Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/Bk6Lq79fDHlk2EiX1sfrR5N1ay0.roa
File: Bk6Lq79fDHlk2EiX1sfrR5N1ay0.roa (raw, json)
Hash identifier: CfLWK88NIcYA8Jk+GbNiwKX5WVZJ7i8gmIkMdkxpfO4=
Subject key identifier: 06:4E:8B:AB:BF:5F:0C:79:64:D8:48:97:D6:C7:EB:47:93:75:6B:2D
Certificate issuer: /CN=19ffff289f2dad0fc08456b0bad54d7ba449a492
Certificate serial: 018941D082317C0638E2D17E00B4DC163C1B
Authority key identifier: 19:FF:FF:28:9F:2D:AD:0F:C0:84:56:B0:BA:D5:4D:7B:A4:49:A4:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gf__KJ8trQ_AhFawutVNe6RJpJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/Bk6Lq79fDHlk2EiX1sfrR5N1ay0.roa
Signing time: Mon 10 Jul 2023 21:58:51 +0000
ROA not before: Mon 10 Jul 2023 21:58:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 176.67.160.0/20 maxlen: 24
185.7.224.0/22 maxlen: 24
176.67.169.0/24 maxlen: 24
109.123.64.0/18 maxlen: 24
83.170.64.0/18 maxlen: 24
82.163.72.0/21 maxlen: 24
88.202.224.0/21 maxlen: 24
77.92.64.0/19 maxlen: 24
31.24.224.0/21 maxlen: 24
91.109.240.0/21 maxlen: 24
37.123.112.0/21 maxlen: 24
46.23.64.0/20 maxlen: 24
46.23.74.0/24 maxlen: 24
88.202.176.0/20 maxlen: 24
2a02:2498:8000::/40 maxlen: 40
2a02:2498::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:41:d0:82:31:7c:06:38:e2:d1:7e:00:b4:dc:16:3c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19ffff289f2dad0fc08456b0bad54d7ba449a492
Validity
Not Before: Jul 10 21:58:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=064e8babbf5f0c7964d84897d6c7eb4793756b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:66:4f:8d:56:f5:8c:9b:1f:82:70:4b:85:2b:
3e:92:0d:98:40:da:36:76:15:42:f9:09:9d:10:8a:
55:19:d7:44:72:b5:32:e5:d1:75:26:b8:19:96:63:
b2:ba:ea:c4:49:31:b6:c7:8b:e5:21:b6:83:9c:50:
f9:50:09:3f:92:bb:e1:b7:df:9a:cd:7f:1c:37:11:
43:a6:f8:18:d8:ca:4f:ea:f6:fd:36:69:b7:59:a8:
7b:67:0d:e9:d5:89:45:4c:92:73:11:12:6a:09:f1:
3c:32:c6:b0:24:79:e9:38:32:4d:3b:30:01:c6:aa:
36:71:3d:d3:b4:e6:1a:ad:58:7f:b0:67:6f:15:65:
33:2b:1d:10:1f:fb:38:0f:6a:d5:f8:c8:bc:af:68:
b6:65:1d:34:f4:2c:5e:4f:bd:a5:56:f0:9e:7d:54:
da:8f:24:31:e1:21:49:5b:fb:b1:f3:31:90:4a:9e:
15:06:ea:20:98:5b:e6:5f:44:1f:66:ae:fd:ab:49:
d0:dc:6d:f0:c7:12:2e:de:b5:ee:02:c9:dc:10:7f:
c2:8b:23:00:18:df:de:d7:73:48:87:34:91:7e:98:
72:2f:d3:26:dc:4b:49:3c:ae:cb:0c:f8:31:71:8f:
c0:ef:7c:9d:90:a5:3c:d4:49:db:23:f2:7f:ff:f6:
22:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4E:8B:AB:BF:5F:0C:79:64:D8:48:97:D6:C7:EB:47:93:75:6B:2D
X509v3 Authority Key Identifier:
keyid:19:FF:FF:28:9F:2D:AD:0F:C0:84:56:B0:BA:D5:4D:7B:A4:49:A4:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gf__KJ8trQ_AhFawutVNe6RJpJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/Bk6Lq79fDHlk2EiX1sfrR5N1ay0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c11c87-efbb-45e8-9b03-d525718aa44a/1/Gf__KJ8trQ_AhFawutVNe6RJpJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.224.0/21
37.123.112.0/21
46.23.64.0/20
77.92.64.0/19
82.163.72.0/21
83.170.64.0/18
88.202.176.0/20
88.202.224.0/21
91.109.240.0/21
109.123.64.0/18
176.67.160.0/20
185.7.224.0/22
IPv6:
2a02:2498::/32
Signature Algorithm: sha256WithRSAEncryption
ac:61:01:23:53:3e:f8:51:e3:67:5f:c1:a4:40:e3:98:be:b0:
5c:ce:41:a7:f6:24:e3:64:47:01:17:f8:b0:64:91:6e:5a:00:
2d:b9:cc:ff:37:6b:5f:08:d8:8a:6c:8c:38:47:67:d1:f2:64:
f4:77:3d:72:da:e9:a9:87:ae:82:40:7f:41:42:e1:fc:94:9b:
46:a9:a7:20:db:52:2c:0d:41:cc:9d:48:dc:d6:7f:09:a3:fb:
6e:48:70:67:57:cf:9a:f0:cf:21:d2:64:4f:0d:98:be:e6:fe:
00:0a:5c:fb:30:d3:e8:28:fa:de:18:c9:14:98:a5:06:b5:ba:
da:84:9c:59:09:a8:6b:72:af:5d:9f:d3:00:ca:56:02:9a:aa:
b1:d1:48:38:52:9d:be:10:02:16:9c:1f:e9:ca:4f:c1:53:22:
49:8c:df:a1:0d:59:06:cd:50:aa:9d:b3:cd:3f:3f:ba:a3:33:
60:56:42:3e:51:03:5b:58:52:1b:62:37:00:bd:a2:bf:04:6d:
6b:70:de:9b:fe:1d:87:7f:8c:59:22:01:f0:00:0b:5c:85:c4:
85:35:d3:e4:f6:77:b8:9c:63:9c:c8:2f:74:a2:a9:d6:24:d2:
31:14:57:fb:62:7f:89:fa:45:ee:57:5c:75:86:17:e8:c0:1b:
df:4d:09:05
-----BEGIN CERTIFICATE-----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Generated at Tue Aug 15 23:00:13 2023 by rpki-client on console-ams.rpki-client.org