Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/AyM9I-OrLldgr-R6HpCt1r5THe8.roa
File: AyM9I-OrLldgr-R6HpCt1r5THe8.roa (raw, json)
Hash identifier: S+NGeYc1XcPr6hOoq0V00X/QEt47nDcTbM/S6CYd21s=
Subject key identifier: 03:23:3D:23:E3:AB:2E:57:60:AF:E4:7A:1E:90:AD:D6:BE:53:1D:EF
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0189F8D1855C3A25345733DC0C326FE4D3CD
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/AyM9I-OrLldgr-R6HpCt1r5THe8.roa
Signing time: Tue 15 Aug 2023 10:50:27 +0000
ROA not before: Tue 15 Aug 2023 10:50:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204548
IP address blocks: 81.28.6.0/24 maxlen: 24
83.229.84.0/24 maxlen: 24
83.229.85.0/24 maxlen: 24
83.229.86.0/24 maxlen: 24
83.229.87.0/24 maxlen: 24
103.13.211.0/24 maxlen: 24
194.36.88.0/24 maxlen: 24
63.250.59.0/24 maxlen: 24
63.250.60.0/24 maxlen: 24
195.238.122.0/24 maxlen: 24
45.83.41.0/24 maxlen: 24
185.237.97.0/24 maxlen: 24
185.237.96.0/24 maxlen: 24
185.53.210.0/24 maxlen: 24
185.237.14.0/24 maxlen: 24
185.237.15.0/24 maxlen: 24
91.202.170.0/24 maxlen: 24
2a06:c5c0:1100::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:d1:85:5c:3a:25:34:57:33:dc:0c:32:6f:e4:d3:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Aug 15 10:50:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03233d23e3ab2e5760afe47a1e90add6be531def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:47:2e:f4:6a:fa:7b:b9:77:6a:a7:75:79:b2:
28:80:3b:be:d7:84:bb:d5:d4:64:c3:3b:1f:6a:d6:
ea:79:12:04:59:08:04:0e:de:e6:a5:5e:75:ac:c7:
c8:52:36:f4:4c:6d:92:69:83:e5:cf:7f:5f:29:40:
2b:bc:43:22:68:11:7b:f1:cc:49:e8:8c:39:68:16:
27:e9:1d:ee:61:d9:73:54:44:1c:55:11:51:05:6e:
5d:ee:d3:69:c2:db:25:22:da:4d:a2:73:5c:c1:30:
18:6c:d3:2e:e8:3e:69:51:41:ce:8d:55:51:2d:79:
73:48:0f:a9:c2:8a:c5:eb:92:04:31:3a:bd:b3:bd:
a3:b3:e6:12:e1:fb:e9:d0:da:fc:0b:7d:7e:ed:64:
bb:e2:9c:df:90:34:aa:18:02:24:d9:e5:30:ea:28:
4e:10:4d:03:64:4d:de:11:fc:95:15:66:4a:2b:94:
c1:09:90:63:63:68:d7:8a:fa:43:f9:62:8c:68:cc:
d8:23:b5:ac:50:bf:2d:b8:ed:dc:a9:d0:d7:be:c7:
31:ac:e9:d6:07:f2:2b:fd:f5:ba:6a:04:66:58:10:
64:e2:f1:62:b8:9c:77:6b:9f:82:2e:0c:a7:3e:44:
46:ac:a0:a3:c7:74:1d:db:9b:34:92:29:65:7f:f8:
8e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:23:3D:23:E3:AB:2E:57:60:AF:E4:7A:1E:90:AD:D6:BE:53:1D:EF
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/AyM9I-OrLldgr-R6HpCt1r5THe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.41.0/24
63.250.59.0-63.250.60.255
81.28.6.0/24
83.229.84.0/22
91.202.170.0/24
103.13.211.0/24
185.53.210.0/24
185.237.14.0/23
185.237.96.0/23
194.36.88.0/24
195.238.122.0/24
IPv6:
2a06:c5c0:1100::/48
Signature Algorithm: sha256WithRSAEncryption
d0:6b:48:5b:62:6b:b8:25:46:bb:c1:da:60:7e:aa:34:03:98:
71:e2:bd:0d:b6:d1:88:17:9b:05:e2:03:a6:40:0c:31:45:b0:
62:ea:be:32:1d:85:72:5a:0b:cf:2a:d8:5b:dd:58:f5:ed:b6:
93:fa:40:37:25:51:89:2c:d2:6c:7e:79:b5:f2:45:92:5f:a8:
02:6f:b9:ee:5d:1e:1d:b5:c6:cc:ae:ee:ae:15:ed:da:55:6f:
84:32:08:f2:30:f9:7e:a6:1d:52:f6:5e:e1:1a:1d:e7:f9:30:
21:e8:6b:d5:b0:ce:57:11:15:7f:17:62:8d:bf:45:05:9c:3c:
5e:99:38:7c:1e:20:89:d1:ef:f8:86:74:32:a7:af:86:35:2e:
44:fb:12:79:48:e7:f4:a7:6c:57:f1:bf:37:3b:97:43:64:ac:
7d:88:56:21:2a:43:29:6b:63:92:f7:a0:99:ca:e0:92:98:b0:
5b:84:53:9d:68:9c:81:7e:ea:29:a5:cc:82:3b:34:41:ef:d6:
fb:f5:34:55:f8:5f:e6:93:fe:44:a8:0f:f7:4f:43:73:c3:ed:
44:ee:66:41:03:00:5b:c1:d6:53:9f:7b:b9:82:1b:4f:0e:a4:
aa:7c:06:8a:92:8f:1e:48:14:60:5d:f0:ee:7d:18:97:3e:8d:
b6:f3:70:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 3 08:15:51 2023 by rpki-client on console-fra.rpki-client.org