Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/YPVHmQ5C_czKcRhekTSg1X4zhzo.roa
File: YPVHmQ5C_czKcRhekTSg1X4zhzo.roa (raw, json)
Hash identifier: tTkL6RmPVldiEbV4uIsNo0J4r0ry985iPiOrLBsSPaM=
Subject key identifier: 60:F5:47:99:0E:42:FD:CC:CA:71:18:5E:91:34:A0:D5:7E:33:87:3A
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 0185710C2D4816F015F470D307A01306A816
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/YPVHmQ5C_czKcRhekTSg1X4zhzo.roa
Signing time: Mon 02 Jan 2023 05:55:01 +0000
ROA not before: Mon 02 Jan 2023 05:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 162.218.89.0/24 maxlen: 24
162.218.88.0/24 maxlen: 24
162.218.91.0/24 maxlen: 24
162.218.94.0/24 maxlen: 24
162.218.93.0/24 maxlen: 24
162.218.92.0/24 maxlen: 24
212.60.14.0/24 maxlen: 24
185.187.213.0/24 maxlen: 24
185.187.215.0/24 maxlen: 24
185.187.214.0/24 maxlen: 24
79.98.182.0/24 maxlen: 24
78.31.206.0/24 maxlen: 24
78.31.207.0/24 maxlen: 24
185.171.126.0/24 maxlen: 24
185.208.152.0/24 maxlen: 24
185.230.123.0/24 maxlen: 24
185.230.121.0/24 maxlen: 24
185.230.120.0/24 maxlen: 24
185.208.153.0/24 maxlen: 24
185.208.154.0/24 maxlen: 24
45.67.146.0/24 maxlen: 24
185.205.206.0/24 maxlen: 24
185.52.137.0/24 maxlen: 24
185.52.136.0/24 maxlen: 24
185.52.139.0/24 maxlen: 24
185.52.138.0/24 maxlen: 24
185.205.207.0/24 maxlen: 24
185.161.191.0/24 maxlen: 24
185.201.40.0/24 maxlen: 24
5.182.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:2d:48:16:f0:15:f4:70:d3:07:a0:13:06:a8:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jan 2 05:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60f547990e42fdccca71185e9134a0d57e33873a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ea:2f:c4:9b:41:e2:fd:6a:54:40:39:d5:01:
c7:6f:bc:ea:9b:3c:97:e0:ee:38:ae:4f:0d:4d:27:
ca:27:21:96:14:66:be:9c:d6:86:2b:11:3e:ef:51:
a5:7e:6a:18:31:99:ae:30:e0:49:b0:46:f3:9f:43:
e0:6a:d6:13:9d:5c:bd:fe:88:ab:40:99:09:2d:91:
0e:f5:d2:8f:a9:28:af:ef:80:42:6e:ce:03:51:72:
84:67:39:2c:28:65:bf:b7:b3:e7:30:92:a5:5a:03:
90:6e:09:45:2b:f6:69:6a:fc:1d:af:98:4b:f8:e4:
27:0d:1c:51:ad:bd:83:56:e7:dc:a0:24:14:84:9d:
b0:05:b9:65:a5:d4:52:01:2e:9f:55:d7:67:eb:45:
b6:7e:21:64:17:45:19:80:ea:86:a4:a8:e1:d5:12:
3d:5d:eb:f3:53:45:38:96:16:26:c5:f8:db:fc:7f:
79:1a:70:27:ea:2a:b0:ff:e1:76:6e:66:f8:63:e0:
1f:d9:6f:91:e1:2a:c5:e6:7a:73:52:09:2f:97:25:
1f:b9:54:44:c5:9e:74:36:2c:f7:f3:ee:2f:64:51:
d2:56:86:89:42:44:16:13:46:16:6b:a4:44:d8:03:
10:72:c3:bb:d9:2b:9b:58:c1:4d:8d:cd:af:1b:b6:
40:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F5:47:99:0E:42:FD:CC:CA:71:18:5E:91:34:A0:D5:7E:33:87:3A
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/YPVHmQ5C_czKcRhekTSg1X4zhzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.184.0/24
45.67.146.0/24
78.31.206.0/23
79.98.182.0/24
162.218.88.0/23
162.218.91.0-162.218.94.255
185.52.136.0/22
185.161.191.0/24
185.171.126.0/24
185.187.213.0-185.187.215.255
185.201.40.0/24
185.205.206.0/23
185.208.152.0-185.208.154.255
185.230.120.0/23
185.230.123.0/24
212.60.14.0/24
Signature Algorithm: sha256WithRSAEncryption
13:20:f7:d2:28:d0:86:5a:42:c5:d8:f7:06:f7:3a:ee:53:c8:
f0:4e:1b:86:90:e5:07:c9:10:15:21:43:3a:04:4e:d9:00:45:
4e:5e:f0:fd:ec:72:ec:7a:12:fa:36:67:2f:af:54:f7:10:e0:
31:5b:67:14:f4:4c:d4:74:5f:28:ef:83:6b:57:11:06:bb:c8:
81:34:e8:05:9d:b0:21:ae:b9:b6:2f:73:03:bf:23:36:a7:0d:
fa:96:72:60:19:f5:61:ec:ea:7c:4f:1b:14:81:d6:65:04:1a:
e0:71:5f:d3:1e:fd:d8:eb:ee:a2:8f:f0:7f:e1:16:9d:71:d4:
24:a6:c1:15:b2:de:dc:e7:78:29:5d:1a:36:01:47:57:16:fd:
4f:e1:07:67:14:d6:0c:9b:0e:8a:dc:6f:05:d4:0a:b3:e6:8c:
e3:98:36:ea:da:11:dc:5a:e0:f7:6f:27:6b:6b:6e:eb:3f:03:
c6:2c:95:11:78:fb:29:23:75:8d:89:1a:c7:12:ed:66:6d:dd:
f6:d0:4e:3f:2e:d8:7d:c9:22:31:d4:27:d5:d3:65:44:f5:fb:
26:a4:ab:d5:12:15:6c:07:9d:78:c7:55:cb:f1:33:8a:87:ac:
cb:09:95:82:87:82:4b:0a:e0:16:49:b0:57:99:1d:27:cd:6e:
31:7d:16:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:58 2023 by rpki-client on console-fra.rpki-client.org