Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/vV5QvDvEHFRDimZVZ89U6rOgndE.roa
File: vV5QvDvEHFRDimZVZ89U6rOgndE.roa (raw, json)
Hash identifier: /U8yyajEaGQDbfiixl9h5F1F75vzMWwjufj9u0GTLgE=
Subject key identifier: BD:5E:50:BC:3B:C4:1C:54:43:8A:66:55:67:CF:54:EA:B3:A0:9D:D1
Certificate issuer: /CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Certificate serial: 018B075614E729CDF01F8DED329B141C14B6
Authority key identifier: 0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/vV5QvDvEHFRDimZVZ89U6rOgndE.roa
Signing time: Fri 06 Oct 2023 23:32:43 +0000
ROA not before: Fri 06 Oct 2023 23:32:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8849
IP address blocks: 185.230.245.0/24 maxlen: 24
91.192.81.0/24 maxlen: 24
5.44.249.0/24 maxlen: 24
185.140.210.0/24 maxlen: 24
185.140.211.0/24 maxlen: 24
62.122.187.0/24 maxlen: 24
185.147.53.0/24 maxlen: 24
95.174.71.0/24 maxlen: 24
95.174.68.0/24 maxlen: 24
95.174.69.0/24 maxlen: 24
95.174.70.0/24 maxlen: 24
89.36.163.0/24 maxlen: 24
89.36.162.0/24 maxlen: 24
89.40.226.0/24 maxlen: 24
88.210.36.0/23 maxlen: 24
2a06:f902:4000::/36 maxlen: 36
2a06:f901:c000::/36 maxlen: 36
2a06:f901:8000::/36 maxlen: 36
2a06:f901:4000::/36 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:07:56:14:e7:29:cd:f0:1f:8d:ed:32:9b:14:1c:14:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0febfbfd6f937c5ae39e3e38e8ab8384107421a6
Validity
Not Before: Oct 6 23:32:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd5e50bc3bc41c54438a665567cf54eab3a09dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:56:a5:01:7c:1d:19:81:a7:ff:90:e1:3a:31:
8e:d6:be:a2:80:c7:c6:df:a0:8e:30:e4:6f:e8:33:
cd:b2:65:07:76:fc:81:b3:c0:46:23:54:12:c8:61:
93:a4:7c:f8:8b:d8:f5:02:db:c6:e2:9c:10:6f:8d:
b3:e9:8c:05:c2:c3:29:23:f2:09:71:05:40:f9:5d:
fd:bc:a2:33:38:93:56:36:9f:59:d1:e3:ed:2f:74:
33:9d:b3:ac:93:63:bd:95:0c:f6:ef:06:b2:c9:8a:
53:15:46:9e:67:d7:df:ba:6b:c5:94:9b:18:4b:86:
76:a8:e5:6b:31:0e:80:24:e1:b4:6f:88:92:01:12:
2c:d4:54:1c:41:2f:ac:e9:d2:85:fa:a5:2e:66:35:
ae:b8:d0:d9:e1:35:a9:4e:e1:8b:e0:fe:8c:91:42:
5e:83:3b:00:69:12:f9:9e:53:c6:cb:52:f1:0e:5c:
f4:c0:82:f4:b2:1d:8c:87:53:39:fb:f8:e6:8e:0f:
8f:64:f7:cb:bf:75:37:c3:15:e9:29:18:7e:e4:db:
e7:47:02:bb:7a:31:0f:59:bc:39:09:7a:3f:3e:28:
f3:36:5c:2b:3d:26:84:ed:2a:74:1e:d1:ca:78:3b:
02:7c:e9:0f:b0:e9:44:94:fb:00:df:a4:96:f6:d3:
7d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5E:50:BC:3B:C4:1C:54:43:8A:66:55:67:CF:54:EA:B3:A0:9D:D1
X509v3 Authority Key Identifier:
keyid:0F:EB:FB:FD:6F:93:7C:5A:E3:9E:3E:38:E8:AB:83:84:10:74:21:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-v7_W-TfFrjnj446KuDhBB0IaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/vV5QvDvEHFRDimZVZ89U6rOgndE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/67d834-2612-4739-9f4b-7d70374d76d2/1/D-v7_W-TfFrjnj446KuDhBB0IaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.249.0/24
62.122.187.0/24
88.210.36.0/23
89.36.162.0/23
89.40.226.0/24
91.192.81.0/24
95.174.68.0/22
185.140.210.0/23
185.147.53.0/24
185.230.245.0/24
IPv6:
2a06:f901:4000::/36
2a06:f901:8000::/36
2a06:f901:c000::/36
2a06:f902:4000::/36
Signature Algorithm: sha256WithRSAEncryption
78:10:41:7e:fa:b8:c7:5d:ee:6d:50:73:fd:dc:60:fd:46:02:
7f:6e:f9:36:c5:84:19:29:b7:eb:0e:d2:6e:84:66:f4:b0:ac:
fe:ef:9d:20:67:68:ea:81:0a:11:ab:e0:7b:3c:f4:99:ba:a4:
de:35:ec:7e:f5:70:30:ee:f7:dc:d4:f7:c3:84:78:4a:b7:0c:
8d:61:36:8b:a1:e9:90:60:39:4f:3a:86:41:51:72:76:e3:87:
85:1d:d2:20:ca:c4:a4:5b:63:60:49:a6:b1:4d:e2:26:3c:54:
e4:86:51:6a:d1:91:df:1c:c9:14:c1:34:cd:85:20:0b:81:f5:
77:21:ef:de:5d:d8:6d:3b:f8:2d:b6:d0:88:46:84:61:58:04:
89:0b:03:46:e2:cc:7e:96:b1:82:b3:f5:42:18:e3:4c:78:1d:
54:60:ba:31:9c:7f:6d:c2:09:be:5b:c3:b4:d8:ca:df:a7:75:
da:7b:95:42:57:0a:fa:0e:96:01:25:7d:cd:f6:4a:72:43:a2:
4e:7c:f0:51:7b:78:c8:98:0a:df:bb:6d:5f:ba:84:eb:6a:a2:
27:ab:9d:c2:35:d5:61:99:58:08:ab:65:17:65:1e:12:25:bd:
5d:0c:1a:42:7d:07:52:27:e6:69:8d:69:d3:51:3c:6f:9c:e6:
e3:fe:0d:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 1 12:49:20 2023 by rpki-client on console-fra.rpki-client.org