Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/fpS-Vh9IT7bJfNiON-WfmHwiDbk.roa
File: fpS-Vh9IT7bJfNiON-WfmHwiDbk.roa (raw, json)
Hash identifier: 80tnxpUhgO+avPO2WdXtaoEwbDK/dZhQbiJeE49viEM=
Subject key identifier: 7E:94:BE:56:1F:48:4F:B6:C9:7C:D8:8E:37:E5:9F:98:7C:22:0D:B9
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0189F8D09E2BEED55B584CB74508DD0BA9DB
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/fpS-Vh9IT7bJfNiON-WfmHwiDbk.roa
Signing time: Tue 15 Aug 2023 10:49:28 +0000
ROA not before: Tue 15 Aug 2023 10:49:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210329
IP address blocks: 81.28.4.0/24 maxlen: 24
81.28.5.0/24 maxlen: 24
194.146.24.0/24 maxlen: 24
63.250.58.0/24 maxlen: 24
195.238.123.0/24 maxlen: 24
185.237.98.0/24 maxlen: 24
185.53.211.0/24 maxlen: 24
91.223.236.0/24 maxlen: 24
185.237.99.0/24 maxlen: 24
185.237.12.0/24 maxlen: 24
185.237.13.0/24 maxlen: 24
194.146.25.0/24 maxlen: 24
83.229.68.0/24 maxlen: 24
83.229.69.0/24 maxlen: 24
83.229.75.0/24 maxlen: 24
103.13.209.0/24 maxlen: 24
103.13.208.0/24 maxlen: 24
103.241.64.0/24 maxlen: 24
45.91.170.0/24 maxlen: 24
185.127.17.0/24 maxlen: 24
185.127.16.0/24 maxlen: 24
185.127.18.0/24 maxlen: 24
185.127.19.0/24 maxlen: 24
103.241.65.0/24 maxlen: 24
212.86.104.0/24 maxlen: 24
212.86.105.0/24 maxlen: 24
2a06:c5c0:600::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:d0:9e:2b:ee:d5:5b:58:4c:b7:45:08:dd:0b:a9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Aug 15 10:49:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e94be561f484fb6c97cd88e37e59f987c220db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:af:f6:1a:78:aa:09:7c:9d:4f:1c:57:29:41:
09:75:14:8c:da:61:27:fb:c3:1d:45:f3:47:32:79:
4f:5e:2e:cb:84:e8:1f:25:3f:33:1f:33:44:51:bc:
db:32:9f:ec:65:fa:22:60:89:c4:09:7b:75:91:9b:
01:c2:f3:1f:8c:9a:3f:0b:bf:3f:e3:8c:5d:5b:f3:
0c:82:aa:a6:b2:ec:19:ae:62:f0:cb:43:a9:32:c2:
7d:f9:da:00:5a:ea:31:4f:b6:19:76:bc:76:a9:9e:
5b:98:23:eb:81:08:84:54:8e:d0:96:4f:f7:4f:be:
c4:68:50:47:6d:fb:67:fc:ff:cd:76:63:be:56:fc:
b6:53:b2:6d:f6:70:a4:d7:5e:ab:38:1b:07:76:ad:
dc:b0:9b:0d:f0:4c:53:b8:d6:52:ec:3f:39:13:d3:
b5:3a:12:cf:27:9c:69:c7:da:6e:b6:5f:4b:89:3b:
26:c5:32:fc:79:25:c5:f9:a5:93:98:7b:1c:cd:95:
0c:70:28:b5:48:22:60:f2:f8:9b:8f:61:e5:2e:50:
2e:4e:01:26:6d:c7:6f:77:d1:13:d0:85:5d:8c:c1:
f1:4e:c3:2e:3f:48:f8:72:b1:ec:8c:3c:bd:c0:9a:
5d:48:65:10:f6:eb:06:af:ae:8d:0b:e1:43:4d:c2:
09:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:94:BE:56:1F:48:4F:B6:C9:7C:D8:8E:37:E5:9F:98:7C:22:0D:B9
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/fpS-Vh9IT7bJfNiON-WfmHwiDbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.170.0/24
63.250.58.0/24
81.28.4.0/23
83.229.68.0/23
83.229.75.0/24
91.223.236.0/24
103.13.208.0/23
103.241.64.0/23
185.53.211.0/24
185.127.16.0/22
185.237.12.0/23
185.237.98.0/23
194.146.24.0/23
195.238.123.0/24
212.86.104.0/23
IPv6:
2a06:c5c0:600::/48
Signature Algorithm: sha256WithRSAEncryption
1d:6e:61:65:d2:6c:c1:75:2a:d2:9d:27:4f:c8:45:52:b9:0d:
bc:58:05:aa:5f:75:4d:34:82:46:ec:94:ab:83:82:65:68:01:
0b:16:88:2f:d6:0f:4e:a0:fb:17:f2:06:57:7a:b2:bd:71:d3:
4d:a5:e5:cd:19:16:48:5b:35:1e:6d:7b:b8:01:73:85:63:97:
f6:ba:83:cc:c9:e6:54:0d:fd:7e:94:1a:a0:9a:d7:5d:99:11:
1e:3c:35:f7:91:ab:cc:67:36:ef:d1:1b:60:91:6b:b5:dd:d9:
8c:e6:4c:23:48:9b:d0:a3:98:c8:06:74:c9:ac:69:00:f3:19:
fa:a8:9f:91:8a:6f:86:ac:58:d9:5a:b6:f4:00:d6:01:04:84:
5b:bb:0c:10:be:4f:bf:e9:51:82:2c:85:17:16:48:8b:ce:69:
57:0f:43:e2:6e:1e:e3:eb:e1:a4:2d:f5:78:d7:a4:17:d1:12:
b2:21:79:76:27:09:32:5e:9d:4c:46:56:c0:70:bb:aa:cf:f5:
47:d9:a7:ad:53:b6:6a:11:4f:ff:4a:f5:5b:db:65:0f:0d:cd:
08:56:c7:a5:6e:9c:cc:c2:4b:78:8c:12:4b:6b:e8:a9:37:8b:
c0:6e:2b:7b:d6:7f:d4:bb:75:af:de:c9:81:9b:e4:91:dc:2a:
40:58:36:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 14 11:58:06 2023 by rpki-client on console-fra.rpki-client.org