Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/E2wLTey26SXVOosYwfE_kzlL7ok.roa
File: E2wLTey26SXVOosYwfE_kzlL7ok.roa (raw, json)
Hash identifier: WFmZlMDH+yrNte7Dan+ch88cIoxNVup1yOhaodwKBKg=
Subject key identifier: 13:6C:0B:4D:EC:B6:E9:25:D5:3A:8B:18:C1:F1:3F:93:39:4B:EE:89
Certificate issuer: /CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Certificate serial: 0185715E69B95F456DEA23AA173C1089642B
Authority key identifier: 12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/E2wLTey26SXVOosYwfE_kzlL7ok.roa
Signing time: Mon 02 Jan 2023 07:24:50 +0000
ROA not before: Mon 02 Jan 2023 07:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39246
IP address blocks: 77.78.134.0/24 maxlen: 24
77.78.133.0/24 maxlen: 24
77.78.139.0/24 maxlen: 24
77.78.138.0/24 maxlen: 24
77.78.137.0/24 maxlen: 24
77.78.136.0/24 maxlen: 24
77.78.135.0/24 maxlen: 24
77.78.143.0/24 maxlen: 24
77.78.142.0/24 maxlen: 24
77.78.141.0/24 maxlen: 24
77.78.140.0/24 maxlen: 24
77.78.132.0/24 maxlen: 24
77.78.131.0/24 maxlen: 24
77.78.129.0/24 maxlen: 24
77.78.128.0/24 maxlen: 24
109.121.132.0/24 maxlen: 24
109.121.131.0/24 maxlen: 24
109.121.130.0/24 maxlen: 24
109.121.129.0/24 maxlen: 24
109.121.151.0/24 maxlen: 24
109.121.150.0/24 maxlen: 24
109.121.149.0/24 maxlen: 24
109.121.148.0/24 maxlen: 24
109.121.155.0/24 maxlen: 24
109.121.154.0/24 maxlen: 24
109.121.158.0/24 maxlen: 24
109.121.157.0/24 maxlen: 24
109.121.156.0/24 maxlen: 24
109.121.164.0/24 maxlen: 24
31.193.189.0/24 maxlen: 24
62.192.132.0/24 maxlen: 24
62.192.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:69:b9:5f:45:6d:ea:23:aa:17:3c:10:89:64:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Validity
Not Before: Jan 2 07:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=136c0b4decb6e925d53a8b18c1f13f93394bee89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:19:fe:24:a0:c4:24:a7:7a:f8:85:2d:e3:ce:
b4:47:2a:53:5b:36:19:77:f4:4d:ed:1d:8d:63:0a:
d1:b9:6d:53:12:12:29:a0:b7:fc:88:51:6e:d1:09:
20:6a:ea:51:26:9c:23:00:bd:9e:73:f0:f9:a7:62:
02:d6:9f:1c:45:ab:84:f4:bb:bc:d5:d5:89:4b:9c:
04:37:2b:3b:9e:8e:0f:07:ed:d1:bc:7c:53:29:a9:
5c:5b:a5:35:89:9a:4c:f5:05:44:9a:e5:bf:9a:3a:
a8:2f:87:44:58:38:92:0f:1c:eb:a9:96:68:45:44:
6f:d2:a0:62:06:31:c3:8e:d1:40:49:6a:dd:06:da:
1c:51:ba:dc:ce:ab:66:b5:96:74:71:9a:ea:0a:05:
75:ed:b7:03:a2:14:ce:38:5f:35:49:00:35:2e:36:
f0:66:99:3d:05:ad:cd:ec:b7:93:5e:9f:46:aa:fd:
ed:3b:bc:42:a8:2c:c1:f5:f9:db:c6:df:4b:f7:53:
32:7d:96:12:79:27:33:57:8f:36:86:9e:c8:4c:20:
38:c1:c3:63:0e:15:3e:58:af:fb:bd:f1:5b:b7:9f:
c7:c7:01:e6:13:f4:d1:e9:14:2e:97:d2:72:c3:3e:
b9:dd:e8:ce:d4:eb:38:56:57:af:4e:fc:6f:72:17:
96:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6C:0B:4D:EC:B6:E9:25:D5:3A:8B:18:C1:F1:3F:93:39:4B:EE:89
X509v3 Authority Key Identifier:
keyid:12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/E2wLTey26SXVOosYwfE_kzlL7ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.189.0/24
62.192.132.0/23
77.78.128.0/23
77.78.131.0-77.78.143.255
109.121.129.0-109.121.132.255
109.121.148.0/22
109.121.154.0-109.121.158.255
109.121.164.0/24
Signature Algorithm: sha256WithRSAEncryption
88:62:ce:a5:e5:99:f8:04:eb:76:cd:d7:4f:c3:a5:02:70:39:
37:b5:5b:bb:df:e9:ea:23:5c:27:90:ed:39:7a:d0:82:4c:38:
80:8d:22:b5:76:0e:5c:47:f9:f3:b5:c6:67:39:f1:0a:4e:68:
7d:7b:0a:55:26:b3:ad:9c:67:df:ea:29:d0:ee:32:78:c4:84:
fb:43:4d:7a:cc:c7:3c:1d:84:bc:87:16:bb:d5:16:f8:90:e4:
0d:a8:36:14:6d:f8:72:54:4d:10:32:28:df:50:66:37:53:01:
b8:07:0d:18:8b:72:57:76:56:b3:65:8b:a1:01:ad:17:58:13:
c1:ad:9c:e4:f7:eb:ae:81:22:86:72:44:df:a0:bf:0d:02:3e:
d5:67:4d:62:5b:e6:7f:d1:2f:f1:5e:e2:b2:8c:4c:4f:6c:cc:
e9:7d:50:73:65:72:26:49:c1:62:0c:94:7c:66:44:c1:c4:e6:
03:4e:1c:43:be:47:cb:61:4d:5c:01:a7:3a:41:ef:a4:20:0c:
4c:b1:91:06:a6:ab:9f:7d:54:84:be:a9:77:b5:d1:fd:24:34:
6d:3f:2b:b9:8e:6e:01:3c:a1:83:c7:56:c6:26:be:af:7e:55:
83:16:df:25:ce:e1:85:1b:04:9f:a1:98:b6:ee:fd:06:46:04:
7f:98:d9:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-fra.rpki-client.org