Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/yzneoVO10iY55cc16jBUIdb009k.roa
File: yzneoVO10iY55cc16jBUIdb009k.roa (raw, json)
Hash identifier: lRjHxjzbZobh7RxZmRKeTdA8z+Q72cAUOQopSxaok6Y=
Subject key identifier: CB:39:DE:A1:53:B5:D2:26:39:E5:C7:35:EA:30:54:21:D6:F4:D3:D9
Certificate issuer: /CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Certificate serial: 018BB30A9545F789F7B22E79E3FD07F90C9B
Authority key identifier: DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/yzneoVO10iY55cc16jBUIdb009k.roa
Signing time: Thu 09 Nov 2023 07:44:57 +0000
ROA not before: Thu 09 Nov 2023 07:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8437
IP address blocks: 62.218.100.0/24 maxlen: 24
178.114.0.0/16 maxlen: 16
62.218.52.0/24 maxlen: 24
178.114.92.0/22 maxlen: 22
178.114.96.0/20 maxlen: 20
178.114.112.0/20 maxlen: 20
178.114.128.0/21 maxlen: 21
213.235.196.0/24 maxlen: 24
213.235.192.0/18 maxlen: 18
62.218.164.0/24 maxlen: 24
62.218.165.0/24 maxlen: 24
62.218.169.0/24 maxlen: 24
62.218.168.0/24 maxlen: 24
62.218.174.0/24 maxlen: 24
62.218.175.0/24 maxlen: 24
46.57.0.0/17 maxlen: 17
195.96.0.0/19 maxlen: 19
86.59.0.0/17 maxlen: 17
62.116.64.0/18 maxlen: 18
213.129.224.0/19 maxlen: 19
213.90.0.0/17 maxlen: 17
62.218.4.0/24 maxlen: 24
62.218.0.0/16 maxlen: 16
195.248.32.0/19 maxlen: 19
77.118.240.0/20 maxlen: 20
81.189.213.0/24 maxlen: 24
81.189.212.0/22 maxlen: 22
81.189.212.0/24 maxlen: 24
81.189.215.0/24 maxlen: 24
81.189.214.0/24 maxlen: 24
91.186.128.0/19 maxlen: 19
77.119.32.0/19 maxlen: 19
178.115.96.0/24 maxlen: 24
178.115.98.0/24 maxlen: 24
178.115.96.0/19 maxlen: 19
77.118.192.0/20 maxlen: 20
188.118.192.0/18 maxlen: 18
77.118.208.0/20 maxlen: 20
212.152.128.0/17 maxlen: 17
77.118.224.0/21 maxlen: 21
77.118.232.0/21 maxlen: 21
78.142.128.0/18 maxlen: 18
62.116.0.0/19 maxlen: 19
77.119.96.0/22 maxlen: 22
77.119.112.0/22 maxlen: 22
77.119.64.0/18 maxlen: 18
77.119.80.0/21 maxlen: 21
77.119.88.0/21 maxlen: 21
46.57.124.0/22 maxlen: 22
46.57.120.0/22 maxlen: 22
178.114.192.0/21 maxlen: 21
77.118.32.0/21 maxlen: 21
77.118.48.0/21 maxlen: 21
178.114.208.0/21 maxlen: 21
178.114.216.0/21 maxlen: 21
77.118.56.0/21 maxlen: 21
212.27.64.0/18 maxlen: 18
178.114.224.0/20 maxlen: 20
81.189.0.0/16 maxlen: 16
46.57.72.0/22 maxlen: 22
178.114.144.0/21 maxlen: 21
46.57.80.0/21 maxlen: 21
178.114.152.0/21 maxlen: 21
46.57.88.0/21 maxlen: 21
178.114.160.0/20 maxlen: 20
46.57.96.0/21 maxlen: 21
213.235.234.0/24 maxlen: 24
195.70.224.0/19 maxlen: 19
77.118.0.0/16 maxlen: 16
46.57.104.0/22 maxlen: 22
178.114.176.0/20 maxlen: 20
77.118.14.0/24 maxlen: 24
77.118.17.0/24 maxlen: 24
46.57.112.0/21 maxlen: 21
77.118.136.0/21 maxlen: 21
77.118.160.0/20 maxlen: 20
77.118.176.0/20 maxlen: 20
178.114.240.0/20 maxlen: 20
77.118.104.0/22 maxlen: 22
77.118.108.0/22 maxlen: 22
77.118.112.0/20 maxlen: 20
77.118.128.0/21 maxlen: 21
2001:858:40::/45 maxlen: 45
2001:858::/32 maxlen: 32
2001:938::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b3:0a:95:45:f7:89:f7:b2:2e:79:e3:fd:07:f9:0c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9d197fbbee2a1dccb4f55722a8210d3105b042
Validity
Not Before: Nov 9 07:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb39dea153b5d22639e5c735ea305421d6f4d3d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:70:5b:8c:47:0a:b0:9c:e2:e9:7f:73:ea:b5:
c1:0b:d6:7c:e1:fa:89:d4:0a:0c:8e:20:91:9c:79:
24:7a:07:ad:85:6a:29:ca:34:74:be:0e:cb:91:63:
33:33:53:6b:97:3f:03:b2:7e:72:6f:a3:fb:cf:f6:
21:62:d7:65:8f:ff:38:46:32:20:36:d0:58:af:1c:
ad:18:37:07:e9:af:ce:c7:7e:cc:62:57:c7:d8:92:
ff:04:37:37:ff:57:9d:da:b5:d5:80:11:af:a0:21:
43:36:f4:4b:2b:e8:9b:95:4f:0e:9a:48:f3:4f:2b:
41:f2:8a:c1:51:d8:0a:6c:bb:c7:ff:79:9e:36:4e:
58:54:86:28:2f:33:ae:11:57:44:e5:9c:08:fd:6d:
9f:d0:a9:36:0c:e4:7d:67:e0:79:6f:2c:ea:f0:9d:
3d:88:4e:73:ba:04:39:45:5c:ef:86:08:c9:a0:00:
f4:34:fe:6e:c3:7b:76:95:1c:33:a9:b0:88:45:db:
8f:cc:ad:0b:ae:6a:dc:85:bc:14:6b:98:32:62:aa:
e9:dc:ce:7d:20:85:42:c4:fb:de:a2:b7:2d:e2:47:
3d:48:6b:46:bd:33:eb:45:11:be:fe:e6:33:24:34:
12:c8:e9:17:5c:9b:76:5e:4e:31:46:e1:92:b2:7e:
d7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:39:DE:A1:53:B5:D2:26:39:E5:C7:35:EA:30:54:21:D6:F4:D3:D9
X509v3 Authority Key Identifier:
keyid:DB:9D:19:7F:BB:EE:2A:1D:CC:B4:F5:57:22:A8:21:0D:31:05:B0:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/250Zf7vuKh3MtPVXIqghDTEFsEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/yzneoVO10iY55cc16jBUIdb009k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/09d137-477b-4efe-a3d3-4b23956fbd86/1/250Zf7vuKh3MtPVXIqghDTEFsEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.57.0.0/17
62.116.0.0/19
62.116.64.0/18
62.218.0.0/16
77.118.0.0/16
77.119.32.0-77.119.127.255
78.142.128.0/18
81.189.0.0/16
86.59.0.0/17
91.186.128.0/19
178.114.0.0/16
178.115.96.0/19
188.118.192.0/18
195.70.224.0/19
195.96.0.0/19
195.248.32.0/19
212.27.64.0/18
212.152.128.0/17
213.90.0.0/17
213.129.224.0/19
213.235.192.0/18
IPv6:
2001:858::/32
2001:938::/32
Signature Algorithm: sha256WithRSAEncryption
26:93:2d:d8:2c:91:4c:f8:e9:3a:b8:09:77:d4:f0:cc:54:66:
03:20:54:1a:63:b6:e2:49:ca:fd:77:3f:55:9b:5b:d2:40:09:
25:b8:d6:b1:0b:4e:d1:b3:09:ed:ec:2c:aa:af:00:7f:61:db:
5a:92:17:5c:77:86:37:a2:59:4f:83:6f:1b:ef:14:70:25:d5:
4a:7a:01:f9:2a:89:c5:86:11:df:7c:92:02:dd:6c:cb:b9:56:
ad:16:1a:f7:37:57:e9:30:40:4c:17:51:38:c4:66:e2:03:e2:
35:f6:50:a1:ff:97:05:14:ff:fd:da:b5:f8:71:48:13:12:ee:
d6:18:d6:1c:d2:1a:e6:51:af:89:0d:8e:30:ac:83:55:0a:a5:
5f:cf:92:b0:7a:a2:54:96:8f:3c:d2:48:c5:04:96:05:bc:0d:
94:e8:fa:e2:97:87:b6:16:e4:3b:d2:f3:43:6c:bc:16:bd:4f:
70:17:d9:83:40:08:38:33:08:5e:de:1c:eb:7a:80:c7:5b:0c:
64:31:aa:a4:0c:08:ea:ad:fc:81:56:aa:89:cd:1a:16:4c:59:
39:b5:3a:69:a8:8f:e9:cf:9c:76:07:c6:46:f7:ad:34:85:b5:
36:4e:0b:c4:5f:80:2e:c6:eb:0a:9c:1f:3e:7e:2a:45:f4:a4:
89:6e:c6:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:06 2024 by rpki-client on console-ams.rpki-client.org