Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/pdZomBzr0j9VRsE16ZVlTIjIjao.roa
File: pdZomBzr0j9VRsE16ZVlTIjIjao.roa (raw, json)
Hash identifier: MOPJI85HaFsNaUVyycnNILTSO2xjBvV9cNys2UtLf2Q=
Subject key identifier: A5:D6:68:98:1C:EB:D2:3F:55:46:C1:35:E9:95:65:4C:88:C8:8D:AA
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018B5DA415371B0D884BE89C12C6CF143C75
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/pdZomBzr0j9VRsE16ZVlTIjIjao.roa
Signing time: Mon 23 Oct 2023 17:45:16 +0000
ROA not before: Mon 23 Oct 2023 17:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 188.241.243.0/24 maxlen: 24
185.255.39.0/24 maxlen: 24
188.214.209.0/24 maxlen: 24
185.241.210.0/23 maxlen: 24
93.115.254.0/23 maxlen: 24
188.213.202.0/24 maxlen: 24
193.23.129.0/24 maxlen: 24
193.23.128.0/24 maxlen: 24
213.232.93.0/24 maxlen: 24
213.232.92.0/24 maxlen: 24
213.232.94.0/23 maxlen: 24
45.156.157.0/24 maxlen: 24
89.33.85.0/24 maxlen: 24
185.255.169.0/24 maxlen: 24
185.255.170.0/23 maxlen: 24
185.255.170.0/24 maxlen: 24
185.255.168.0/24 maxlen: 24
89.35.154.0/24 maxlen: 24
188.212.133.0/24 maxlen: 24
188.212.155.0/24 maxlen: 24
188.212.159.0/24 maxlen: 24
87.247.148.0/24 maxlen: 24
87.247.150.0/24 maxlen: 24
87.247.149.0/24 maxlen: 24
87.247.151.0/24 maxlen: 24
188.240.224.0/24 maxlen: 24
188.240.225.0/24 maxlen: 24
188.240.227.0/24 maxlen: 24
91.188.205.0/24 maxlen: 24
91.188.204.0/24 maxlen: 24
91.188.206.0/24 maxlen: 24
91.188.207.0/24 maxlen: 24
89.37.63.0/24 maxlen: 24
45.146.184.0/22 maxlen: 24
185.135.140.0/24 maxlen: 24
185.135.141.0/24 maxlen: 24
185.135.143.0/24 maxlen: 24
185.238.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:a4:15:37:1b:0d:88:4b:e8:9c:12:c6:cf:14:3c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 23 17:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5d668981cebd23f5546c135e995654c88c88daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:81:5b:cf:3a:7f:cd:26:02:7d:ee:ad:1d:2a:
e6:ef:f7:4c:f9:26:d6:af:b8:99:fa:99:c8:e2:e9:
32:2b:9d:21:f6:5a:e7:27:e0:e3:e0:26:f4:3a:de:
28:b7:da:ad:ab:8e:b9:28:c9:1a:c9:ce:25:73:7f:
8b:86:3a:1b:ca:c4:00:a9:3e:66:a5:ee:7e:34:76:
f6:4f:d8:6b:06:cc:92:f3:6f:ac:a8:23:2f:d9:28:
bd:62:70:25:f8:15:ca:92:fe:5b:4a:b6:1f:8b:61:
b2:bb:c0:4a:28:ba:5a:75:b4:c7:87:04:a6:de:b8:
63:fd:ee:f4:7b:24:8e:a3:56:1e:ce:12:2a:54:66:
06:c1:e3:ed:8f:23:70:5b:b4:23:47:93:ec:bb:88:
4e:98:4f:f9:b3:0f:51:f2:93:a4:13:2a:b3:d5:bc:
fa:56:66:09:6f:14:dc:39:29:64:09:4f:bb:b3:97:
34:db:83:a4:0e:76:b2:e6:4d:ca:2d:03:7f:7a:af:
ab:60:33:0b:99:f1:a6:86:c7:e1:ea:7b:f9:1a:44:
9c:f3:ab:8f:76:3b:8c:1e:65:d8:d1:a3:ba:d1:6f:
51:5d:a2:0f:3e:5f:26:62:9f:3b:ed:2d:4b:fb:0f:
5d:93:d6:c2:9d:8e:dd:a8:df:1e:43:02:65:4e:c8:
d4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D6:68:98:1C:EB:D2:3F:55:46:C1:35:E9:95:65:4C:88:C8:8D:AA
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/pdZomBzr0j9VRsE16ZVlTIjIjao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.184.0/22
45.156.157.0/24
87.247.148.0/22
89.33.85.0/24
89.35.154.0/24
89.37.63.0/24
91.188.204.0/22
93.115.254.0/23
185.135.140.0/23
185.135.143.0/24
185.238.10.0/24
185.241.210.0/23
185.255.39.0/24
185.255.168.0/22
188.212.133.0/24
188.212.155.0/24
188.212.159.0/24
188.213.202.0/24
188.214.209.0/24
188.240.224.0/23
188.240.227.0/24
188.241.243.0/24
193.23.128.0/23
213.232.92.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:8c:19:ba:4e:da:31:c7:09:e9:30:19:ce:de:23:b7:be:2a:
36:e4:0b:35:1f:79:5a:0c:2e:68:e7:c2:a8:9b:3c:c5:a4:38:
e1:68:1b:e3:43:47:b6:a0:99:c0:78:c3:92:e2:1e:2d:d5:08:
f3:fe:64:20:e7:a6:c6:b7:48:fe:5c:ea:bc:7e:42:2c:0e:f2:
3b:f6:7f:ee:2f:d1:12:3e:78:d8:7f:0c:d8:d9:b0:53:1b:c2:
2e:d6:97:57:77:4a:1b:8b:a6:ea:9e:a2:4a:ff:cd:58:a8:fb:
11:84:ec:5c:eb:fb:fe:d6:b5:47:1e:ed:b7:e5:b9:39:7c:8f:
ff:40:7d:cd:30:80:42:64:c7:08:7d:ba:53:88:79:34:1d:39:
68:3a:95:f7:b9:d0:d5:67:e6:fa:e7:f0:d3:ac:8e:f4:bd:d6:
5d:3f:69:29:55:22:12:1f:23:3e:1e:37:6d:69:84:2a:51:67:
0c:5a:59:aa:76:e8:b9:15:b3:11:09:52:93:af:36:1d:f0:51:
e0:ef:f2:67:bb:62:5c:67:48:b3:3c:c9:0c:70:85:a3:62:84:
60:34:cb:b6:f8:7c:68:70:d7:46:87:d5:fe:66:b8:66:73:b6:
cd:80:42:3c:c7:33:5e:6c:18:a6:cf:d5:80:39:45:06:f7:c9:
22:b8:3b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 18:45:07 2023 by rpki-client on console-ams.rpki-client.org