Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/1tv6x-Rki6lMT0BjexT9T0vfZKM.roa
File: 1tv6x-Rki6lMT0BjexT9T0vfZKM.roa (raw, json)
Hash identifier: BBye09A8neIlFHOxl1vEDnUAeclWBNlpHrBKnjxruwQ=
Subject key identifier: D6:DB:FA:C7:E4:64:8B:A9:4C:4F:40:63:7B:14:FD:4F:4B:DF:64:A3
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 01874BA783CF980E8DB2DB7FD7BF3349A6D7
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/1tv6x-Rki6lMT0BjexT9T0vfZKM.roa
Signing time: Tue 04 Apr 2023 09:44:42 +0000
ROA not before: Tue 04 Apr 2023 09:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 185.221.192.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.194.0/24 maxlen: 24
185.221.193.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
185.137.61.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
185.142.124.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.125.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
195.8.102.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
91.213.151.0/24 maxlen: 24
195.230.107.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
185.82.64.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
195.230.124.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.50.0/23 maxlen: 23
45.155.192.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4b:a7:83:cf:98:0e:8d:b2:db:7f:d7:bf:33:49:a6:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: Apr 4 09:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6dbfac7e4648ba94c4f40637b14fd4f4bdf64a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:00:9c:5b:92:0f:f1:8c:c9:9b:f3:77:53:e2:
5e:33:cc:4e:7c:12:e8:de:2c:a9:30:2d:5a:e7:9e:
01:e4:02:e9:57:69:29:cb:0a:47:13:81:14:22:b0:
73:dd:b4:08:19:bd:65:b8:46:b5:c8:0c:cc:92:b4:
8e:c1:ca:69:29:0e:90:77:54:cb:0c:81:01:51:a8:
02:b9:fe:2a:ad:35:c4:8f:39:c0:09:b2:ea:2c:55:
ec:fd:e2:f0:fb:1e:df:7d:ee:95:ba:74:84:30:4b:
00:92:b3:0a:b3:8f:68:fb:6d:15:a8:d4:6e:22:f6:
ab:95:ad:ad:a3:05:73:11:a9:b6:58:48:a8:f8:8b:
b3:50:41:eb:bd:55:5f:66:b2:18:c5:4e:32:4f:13:
c3:4f:05:8e:9c:1f:69:4d:d4:2e:ba:6b:7e:f9:63:
b3:04:85:4e:9a:8a:e8:18:78:07:8a:4e:98:4f:cf:
f8:35:92:ed:c6:3f:f9:5b:c4:fb:cc:8b:70:88:d9:
b4:68:3e:c5:e8:0d:51:63:bb:58:24:89:3b:07:4b:
e0:a7:d1:19:9c:9e:f5:f4:2f:ba:69:3b:ae:65:8b:
b0:93:78:e1:c3:35:1c:7c:2e:65:5b:90:5e:87:56:
1d:75:7f:98:fa:24:25:c5:ac:e4:ab:4a:a2:89:26:
6e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DB:FA:C7:E4:64:8B:A9:4C:4F:40:63:7B:14:FD:4F:4B:DF:64:A3
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/1tv6x-Rki6lMT0BjexT9T0vfZKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.151.0/24
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.21.0-185.125.23.255
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.102.0/24
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.107.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
00:b7:af:c3:58:37:79:77:46:e2:92:92:bb:98:f5:f2:a4:c9:
21:47:04:e6:ab:d6:c1:4e:9a:7e:b4:4b:c1:b0:d3:47:8e:74:
7a:d9:9f:32:af:e4:67:14:b9:89:41:0a:a1:37:10:2e:af:f4:
7a:f3:50:f7:94:03:ba:fb:2d:9d:61:5c:92:14:a4:e8:b8:9b:
21:91:00:64:28:a1:0b:f8:ce:42:8a:28:c7:8d:a3:a8:ed:4c:
f8:e1:eb:39:85:88:d1:de:74:b3:85:c4:df:fd:db:9d:6b:d5:
de:e4:c6:11:fa:58:1a:23:a5:ad:eb:b5:34:4c:a5:02:6d:39:
e8:8b:94:79:9a:80:fe:0c:58:bf:61:22:45:8f:e3:ac:f2:30:
98:0d:bc:ea:df:ac:b3:5f:7f:38:9a:ed:f1:96:fd:35:44:05:
41:be:35:74:0b:4e:05:d3:f7:2a:70:36:6a:75:52:ea:f9:8e:
27:6d:e5:b1:a6:a4:3a:4c:d8:54:a6:be:1c:e9:99:09:a3:33:
f3:ec:fc:59:c3:1d:ea:d7:b2:18:49:78:a0:b9:c4:7c:1f:6c:
4b:dd:ab:af:26:b3:cf:39:90:3d:e2:fd:74:57:0b:9a:9c:6a:
43:07:b8:93:fa:36:f6:3b:7b:94:37:70:a6:f9:6c:fa:5a:bd:
12:94:6b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:31 2023 by rpki-client on console-fra.rpki-client.org