Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Ba4G22ZqSbxd_EOGVDlSAqfKuJU.roa
File: Ba4G22ZqSbxd_EOGVDlSAqfKuJU.roa (raw, json)
Hash identifier: T8PY40ATZZ+WCgaDz3oQgc2K7EvcYQPeLDZ0fuzqVZ8=
Subject key identifier: 05:AE:06:DB:66:6A:49:BC:5D:FC:43:86:54:39:52:02:A7:CA:B8:95
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0189029925C306CABA3D30A06482E9ADFBA3
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Ba4G22ZqSbxd_EOGVDlSAqfKuJU.roa
Signing time: Wed 28 Jun 2023 15:22:18 +0000
ROA not before: Wed 28 Jun 2023 15:22:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21341
IP address blocks: 87.107.42.0/23 maxlen: 23
87.107.41.0/24 maxlen: 24
87.107.40.0/24 maxlen: 24
87.107.51.0/24 maxlen: 24
87.107.50.0/23 maxlen: 24
87.107.50.0/24 maxlen: 24
87.107.52.0/23 maxlen: 23
87.107.68.0/22 maxlen: 24
87.107.88.0/22 maxlen: 22
87.107.24.0/22 maxlen: 22
87.107.34.0/23 maxlen: 23
62.220.120.0/22 maxlen: 22
62.220.124.0/23 maxlen: 23
87.107.168.0/22 maxlen: 24
87.107.173.0/24 maxlen: 24
185.60.136.0/24 maxlen: 24
185.60.139.0/24 maxlen: 24
185.60.138.0/24 maxlen: 24
185.60.137.0/24 maxlen: 24
87.107.96.0/22 maxlen: 24
87.107.112.0/22 maxlen: 24
87.107.116.0/23 maxlen: 23
87.107.120.0/21 maxlen: 24
87.107.128.0/22 maxlen: 22
87.107.132.0/22 maxlen: 22
62.220.96.0/21 maxlen: 24
62.220.104.0/21 maxlen: 24
81.12.8.0/22 maxlen: 22
81.12.12.0/22 maxlen: 22
81.12.16.0/21 maxlen: 21
81.12.48.0/22 maxlen: 24
81.12.58.0/24 maxlen: 24
81.12.52.0/23 maxlen: 23
81.12.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:99:25:c3:06:ca:ba:3d:30:a0:64:82:e9:ad:fb:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jun 28 15:22:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05ae06db666a49bc5dfc438654395202a7cab895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d0:8e:ce:0e:ff:72:d2:b9:2b:eb:ec:98:1c:
8a:78:93:ed:04:ea:1e:f1:ca:69:ce:8b:c2:91:ba:
3c:be:c5:77:5e:36:2a:c2:57:e0:5a:1f:d4:49:22:
e5:48:4d:64:68:c6:12:19:f9:a0:cc:5d:a2:59:e3:
18:48:d4:ae:1a:09:86:60:1f:9e:2d:63:2c:a0:7f:
d7:5a:8d:e8:2d:14:4c:0a:c9:38:84:78:b1:bb:40:
02:cb:3a:98:ff:a1:9c:44:fe:23:ec:d4:14:12:ca:
aa:5c:00:5a:1b:ed:ca:8a:6a:e3:d5:1f:1e:16:56:
99:77:72:ad:5d:88:5f:60:5b:71:80:fa:4b:41:93:
c3:2f:71:43:25:d9:64:d8:c3:e9:15:6e:0d:d1:ec:
5e:3a:6f:6d:3f:68:bc:8a:f5:77:99:b0:7a:a2:01:
ae:2b:7f:82:0b:a0:58:b3:fe:58:11:15:45:e5:51:
01:03:af:a4:11:be:20:25:43:ac:15:dc:6c:a9:3d:
d7:e3:7c:bd:43:06:b0:1e:ea:6e:57:a4:4e:48:d7:
23:3c:20:e0:2a:41:81:c3:b5:5b:0e:71:44:1b:a6:
8c:9b:3e:8b:4f:11:a9:78:4d:e7:c5:bc:06:50:f3:
f1:ce:b5:97:9b:96:8a:a9:90:e6:80:49:4a:bd:8e:
f7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AE:06:DB:66:6A:49:BC:5D:FC:43:86:54:39:52:02:A7:CA:B8:95
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Ba4G22ZqSbxd_EOGVDlSAqfKuJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.96.0/20
62.220.120.0-62.220.125.255
81.12.8.0-81.12.23.255
81.12.48.0-81.12.53.255
81.12.58.0/23
87.107.24.0/22
87.107.34.0/23
87.107.40.0/22
87.107.50.0-87.107.53.255
87.107.68.0/22
87.107.88.0/22
87.107.96.0/22
87.107.112.0-87.107.117.255
87.107.120.0-87.107.135.255
87.107.168.0/22
87.107.173.0/24
185.60.136.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:fe:5c:cf:c6:7f:26:69:00:0e:4d:3a:b5:8a:73:04:2e:74:
f7:dd:cb:40:1d:79:8f:38:36:bf:38:09:9e:ee:2a:a7:4b:79:
5f:67:78:3f:53:82:35:46:8d:2c:37:6e:62:d3:6c:b2:ec:e9:
5d:9a:d9:77:47:6a:17:d5:3a:77:1e:fb:6b:52:c3:07:1e:fb:
eb:57:be:9a:64:75:1b:f9:05:ff:75:f7:f6:a0:b0:8e:c4:19:
fd:cc:3e:5c:e9:53:a9:9c:4a:73:d2:30:cc:4c:c2:96:a6:40:
b4:c2:32:92:43:a0:85:f8:36:3a:a6:53:0d:c9:80:0b:4d:db:
a5:12:01:c6:9e:b0:8b:ce:c7:53:9a:1b:f8:a8:05:92:5a:01:
23:45:fb:c7:a4:cc:c6:8c:56:ee:65:f1:3c:41:35:84:96:c0:
f2:27:45:dd:cc:91:b6:e4:42:c5:8b:a9:6c:d2:92:b1:c4:3c:
f0:80:b3:26:40:b7:27:4f:99:5f:55:c8:9c:5a:12:21:fd:47:
00:25:26:8d:a0:c5:26:6d:34:cf:17:7c:fc:23:a2:16:af:f2:
85:d0:78:bc:70:1f:2d:56:5e:de:5c:88:1f:77:05:31:46:39:
fa:13:bd:d8:d1:55:71:03:43:43:72:a6:86:79:98:52:fc:ba:
fe:bc:eb:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 31 20:26:36 2023 by rpki-client on console-ams.rpki-client.org