Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/X94Qp0y6bEFAwrlvuenYWlBI9zQ.roa
File: X94Qp0y6bEFAwrlvuenYWlBI9zQ.roa (raw, json)
Hash identifier: 8qMsBtfeoUeYJlF2gruec5ysBTlWFnh8gEgDpFmowDQ=
Subject key identifier: 5F:DE:10:A7:4C:BA:6C:41:40:C2:B9:6F:B9:E9:D8:5A:50:48:F7:34
Certificate issuer: /CN=602be661e57c14659a608e9f6be605d6250047fc
Certificate serial: 018B7716F7D7529109395A1E26B60BB5076A
Authority key identifier: 60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/X94Qp0y6bEFAwrlvuenYWlBI9zQ.roa
Signing time: Sat 28 Oct 2023 16:21:15 +0000
ROA not before: Sat 28 Oct 2023 16:21:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6876
IP address blocks: 31.31.96.0/19 maxlen: 19
185.184.168.0/22 maxlen: 22
185.177.240.0/22 maxlen: 22
212.178.0.0/19 maxlen: 19
45.156.36.0/22 maxlen: 22
185.247.20.0/22 maxlen: 22
212.90.124.0/22 maxlen: 22
212.24.112.0/24 maxlen: 24
62.16.0.0/19 maxlen: 19
37.203.0.0/19 maxlen: 19
85.238.96.0/19 maxlen: 19
188.115.128.0/18 maxlen: 18
185.228.104.0/22 maxlen: 22
185.23.104.0/22 maxlen: 22
193.178.48.0/22 maxlen: 22
176.119.64.0/18 maxlen: 18
79.140.0.0/20 maxlen: 20
95.214.40.0/22 maxlen: 22
45.130.0.0/22 maxlen: 22
193.163.196.0/24 maxlen: 24
130.0.32.0/19 maxlen: 19
185.166.220.0/22 maxlen: 22
195.138.64.0/19 maxlen: 19
88.214.8.0/22 maxlen: 22
185.206.36.0/22 maxlen: 22
45.140.120.0/22 maxlen: 22
185.226.112.0/22 maxlen: 22
185.145.104.0/22 maxlen: 22
2a04:2c00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:77:16:f7:d7:52:91:09:39:5a:1e:26:b6:0b:b5:07:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602be661e57c14659a608e9f6be605d6250047fc
Validity
Not Before: Oct 28 16:21:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fde10a74cba6c4140c2b96fb9e9d85a5048f734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:09:1f:f7:64:19:49:e9:f9:2c:61:75:27:03:
dd:8d:41:02:81:9d:fb:22:25:63:ec:2a:35:27:99:
07:60:ae:60:63:bb:6e:1b:5b:98:87:1c:ef:a8:1d:
59:7e:b8:67:ac:b0:78:c4:af:35:da:a9:6f:6e:7d:
bf:52:d9:52:9a:98:f1:ed:9f:ec:5f:d2:e1:9d:59:
b2:10:9e:a7:9b:e9:07:7b:ac:0a:0b:9f:9c:3c:21:
4e:02:45:25:95:96:a0:e5:33:25:1c:65:b7:92:26:
e5:b9:6a:2f:0b:7d:ee:bb:91:7a:25:df:3e:04:e0:
76:48:5f:b6:a8:10:01:56:82:8d:cd:bf:91:10:28:
3b:f9:86:67:00:f5:31:ea:f0:47:13:09:85:69:e0:
b2:49:89:1f:2c:de:de:78:aa:b7:1d:24:03:40:6f:
e4:76:9c:9c:fd:d9:5f:db:18:a6:5d:18:c5:fe:b8:
31:49:f5:96:c4:a9:24:89:38:13:52:c0:1d:1c:8a:
28:50:50:18:0f:6e:3f:22:bf:90:b5:eb:43:b0:af:
0c:a5:b4:95:d4:eb:7f:54:69:95:f4:68:b0:ed:0e:
2f:65:c0:e2:40:9d:67:4a:7f:a1:af:ec:65:a5:2f:
09:f9:52:6f:db:66:e1:18:ec:ad:88:8a:fe:4e:2f:
72:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DE:10:A7:4C:BA:6C:41:40:C2:B9:6F:B9:E9:D8:5A:50:48:F7:34
X509v3 Authority Key Identifier:
keyid:60:2B:E6:61:E5:7C:14:65:9A:60:8E:9F:6B:E6:05:D6:25:00:47:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YCvmYeV8FGWaYI6fa-YF1iUAR_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/X94Qp0y6bEFAwrlvuenYWlBI9zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974213-49fd-4c5c-8014-bd3a630ee5cc/1/YCvmYeV8FGWaYI6fa-YF1iUAR_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.96.0/19
37.203.0.0/19
45.130.0.0/22
45.140.120.0/22
45.156.36.0/22
62.16.0.0/19
79.140.0.0/20
85.238.96.0/19
88.214.8.0/22
95.214.40.0/22
130.0.32.0/19
176.119.64.0/18
185.23.104.0/22
185.145.104.0/22
185.166.220.0/22
185.177.240.0/22
185.184.168.0/22
185.206.36.0/22
185.226.112.0/22
185.228.104.0/22
185.247.20.0/22
188.115.128.0/18
193.163.196.0/24
193.178.48.0/22
195.138.64.0/19
212.24.112.0/24
212.90.124.0/22
212.178.0.0/19
IPv6:
2a04:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
7b:1e:9c:8a:73:5d:a9:57:b2:cd:2e:11:58:df:32:0f:7a:d8:
85:0e:e5:0e:91:56:b2:09:c4:2f:94:8a:2b:67:72:5f:c4:84:
64:aa:3f:48:15:e4:77:cf:84:65:a0:a0:a8:0e:b1:bb:3e:d7:
cf:c4:66:ac:be:24:e4:49:f8:7a:17:b0:c4:a8:dc:b2:fa:8b:
90:f0:13:a3:9e:d8:3f:cf:88:c1:e7:ae:a3:09:4f:c9:52:61:
04:76:10:d2:45:43:db:6c:db:c6:ac:70:9a:b8:63:5f:26:d0:
83:0f:52:49:ff:25:7a:6b:04:46:2b:33:c6:ef:ed:66:04:9c:
7e:85:77:83:7e:61:bd:58:43:3a:8d:c7:60:8d:26:d3:18:24:
d3:04:7c:0d:75:a3:e9:be:28:b4:af:64:b2:a0:d0:8c:2f:d4:
27:9d:8a:69:8a:62:d8:0d:12:8b:0f:ae:1b:9d:bf:8b:97:ea:
75:d7:cf:78:74:62:50:f1:2e:dc:ea:9e:5a:86:c3:4a:cf:bd:
91:6c:10:14:86:eb:2d:12:dd:a3:3b:c0:5a:cf:0a:6d:f3:d2:
0d:4d:9c:47:e4:fa:be:8f:ff:a1:39:2d:39:11:1d:cf:fe:77:
b1:96:8a:2d:b4:09:5c:ab:ca:28:41:69:0f:3a:50:3f:c8:db:
6e:fc:03:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:49 2024 by rpki-client on console-ams.rpki-client.org