Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/f1inmPQe2T0d9LdkF5VZUUER_eI.roa
File: f1inmPQe2T0d9LdkF5VZUUER_eI.roa (raw, json)
Hash identifier: Zyce8FnHC1i1iVkskRnec9sgQb2C2IZ1SFi6M3QpM90=
Subject key identifier: 7F:58:A7:98:F4:1E:D9:3D:1D:F4:B7:64:17:95:59:51:41:11:FD:E2
Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Certificate serial: 01857130842407B11C9CB7D51A0FABBC3B24
Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/f1inmPQe2T0d9LdkF5VZUUER_eI.roa
Signing time: Mon 02 Jan 2023 06:34:42 +0000
ROA not before: Mon 02 Jan 2023 06:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34788
IP address blocks: 185.3.40.0/22 maxlen: 22
85.13.173.0/24 maxlen: 24
85.13.174.0/24 maxlen: 24
85.13.179.0/24 maxlen: 24
85.13.175.0/24 maxlen: 24
85.13.176.0/24 maxlen: 24
85.13.177.0/24 maxlen: 24
85.13.178.0/24 maxlen: 24
85.13.186.0/24 maxlen: 24
85.13.182.0/24 maxlen: 24
85.13.183.0/24 maxlen: 24
85.13.184.0/24 maxlen: 24
85.13.185.0/24 maxlen: 24
85.13.180.0/24 maxlen: 24
85.13.181.0/24 maxlen: 24
85.13.189.0/24 maxlen: 24
85.13.190.0/24 maxlen: 24
85.13.191.0/24 maxlen: 24
85.13.187.0/24 maxlen: 24
85.13.188.0/24 maxlen: 24
85.13.130.0/24 maxlen: 24
85.13.131.0/24 maxlen: 24
85.13.132.0/24 maxlen: 24
85.13.128.0/24 maxlen: 24
85.13.129.0/24 maxlen: 24
85.13.137.0/24 maxlen: 24
85.13.138.0/24 maxlen: 24
85.13.139.0/24 maxlen: 24
85.13.134.0/24 maxlen: 24
85.13.135.0/24 maxlen: 24
85.13.136.0/24 maxlen: 24
85.13.133.0/24 maxlen: 24
85.13.144.0/24 maxlen: 24
85.13.145.0/24 maxlen: 24
85.13.141.0/24 maxlen: 24
85.13.142.0/24 maxlen: 24
85.13.143.0/24 maxlen: 24
85.13.140.0/24 maxlen: 24
85.13.146.0/24 maxlen: 24
85.13.151.0/24 maxlen: 24
85.13.152.0/24 maxlen: 24
85.13.147.0/24 maxlen: 24
85.13.148.0/24 maxlen: 24
85.13.149.0/24 maxlen: 24
85.13.150.0/24 maxlen: 24
85.13.158.0/24 maxlen: 24
85.13.159.0/24 maxlen: 24
85.13.154.0/24 maxlen: 24
85.13.155.0/24 maxlen: 24
85.13.156.0/24 maxlen: 24
85.13.157.0/24 maxlen: 24
85.13.153.0/24 maxlen: 24
85.13.165.0/24 maxlen: 24
85.13.166.0/24 maxlen: 24
85.13.161.0/24 maxlen: 24
85.13.162.0/24 maxlen: 24
85.13.163.0/24 maxlen: 24
85.13.164.0/24 maxlen: 24
85.13.160.0/24 maxlen: 24
85.13.172.0/24 maxlen: 24
85.13.168.0/24 maxlen: 24
85.13.169.0/24 maxlen: 24
85.13.170.0/24 maxlen: 24
85.13.171.0/24 maxlen: 24
85.13.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:84:24:07:b1:1c:9c:b7:d5:1a:0f:ab:bc:3b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Validity
Not Before: Jan 2 06:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f58a798f41ed93d1df4b764179559514111fde2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ba:e0:63:02:74:bb:d6:08:7e:ce:71:db:37:
54:2a:76:e1:f4:05:60:e1:52:a2:c9:c1:69:74:3a:
7f:f7:be:f3:70:19:67:5b:b1:99:51:04:26:22:82:
31:cd:cb:b8:fc:b8:93:2c:c8:85:0d:0d:e9:1f:6b:
09:81:61:fa:39:51:8f:e3:6a:75:2d:13:67:ca:b8:
d4:34:21:29:6a:66:49:be:ce:5b:37:6e:bf:69:d1:
1c:4a:70:d1:62:06:3b:3d:d4:a6:d1:06:a1:e0:d4:
fa:67:9c:1c:48:42:a6:4d:c9:f2:97:e3:ca:d9:0b:
ce:64:59:a9:1f:de:c5:f4:70:0b:b1:3b:13:50:8c:
f3:01:3a:9f:42:20:06:6a:45:eb:54:ab:b7:c5:fd:
ef:eb:9c:21:ce:bc:2c:04:cf:05:bf:9a:42:f7:1c:
90:5f:4e:a8:f7:90:eb:57:41:a7:8b:43:46:63:4f:
ff:fe:48:00:6a:2c:8d:92:4d:07:75:3e:b7:3e:2d:
86:01:fc:32:0e:19:66:ec:cf:a4:af:1f:95:72:f9:
3b:e8:82:bc:36:d0:b8:24:0a:b5:ee:1c:4c:bd:94:
17:b8:af:90:99:90:e2:4e:6b:09:1e:d5:3b:f4:5f:
72:17:43:a8:4b:cd:4c:ef:29:f1:a3:43:ae:0b:f7:
5d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:58:A7:98:F4:1E:D9:3D:1D:F4:B7:64:17:95:59:51:41:11:FD:E2
X509v3 Authority Key Identifier:
keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/f1inmPQe2T0d9LdkF5VZUUER_eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.13.128.0/18
185.3.40.0/22
Signature Algorithm: sha256WithRSAEncryption
34:a4:f0:2d:91:df:55:df:dd:1e:ca:6f:72:de:91:12:14:bd:
ae:14:1b:10:82:87:f4:64:14:6f:b3:d1:cc:50:5b:09:f6:2a:
4a:55:36:57:df:2e:27:cf:84:1a:a5:1c:1f:a7:68:6e:75:dc:
24:b6:f6:e2:e8:94:8d:1d:44:ae:28:54:5c:0e:c7:f3:12:96:
c3:83:c5:8e:d9:0f:d5:6d:9a:25:34:c6:f7:df:f1:87:38:37:
32:26:de:01:8c:a2:7b:3c:40:a3:79:cb:a1:c4:d8:bd:15:fc:
71:4a:7d:54:c7:85:94:0e:e8:7e:d7:2c:59:14:81:fe:16:75:
bd:70:85:16:60:28:e7:71:1f:ea:b9:ff:65:22:78:a3:62:0c:
85:e9:56:47:c1:58:2b:38:90:70:26:91:d6:25:b1:2a:3c:7d:
8d:64:b1:6d:b3:8c:f0:ea:ad:2e:cb:a1:3f:73:09:27:1b:6a:
b0:d9:16:9f:c0:a5:26:1d:fd:69:65:22:0c:de:df:70:b6:b1:
a0:59:23:d7:58:ca:7c:5f:39:0f:8b:ec:e8:ab:82:bf:32:c7:
1c:a7:f1:ed:bc:20:b3:dc:ef:7b:52:5b:32:48:bc:50:d3:38:
e5:20:39:e9:5f:7f:4b:11:d7:1b:a2:b5:0a:83:9c:83:2a:43:
8e:4c:51:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:53:18 2024 by rpki-client on console-fra.rpki-client.org