Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/IL2ILvJirbwzudwuBgXilQnT7ZA.roa
File: IL2ILvJirbwzudwuBgXilQnT7ZA.roa (raw, json)
Hash identifier: 5R5KICFpjUtYHM92CsND29DAiD/ITNExh8p4xBk4BQ4=
Subject key identifier: 20:BD:88:2E:F2:62:AD:BC:33:B9:DC:2E:06:05:E2:95:09:D3:ED:90
Certificate issuer: /CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Certificate serial: 01856FE70F8BEBF539D1747D894FB142A020
Authority key identifier: 56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/IL2ILvJirbwzudwuBgXilQnT7ZA.roa
Signing time: Mon 02 Jan 2023 00:34:51 +0000
ROA not before: Mon 02 Jan 2023 00:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44901
IP address blocks: 185.206.145.0/24 maxlen: 24
185.206.144.0/24 maxlen: 24
185.206.147.0/24 maxlen: 24
185.206.146.0/24 maxlen: 24
212.73.150.0/24 maxlen: 24
94.156.35.0/24 maxlen: 24
91.92.111.0/24 maxlen: 24
91.92.108.0/24 maxlen: 24
91.92.120.0/24 maxlen: 24
91.92.128.0/24 maxlen: 24
91.92.136.0/24 maxlen: 24
91.92.144.0/24 maxlen: 24
94.156.144.0/24 maxlen: 24
185.203.117.0/24 maxlen: 24
185.203.116.0/24 maxlen: 24
185.203.118.0/24 maxlen: 24
185.203.119.0/24 maxlen: 24
88.80.145.0/24 maxlen: 24
88.80.151.0/24 maxlen: 24
88.80.150.0/24 maxlen: 24
88.80.148.0/24 maxlen: 24
88.80.147.0/24 maxlen: 24
88.80.149.0/24 maxlen: 24
88.80.146.0/24 maxlen: 24
185.141.63.0/24 maxlen: 24
185.141.62.0/24 maxlen: 24
185.141.61.0/24 maxlen: 24
185.205.210.0/24 maxlen: 24
185.205.209.0/24 maxlen: 24
85.217.170.0/24 maxlen: 24
85.217.171.0/24 maxlen: 24
94.156.189.0/24 maxlen: 24
193.37.213.0/24 maxlen: 24
193.37.212.0/24 maxlen: 24
193.37.215.0/24 maxlen: 24
193.37.214.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:0f:8b:eb:f5:39:d1:74:7d:89:4f:b1:42:a0:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56c8a1713c7476e00ed2b77fd98fd89330365d87
Validity
Not Before: Jan 2 00:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20bd882ef262adbc33b9dc2e0605e29509d3ed90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:39:3e:c6:3c:f3:c3:63:55:e1:ce:63:91:db:
f6:ed:60:69:61:2b:88:24:6b:43:89:e3:af:e5:7a:
b6:fa:fa:cd:cb:83:99:d9:ca:b0:83:2e:a1:92:c9:
6a:42:36:46:18:e0:e6:4c:be:5d:28:2c:a0:94:24:
c6:53:52:4c:6a:9e:ec:b2:bf:cb:54:62:17:23:10:
26:92:39:03:79:eb:2a:47:9c:69:75:54:cd:58:5a:
d1:a4:e4:6c:6d:60:f0:13:ca:1e:82:32:d4:bd:30:
31:d8:cb:49:1d:d8:27:a2:ac:dd:62:a3:a5:f0:99:
ec:3e:1a:7d:00:45:d7:65:e5:60:ce:5b:59:06:a4:
d6:79:01:ef:95:50:27:c2:f8:66:35:ff:b9:42:23:
e2:28:15:18:a9:a9:82:5e:20:5b:c9:2c:85:fc:04:
74:d0:ab:a2:d3:57:65:63:a4:78:43:15:a4:43:97:
c0:c3:31:25:39:74:a8:9c:14:3e:92:32:d5:e7:c6:
d2:77:aa:03:37:d4:03:85:1b:c9:20:71:60:12:7b:
ea:48:57:fe:8a:b1:6a:32:42:94:8a:ec:ef:5d:80:
75:4e:7c:33:19:6f:48:2c:59:96:b1:d1:4d:da:70:
2a:52:b0:d1:91:49:b4:54:9f:5f:8e:7e:e1:10:29:
4f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BD:88:2E:F2:62:AD:BC:33:B9:DC:2E:06:05:E2:95:09:D3:ED:90
X509v3 Authority Key Identifier:
keyid:56:C8:A1:71:3C:74:76:E0:0E:D2:B7:7F:D9:8F:D8:93:30:36:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VsihcTx0duAO0rd_2Y_YkzA2XYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/IL2ILvJirbwzudwuBgXilQnT7ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/23d525-8296-4f9c-9de4-91e32c517152/1/VsihcTx0duAO0rd_2Y_YkzA2XYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.170.0/23
88.80.145.0-88.80.151.255
91.92.108.0/24
91.92.111.0/24
91.92.120.0/24
91.92.128.0/24
91.92.136.0/24
91.92.144.0/24
94.156.35.0/24
94.156.144.0/24
94.156.189.0/24
185.141.61.0-185.141.63.255
185.203.116.0/22
185.205.209.0-185.205.210.255
185.206.144.0/22
193.37.212.0/22
212.73.150.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:72:4d:3a:0e:96:28:35:cc:5d:3d:03:a8:8c:61:d2:84:16:
05:ad:78:72:24:5d:3e:5e:aa:c4:3d:c8:96:e8:b9:d2:ab:e7:
c6:09:a3:b9:dd:ec:a2:da:d7:eb:fc:a4:0e:67:95:af:46:59:
1e:e0:86:5a:c7:55:27:84:70:89:37:9e:70:ec:f0:da:0e:a1:
c0:47:54:a4:c2:06:02:d2:c2:90:0c:75:07:67:69:13:71:d5:
a8:db:8e:d0:aa:9e:c8:86:48:3c:30:9d:37:9d:b5:85:57:40:
fb:47:ad:bf:c8:c9:7f:16:27:cd:ac:92:14:fb:e3:38:88:ca:
a6:4c:aa:56:12:66:5c:f7:71:a2:a7:45:06:6b:8e:1c:c4:46:
3f:e8:c4:53:06:27:3b:3e:41:10:94:15:d6:8d:4b:57:72:9d:
b9:2b:56:55:9a:60:ef:7d:48:bd:72:17:d5:2a:cb:d1:84:25:
65:c9:4f:87:dd:21:9f:d8:08:6e:00:09:59:dd:85:51:73:b3:
67:b0:a7:5e:78:d1:3e:78:5a:65:87:20:a4:ba:64:4f:fa:79:
97:21:64:d1:fb:ac:5b:d3:7c:1c:ca:18:7e:72:88:ce:3e:76:
6d:67:5c:50:49:c8:e8:f6:4a:4e:77:e6:a4:1c:05:7a:b3:28:
67:0c:30:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:09 2023 by rpki-client on console-fra.rpki-client.org