d4:c1:b9:a6:23:fe:ba:bf:22:dd:53:50:
0b:30:09:8a:75:2a:f4:40:47:d3:cc:54:ce:e7:99:8d:93:ea:
3a:5b:af:79:03:f2:da:ee:ba:10:3d:6b:79:9f:43:a7:31:3c:
5f:7b:e7:a4:4a:94:26:81:36:f9:2e:7e:83:67:7e:09:2f:41:
a0:e2:15:38:af:61:2b:ad:76:b4:06:67:6e:b5:c5:06:e8:77:
e5:8c:88:52:11:6a:8b:78:50:aa:8e:60:46:77:5a:a9:eb:a5:
7a:cc:da:9b:2e:ee:85:93:74:45:e8:cd:61:33:13:25:7d:a9:
f9:de:fb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:54 2024 by rpki-client on console-ams.rpki-client.org