Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ehvA3xDLUpR2FFG9Mox8o9zvzd0.roa
File: ehvA3xDLUpR2FFG9Mox8o9zvzd0.roa (raw, json)
Hash identifier: gHW8gyOGniOJ9Yktf7pYNMG12i4syeDoxu5CE53yYIA=
Subject key identifier: 7A:1B:C0:DF:10:CB:52:94:76:14:51:BD:32:8C:7C:A3:DC:EF:CD:DD
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0186942FCC1BB301E9EC540A8401DEDEAFC7
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ehvA3xDLUpR2FFG9Mox8o9zvzd0.roa
Signing time: Mon 27 Feb 2023 18:43:25 +0000
ROA not before: Mon 27 Feb 2023 18:43:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 178.239.202.0/24 maxlen: 24
77.75.62.0/24 maxlen: 24
77.75.60.0/24 maxlen: 24
194.4.157.0/24 maxlen: 24
89.43.208.0/24 maxlen: 24
203.0.8.0/24 maxlen: 24
62.197.133.0/24 maxlen: 24
89.38.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:94:2f:cc:1b:b3:01:e9:ec:54:0a:84:01:de:de:af:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 27 18:43:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a1bc0df10cb5294761451bd328c7ca3dcefcddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:96:2c:d4:e8:1b:64:9a:50:81:ab:2e:a6:bd:
9e:aa:47:ac:be:91:61:26:c6:dd:2f:2b:3f:f8:93:
5e:56:da:72:b3:b0:27:8a:c1:de:7d:50:76:3b:5e:
cc:28:72:a5:73:83:1d:5a:52:9d:1e:c3:5b:66:6d:
53:5e:a9:30:7c:61:66:23:17:3f:0e:e2:bf:0d:2a:
71:58:a3:79:e5:79:c4:94:a0:91:20:56:5c:8c:a6:
95:4a:8e:76:5e:ca:5e:0c:b6:2e:2e:1e:d5:ed:2c:
d3:25:bd:f6:67:b4:fb:49:f9:33:ac:0d:b0:bf:ff:
96:9c:59:13:02:73:70:cc:08:60:1f:da:06:4e:bd:
3f:3c:9d:c1:e8:75:03:df:23:90:83:79:a4:45:a0:
dc:f2:be:b4:07:61:f6:ca:83:83:06:69:85:90:4e:
62:6a:4c:03:d5:96:cf:a3:11:dd:81:c3:ed:f5:60:
de:76:87:62:6f:94:9d:24:86:b3:96:19:fe:7a:1e:
4c:21:8e:06:cc:36:ae:14:97:65:13:cf:f5:12:37:
9f:16:5a:0b:92:17:6b:3b:e8:9e:bd:e6:9a:90:45:
e7:8a:42:0a:bf:fc:e8:f3:3e:cc:68:d4:a4:7d:7a:
ba:1a:01:d5:d5:60:78:40:9a:3b:d5:1e:ce:00:41:
f4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1B:C0:DF:10:CB:52:94:76:14:51:BD:32:8C:7C:A3:DC:EF:CD:DD
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/ehvA3xDLUpR2FFG9Mox8o9zvzd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.197.133.0/24
77.75.60.0/24
77.75.62.0/24
89.38.101.0/24
89.43.208.0/24
178.239.202.0/24
194.4.157.0/24
203.0.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:5b:f0:a1:59:c1:94:f1:99:16:d2:25:e8:8e:ba:2e:cc:d7:
50:ab:eb:99:37:eb:ea:1a:72:84:cc:3c:77:d4:08:5c:e5:29:
fa:6f:14:8c:36:7c:c4:6a:e6:c1:ce:79:e8:df:06:6a:42:21:
ad:92:48:20:75:26:55:51:4b:e4:fe:56:44:46:09:87:72:97:
f6:7f:97:a4:f7:26:05:d7:41:72:05:c4:78:45:fe:4c:d2:b8:
a7:be:a5:21:1c:a7:e2:f3:4b:e0:31:d8:c2:de:14:70:cf:51:
36:82:44:d0:d5:e3:32:59:c4:74:c4:63:ce:f8:8b:fd:af:7f:
56:c6:9b:59:a6:58:a3:c5:3f:61:72:38:77:49:f0:e9:44:7d:
e8:3a:1f:45:95:f0:fb:c0:f4:0c:2a:5d:06:9e:2e:b7:d4:c8:
18:ac:cb:9f:a0:93:b5:10:fb:a7:bd:c0:1c:31:b2:f6:a5:1f:
ff:eb:de:86:bc:c5:33:b1:17:e4:9d:51:46:98:7b:b8:8f:70:
96:1f:ac:34:08:bf:3c:c8:44:60:16:2c:e2:1a:59:9f:54:e0:
03:a9:db:a6:96:88:3e:92:fd:1f:8e:62:02:cf:d9:cf:8c:a3:
6b:8a:92:ee:7c:ce:b4:02:29:c8:d5:00:10:38:00:9e:a0:fb:
8e:b3:85:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:56 2023 by rpki-client on console-ams.rpki-client.org