Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/7TA23XGcziami5s_-HEHP_ReFvw.roa
File: 7TA23XGcziami5s_-HEHP_ReFvw.roa (raw, json)
Hash identifier: SpsIQlysvfwuro9Lc0X4yVqyGi2plFi23p/eSvEiW6I=
Subject key identifier: ED:30:36:DD:71:9C:CE:26:A6:8B:9B:3F:F8:71:07:3F:F4:5E:16:FC
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0189104536679DAF5A1926304F8E5D200FC0
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/7TA23XGcziami5s_-HEHP_ReFvw.roa
Signing time: Sat 01 Jul 2023 07:05:18 +0000
ROA not before: Sat 01 Jul 2023 07:05:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.255.39.0/24 maxlen: 24
185.241.210.0/23 maxlen: 24
188.241.214.0/24 maxlen: 24
93.115.254.0/23 maxlen: 24
188.213.203.0/24 maxlen: 24
213.232.93.0/24 maxlen: 24
213.232.92.0/24 maxlen: 24
45.156.159.0/24 maxlen: 24
45.156.157.0/24 maxlen: 24
89.33.85.0/24 maxlen: 24
185.255.169.0/24 maxlen: 24
185.255.170.0/23 maxlen: 24
185.255.170.0/24 maxlen: 24
89.35.154.0/24 maxlen: 24
89.35.155.0/24 maxlen: 24
188.212.132.0/24 maxlen: 24
188.212.133.0/24 maxlen: 24
188.212.155.0/24 maxlen: 24
188.212.158.0/24 maxlen: 24
87.247.148.0/24 maxlen: 24
87.247.150.0/24 maxlen: 24
87.247.149.0/24 maxlen: 24
87.247.151.0/24 maxlen: 24
188.240.224.0/24 maxlen: 24
188.240.230.0/24 maxlen: 24
188.240.232.0/24 maxlen: 24
188.240.227.0/24 maxlen: 24
188.240.233.0/24 maxlen: 24
91.188.204.0/24 maxlen: 24
91.188.206.0/24 maxlen: 24
91.188.207.0/24 maxlen: 24
89.37.63.0/24 maxlen: 24
185.135.140.0/24 maxlen: 24
185.135.143.0/24 maxlen: 24
185.103.72.0/24 maxlen: 24
185.238.10.0/24 maxlen: 24
188.241.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:10:45:36:67:9d:af:5a:19:26:30:4f:8e:5d:20:0f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 1 07:05:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed3036dd719cce26a68b9b3ff871073ff45e16fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:25:88:47:b6:86:ea:92:f7:c7:4a:09:87:f8:
f0:4c:bb:be:a5:f7:ff:8d:d9:db:d2:44:12:d8:1a:
27:01:5d:9e:a7:ab:23:ef:a1:72:84:f3:c1:3d:23:
2a:dd:22:0b:f7:db:2d:cc:74:7d:cd:76:d2:aa:f1:
7e:ae:de:15:4a:50:95:6e:2f:6c:24:3f:ee:2d:af:
70:ba:2b:49:17:45:45:2b:d2:03:4f:ba:41:92:e8:
21:ac:a4:30:ba:61:e9:7b:0f:55:cf:5c:5a:d7:4c:
9d:f1:dc:33:53:cb:62:c5:ef:b1:33:b5:69:eb:27:
0f:86:b9:9b:5e:be:ce:8b:f7:23:4a:c2:3d:f4:89:
29:b3:a4:b8:9b:8e:a7:df:aa:d2:e7:00:5f:7e:f7:
61:b6:89:32:51:2d:23:f4:c0:c0:b3:21:6b:d1:03:
17:cf:5d:ff:51:81:58:33:f0:3a:8e:1f:49:b7:a1:
f9:7a:b2:e6:4a:07:28:15:6f:27:7c:78:9b:80:06:
6a:75:32:1f:74:7e:62:b9:9d:64:4d:fb:bb:8b:a9:
df:e7:45:7a:37:1b:39:a9:89:e5:8f:1b:4b:34:30:
74:1d:f5:ad:60:aa:cf:6e:31:57:f4:69:fc:94:4b:
74:6f:29:48:63:63:20:12:4d:f2:9f:67:6a:36:07:
b7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:30:36:DD:71:9C:CE:26:A6:8B:9B:3F:F8:71:07:3F:F4:5E:16:FC
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/7TA23XGcziami5s_-HEHP_ReFvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.157.0/24
45.156.159.0/24
87.247.148.0/22
89.33.85.0/24
89.35.154.0/23
89.37.63.0/24
91.188.204.0/24
91.188.206.0/23
93.115.254.0/23
185.103.72.0/24
185.135.140.0/24
185.135.143.0/24
185.238.10.0/24
185.241.210.0/23
185.255.39.0/24
185.255.169.0-185.255.171.255
188.212.132.0/23
188.212.155.0/24
188.212.158.0/24
188.213.203.0/24
188.240.224.0/24
188.240.227.0/24
188.240.230.0/24
188.240.232.0/23
188.241.110.0/24
188.241.214.0/24
213.232.92.0/23
Signature Algorithm: sha256WithRSAEncryption
46:9e:03:b4:f4:1a:7e:98:63:45:ba:35:eb:92:db:f1:de:bc:
36:45:da:b2:35:a3:f1:4a:f7:f8:36:22:7a:e0:c1:d9:51:63:
65:fa:75:4e:41:cb:f2:12:44:db:d2:2b:de:16:a1:62:59:d4:
15:7b:83:18:2f:35:57:3e:c3:b0:a2:74:f6:51:e9:04:1b:a9:
73:1f:6f:c0:a7:ba:f7:df:78:09:6b:48:23:26:c0:3b:c6:87:
74:6e:b9:fd:9e:90:b5:21:c0:aa:19:71:f4:e2:37:2a:a2:c2:
fe:32:b4:5c:23:0d:5e:7e:c4:82:80:ca:93:5d:a9:20:dd:3e:
b4:93:da:0d:c9:52:20:19:ac:85:0a:72:77:2d:9e:f4:0a:19:
3d:09:06:71:0f:e3:2a:d9:26:62:0c:e4:18:ea:6a:1c:e9:e0:
49:ae:9f:e4:54:33:90:51:fd:81:f2:c3:47:94:a0:43:c2:96:
1e:06:7b:08:fe:7d:13:37:56:08:12:ed:da:05:07:ac:e9:42:
3c:89:96:43:cd:4f:ba:77:70:c9:e3:7f:ab:29:b6:15:39:02:
7b:c5:a8:dd:f1:53:ba:71:b2:4a:56:e8:78:e7:c9:02:10:95:
51:52:66:60:ad:cd:93:bd:40:fc:13:18:4b:f7:0d:33:d4:8d:
e5:e0:be:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:53 2023 by rpki-client on console-ams.rpki-client.org