Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/W70GnGzPcq_DV1gQRy8jQspVJ14.roa
File: W70GnGzPcq_DV1gQRy8jQspVJ14.roa (raw, json)
Hash identifier: Ma2HnsvrMIL+md5UoAn3ac+oDHmgGICe6w49sIAbFcM=
Subject key identifier: 5B:BD:06:9C:6C:CF:72:AF:C3:57:58:10:47:2F:23:42:CA:55:27:5E
Certificate issuer: /CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Certificate serial: 018571FA15BA4EAF3D42DA27730DAF3456E4
Authority key identifier: 07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/W70GnGzPcq_DV1gQRy8jQspVJ14.roa
Signing time: Mon 02 Jan 2023 10:14:53 +0000
ROA not before: Mon 02 Jan 2023 10:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208425
IP address blocks: 185.114.23.0/24 maxlen: 24
185.114.21.0/24 maxlen: 24
185.114.22.0/24 maxlen: 24
185.114.20.0/24 maxlen: 24
185.114.20.0/22 maxlen: 22
194.61.119.0/24 maxlen: 24
185.146.91.0/24 maxlen: 24
185.1.132.0/24 maxlen: 24
185.146.89.0/24 maxlen: 24
185.146.90.0/24 maxlen: 24
185.146.88.0/24 maxlen: 24
185.50.70.0/24 maxlen: 24
185.50.71.0/24 maxlen: 24
185.50.68.0/24 maxlen: 24
185.50.69.0/24 maxlen: 24
185.169.55.0/24 maxlen: 24
185.169.53.0/24 maxlen: 24
185.169.54.0/24 maxlen: 24
185.169.52.0/24 maxlen: 24
194.61.117.0/24 maxlen: 24
194.61.118.0/24 maxlen: 24
194.61.116.0/24 maxlen: 24
2a0a:3900::/29 maxlen: 29
2a01:a420::/29 maxlen: 29
2001:7f8:ec::/48 maxlen: 48
2a0f:d500::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:15:ba:4e:af:3d:42:da:27:73:0d:af:34:56:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Validity
Not Before: Jan 2 10:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bbd069c6ccf72afc3575810472f2342ca55275e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a6:17:81:ab:4e:24:9e:9e:b6:55:c1:c6:1b:
45:8d:aa:47:2b:87:a6:06:cc:f0:76:85:d0:9d:03:
44:48:e5:2a:5d:b9:ef:93:59:76:d8:3a:5d:d6:ee:
73:9c:53:33:2b:ef:6c:49:5d:ce:3a:87:a3:5a:94:
9f:eb:14:d4:58:4c:5a:2c:ba:bd:92:f5:b8:ea:9d:
30:c0:6a:78:aa:f0:b4:4d:a8:77:fb:b3:b0:6b:a7:
45:8d:24:cc:59:4a:2e:7c:1f:31:94:b8:70:f5:10:
c8:d6:f8:ed:d3:3b:a6:dd:c4:a7:d8:b2:8f:0c:50:
15:0a:d1:38:2e:b8:74:eb:36:4c:b7:37:d2:d7:68:
ed:37:11:b0:44:cf:cf:5a:74:06:65:dd:dc:b7:fd:
f0:52:d3:69:39:ae:9f:47:26:de:85:ba:8c:0e:f0:
d3:62:3b:6e:b5:db:e5:0b:aa:39:7c:92:1f:44:03:
df:08:96:cd:99:70:fc:60:f7:a5:0e:7d:8c:61:91:
5d:3d:b4:93:9f:e6:c9:e8:fb:6f:46:e5:4f:3f:e0:
96:d5:30:ca:c4:ef:9b:24:a8:f2:5a:11:83:f5:b0:
34:2b:b3:eb:f9:c4:42:df:68:06:64:8c:16:fc:be:
34:20:84:18:84:41:81:6a:fe:c6:a8:42:18:d5:e4:
17:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BD:06:9C:6C:CF:72:AF:C3:57:58:10:47:2F:23:42:CA:55:27:5E
X509v3 Authority Key Identifier:
keyid:07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/W70GnGzPcq_DV1gQRy8jQspVJ14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.132.0/24
185.50.68.0/22
185.114.20.0/22
185.146.88.0/22
185.169.52.0/22
194.61.116.0/22
IPv6:
2001:7f8:ec::/48
2a01:a420::/29
2a0a:3900::/29
2a0f:d500::/29
Signature Algorithm: sha256WithRSAEncryption
26:fe:06:30:67:34:71:b6:b4:a6:14:c3:dd:26:fb:9c:c6:10:
fd:9e:b6:b6:d6:26:15:e2:b1:df:63:2d:43:09:20:26:48:e5:
ac:93:b1:05:07:28:e4:6a:df:5c:16:3d:af:29:67:db:11:ee:
75:ed:27:cf:5b:97:a7:99:b9:c9:a7:53:ce:9f:70:39:94:1c:
f3:51:56:58:84:87:03:4f:a1:b5:d0:af:87:74:91:e5:28:ac:
c9:5e:45:b4:fb:27:57:de:db:aa:22:e8:32:73:11:1c:e1:f2:
1f:65:51:f7:cf:79:90:b6:0d:e0:94:bc:ef:b2:65:a3:e5:a1:
36:f7:78:e1:42:94:85:71:1a:b9:5e:a5:21:a9:71:9d:21:62:
75:0b:aa:59:8a:d9:fb:de:de:0a:f7:42:af:d9:d2:49:b5:a9:
9a:4c:37:95:b7:14:59:4c:54:99:3a:5f:8c:95:00:fc:a5:8e:
ee:88:71:b5:b4:bf:ab:61:94:db:ff:0c:10:49:54:28:f4:72:
ac:05:1e:42:c7:71:1a:de:f9:cf:bd:51:a6:97:c3:ee:7a:49:
a1:25:70:e3:44:80:71:d5:94:53:d7:d4:c4:9b:f3:c4:a5:c5:
d1:e1:aa:e1:09:18:9a:16:7a:ba:b9:6c:a9:9d:d4:6b:aa:bf:
58:0d:38:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:36 2023 by rpki-client on console-ams.rpki-client.org