Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/nJyR_1_c7Tu79TDMQSVGa0C17YA.roa
File: nJyR_1_c7Tu79TDMQSVGa0C17YA.roa (raw, json)
Hash identifier: z9dheWCWyRjiDl9E6fbMT7E7fT2bfa2UqoHTh7Cph40=
Subject key identifier: 9C:9C:91:FF:5F:DC:ED:3B:BB:F5:30:CC:41:25:46:6B:40:B5:ED:80
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018CAB8F83AE3BB57DA554915132D6E48364
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/nJyR_1_c7Tu79TDMQSVGa0C17YA.roa
Signing time: Wed 27 Dec 2023 13:55:58 +0000
ROA not before: Wed 27 Dec 2023 13:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12578
IP address blocks: 185.38.56.0/22 maxlen: 24
46.109.0.0/16 maxlen: 24
195.122.28.0/24 maxlen: 24
195.122.29.0/24 maxlen: 24
195.122.26.0/23 maxlen: 23
81.198.0.0/16 maxlen: 24
78.84.0.0/16 maxlen: 24
195.114.32.0/19 maxlen: 19
81.198.95.0/24 maxlen: 24
194.8.16.0/21 maxlen: 24
194.8.24.0/22 maxlen: 24
195.13.201.0/24 maxlen: 24
195.13.200.0/24 maxlen: 24
80.232.150.13/32 maxlen: 32
80.232.195.0/24 maxlen: 24
195.13.215.0/24 maxlen: 24
84.237.128.0/17 maxlen: 24
195.13.128.0/17 maxlen: 24
80.232.128.0/17 maxlen: 24
80.232.150.0/24 maxlen: 24
80.232.147.0/24 maxlen: 24
95.68.0.0/17 maxlen: 24
87.246.144.0/20 maxlen: 24
195.2.96.0/19 maxlen: 19
195.122.0.0/19 maxlen: 24
87.246.160.0/19 maxlen: 24
62.85.0.0/17 maxlen: 24
195.13.228.0/24 maxlen: 24
195.13.237.0/24 maxlen: 24
195.13.245.0/24 maxlen: 24
195.13.253.0/24 maxlen: 24
195.13.251.0/24 maxlen: 24
195.13.249.0/24 maxlen: 24
87.110.0.0/16 maxlen: 24
91.105.0.0/17 maxlen: 24
2a02:2330::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:8f:83:ae:3b:b5:7d:a5:54:91:51:32:d6:e4:83:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Dec 27 13:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c9c91ff5fdced3bbbf530cc4125466b40b5ed80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7e:28:cc:be:bd:2d:a5:65:90:82:39:5c:6b:
7d:92:06:3e:90:2f:eb:1e:e9:04:b4:31:9b:79:b0:
75:0e:ee:6c:4b:ca:fb:fb:05:fe:74:91:3f:47:9b:
da:25:f7:20:d6:23:54:c9:65:63:b8:bb:ed:c9:7d:
c8:8e:fa:4c:0c:61:6e:46:1f:c6:dd:4f:f1:48:6c:
68:85:63:2a:18:15:68:05:85:80:f5:f9:87:87:2f:
6d:b3:90:ce:3f:16:39:b5:b3:ca:e8:7a:00:71:94:
4a:1d:f0:5b:8b:8c:81:1a:83:97:43:22:d8:35:2f:
34:f9:28:60:58:ed:9a:56:64:85:36:a2:cc:8b:fb:
be:a2:8e:8e:ca:38:a7:f3:0b:fd:02:7c:a4:10:a0:
6c:bc:8b:75:cf:62:c3:b3:01:d6:ea:a7:04:45:dd:
b0:4e:49:69:6f:05:cd:33:61:02:e7:b0:b0:5c:8c:
20:2e:05:a7:90:f3:f5:7d:70:e8:a7:a7:38:32:ed:
5d:08:4b:9b:25:2b:3f:df:f3:22:0e:1d:f2:d7:08:
90:47:81:50:f7:09:38:6c:48:50:b6:6e:e3:a0:e8:
03:0a:52:a8:38:64:d6:ce:3c:40:1b:70:5e:3b:cf:
8f:e1:2e:a2:e6:6a:08:05:f6:20:92:f3:94:1a:c9:
00:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9C:91:FF:5F:DC:ED:3B:BB:F5:30:CC:41:25:46:6B:40:B5:ED:80
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/nJyR_1_c7Tu79TDMQSVGa0C17YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.109.0.0/16
62.85.0.0/17
78.84.0.0/16
80.232.128.0/17
81.198.0.0/16
84.237.128.0/17
87.110.0.0/16
87.246.144.0-87.246.191.255
91.105.0.0/17
95.68.0.0/17
185.38.56.0/22
194.8.16.0-194.8.27.255
195.2.96.0/19
195.13.128.0/17
195.114.32.0/19
195.122.0.0/19
IPv6:
2a02:2330::/29
Signature Algorithm: sha256WithRSAEncryption
72:fb:be:7e:09:08:49:6e:5c:cb:06:6d:33:e6:a0:12:28:36:
8a:22:05:a7:3a:24:7e:24:be:dc:45:e9:19:bb:6d:99:9d:8c:
91:5e:80:9d:7f:3b:52:16:8c:56:dc:36:b6:4d:25:fb:0b:eb:
31:aa:f0:bd:e4:62:4b:4b:f1:24:fc:84:b5:eb:cc:86:d7:24:
5b:3e:df:c4:7c:b8:f8:31:23:45:f2:29:f4:eb:fe:5f:65:23:
63:ab:16:fd:3e:52:d8:f3:a2:68:1d:87:5a:5e:9f:b7:ac:30:
5d:52:bb:eb:2a:e6:a0:ef:10:15:9a:69:b2:89:23:57:55:d8:
ec:33:3a:7a:e5:df:06:a9:43:fc:d6:1b:05:1d:d0:ad:05:63:
72:bb:7d:9f:1c:eb:96:d1:85:0f:fc:9f:7c:dc:43:8d:44:02:
bc:a0:57:69:bb:54:d1:0b:80:60:2a:b9:d5:b8:fd:90:af:ea:
ec:69:ae:50:b3:9e:cc:05:33:d9:09:f1:4f:0a:e5:79:78:ea:
9b:cf:d4:d0:0b:cd:fb:98:45:5b:f3:43:e6:e0:35:6b:bb:f6:
60:79:8a:4b:04:8a:74:11:43:15:5f:64:ea:da:a7:45:fa:2f:
bf:69:10:6f:da:8e:0d:17:a6:b0:34:5c:5e:fe:70:c2:cd:3d:
34:0b:19:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 17:19:25 2023 by rpki-client on console-ams.rpki-client.org