Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Jwmv_Yoo73arHfKTLOT22hXkok4.roa
File: Jwmv_Yoo73arHfKTLOT22hXkok4.roa (raw, json)
Hash identifier: 353/sldPzwJYuQFpdrZGGm+HDSyxVBnoDreWyT6E8Pw=
Subject key identifier: 27:09:AF:FD:8A:28:EF:76:AB:1D:F2:93:2C:E4:F6:DA:15:E4:A2:4E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018ABE1367DB6087AA9D903F2E6C96F36892
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Jwmv_Yoo73arHfKTLOT22hXkok4.roa
Signing time: Fri 22 Sep 2023 18:07:37 +0000
ROA not before: Fri 22 Sep 2023 18:07:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.112.64.0/22 maxlen: 24
188.241.242.0/24 maxlen: 24
188.241.243.0/24 maxlen: 24
185.255.39.0/24 maxlen: 24
188.214.208.0/24 maxlen: 24
188.214.209.0/24 maxlen: 24
185.241.210.0/23 maxlen: 24
93.115.255.0/24 maxlen: 24
93.115.254.0/23 maxlen: 24
188.213.203.0/24 maxlen: 24
188.213.202.0/24 maxlen: 24
193.23.129.0/24 maxlen: 24
193.23.128.0/24 maxlen: 24
213.232.93.0/24 maxlen: 24
213.232.92.0/24 maxlen: 24
213.232.94.0/23 maxlen: 24
45.156.157.0/24 maxlen: 24
89.33.85.0/24 maxlen: 24
89.33.84.0/24 maxlen: 24
185.255.169.0/24 maxlen: 24
185.255.170.0/23 maxlen: 24
185.255.170.0/24 maxlen: 24
89.35.154.0/24 maxlen: 24
188.212.133.0/24 maxlen: 24
188.212.155.0/24 maxlen: 24
188.212.158.0/24 maxlen: 24
87.247.148.0/24 maxlen: 24
87.247.150.0/24 maxlen: 24
87.247.149.0/24 maxlen: 24
87.247.151.0/24 maxlen: 24
188.240.224.0/24 maxlen: 24
188.240.225.0/24 maxlen: 24
188.240.227.0/24 maxlen: 24
188.240.233.0/24 maxlen: 24
91.188.205.0/24 maxlen: 24
91.188.204.0/24 maxlen: 24
91.188.206.0/24 maxlen: 24
91.188.207.0/24 maxlen: 24
89.37.63.0/24 maxlen: 24
45.146.184.0/22 maxlen: 24
185.135.140.0/24 maxlen: 24
185.135.141.0/24 maxlen: 24
185.135.143.0/24 maxlen: 24
185.238.10.0/24 maxlen: 24
188.241.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:be:13:67:db:60:87:aa:9d:90:3f:2e:6c:96:f3:68:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Sep 22 18:07:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2709affd8a28ef76ab1df2932ce4f6da15e4a24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:98:6b:58:6e:f5:0d:44:6d:b4:1d:48:4d:ff:
8d:d8:37:00:46:6f:fb:2d:3b:09:e8:11:0f:3d:34:
0f:55:e7:b0:5d:f6:54:c1:b4:f1:b4:bd:f9:28:a1:
a1:8a:fd:4a:89:b7:3a:db:bd:9a:14:cf:59:85:8c:
f6:2b:25:25:b5:ef:e7:25:2e:23:e1:7a:0d:52:c0:
09:55:f3:2b:99:88:4c:ba:6b:e4:57:68:1d:7f:fb:
08:c3:75:06:57:04:0e:bd:c0:1c:68:61:d9:bb:9d:
d7:a9:b8:a4:58:f5:c7:e3:e3:a2:7f:4a:c7:b4:97:
f4:ef:62:f1:e0:8c:38:7f:80:73:28:33:dd:f7:76:
0b:9f:42:83:88:fb:d5:47:69:b0:3f:f4:f8:62:3c:
21:24:60:27:73:02:7d:61:16:ea:f1:bd:39:5d:43:
b8:49:77:cf:e7:d0:df:22:4e:09:82:6c:f3:a1:8c:
44:98:d0:ab:77:e1:a1:d1:4b:13:4a:3e:4b:0e:ad:
0c:db:dd:0d:18:6d:a7:bd:a1:f1:c2:b4:dd:f9:e7:
7f:17:ca:2b:af:68:57:35:3f:af:cf:23:72:36:c0:
f2:c6:4a:10:b1:12:08:4b:f7:a4:bc:3b:15:47:63:
4f:13:06:a2:97:25:fe:88:19:63:d9:c9:3d:a2:44:
36:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:09:AF:FD:8A:28:EF:76:AB:1D:F2:93:2C:E4:F6:DA:15:E4:A2:4E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Jwmv_Yoo73arHfKTLOT22hXkok4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.184.0/22
45.156.157.0/24
87.247.148.0/22
89.33.84.0/23
89.35.154.0/24
89.37.63.0/24
91.188.204.0/22
93.115.254.0/23
185.112.64.0/22
185.135.140.0/23
185.135.143.0/24
185.238.10.0/24
185.241.210.0/23
185.255.39.0/24
185.255.169.0-185.255.171.255
188.212.133.0/24
188.212.155.0/24
188.212.158.0/24
188.213.202.0/23
188.214.208.0/23
188.240.224.0/23
188.240.227.0/24
188.240.233.0/24
188.241.110.0/24
188.241.242.0/23
193.23.128.0/23
213.232.92.0/22
Signature Algorithm: sha256WithRSAEncryption
78:78:8c:c3:3f:50:a7:d9:de:ac:c6:9b:69:91:db:8f:dc:30:
c8:e5:68:bf:ed:8c:6c:e7:ad:4c:3c:12:cd:b6:53:20:ca:0b:
59:d1:31:ce:7c:b1:18:a5:f5:69:cf:cc:8d:ef:63:d6:2c:bb:
f4:94:47:ca:21:46:24:bc:0f:36:80:65:9e:7f:f7:71:a8:8f:
ed:c0:51:68:78:e8:d7:55:8c:6e:a5:b1:dc:cd:98:68:33:af:
1a:29:5b:bf:05:6e:30:2b:5e:df:a0:a6:f3:a1:0a:35:74:5b:
4b:08:10:5d:00:7e:17:01:61:ac:15:59:b8:76:38:1e:75:d6:
18:62:a4:cc:da:07:4b:fa:a5:f8:50:2d:59:fc:aa:76:43:9a:
70:00:da:0d:1a:8d:9a:21:74:0e:d5:0b:e4:e0:91:db:83:39:
ac:43:62:65:a4:19:d0:33:18:78:ca:37:78:b6:84:b8:46:bb:
0b:a8:5a:7d:4c:ba:16:d8:2c:9e:54:3c:f6:be:9c:2d:ce:6d:
91:6c:83:a2:e5:89:1a:72:28:82:8d:4c:60:d1:87:a6:8b:d3:
cf:df:44:7f:bd:bb:a9:7c:89:ba:8b:04:46:53:3b:c2:1f:b1:
5a:13:55:1a:fe:2e:db:06:cc:7c:f3:44:8b:f5:7f:78:ff:b8:
4c:ef:e9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 26 08:06:14 2023 by rpki-client on console-fra.rpki-client.org