Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/wJKmD_bQ21bZY9VAnw5jHSOHwDM.roa
File: wJKmD_bQ21bZY9VAnw5jHSOHwDM.roa (raw, json)
Hash identifier: Qmfd5IWxWRITnJzt/iReURkI2wQxy38EmFVmuWrE08M=
Subject key identifier: C0:92:A6:0F:F6:D0:DB:56:D9:63:D5:40:9F:0E:63:1D:23:87:C0:33
Certificate issuer: /CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Certificate serial: 0186FEB6A5480E658B65657186D5A63B16D2
Authority key identifier: 12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/wJKmD_bQ21bZY9VAnw5jHSOHwDM.roa
Signing time: Mon 20 Mar 2023 11:10:28 +0000
ROA not before: Mon 20 Mar 2023 11:10:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39246
IP address blocks: 77.78.134.0/24 maxlen: 24
77.78.133.0/24 maxlen: 24
77.78.139.0/24 maxlen: 24
77.78.138.0/24 maxlen: 24
77.78.137.0/24 maxlen: 24
77.78.136.0/24 maxlen: 24
77.78.135.0/24 maxlen: 24
77.78.143.0/24 maxlen: 24
77.78.142.0/24 maxlen: 24
77.78.141.0/24 maxlen: 24
77.78.140.0/24 maxlen: 24
77.78.132.0/24 maxlen: 24
77.78.131.0/24 maxlen: 24
77.78.129.0/24 maxlen: 24
77.78.128.0/24 maxlen: 24
109.121.132.0/24 maxlen: 24
109.121.131.0/24 maxlen: 24
109.121.130.0/24 maxlen: 24
109.121.129.0/24 maxlen: 24
109.121.151.0/24 maxlen: 24
109.121.150.0/24 maxlen: 24
109.121.149.0/24 maxlen: 24
109.121.148.0/24 maxlen: 24
109.121.155.0/24 maxlen: 24
109.121.154.0/24 maxlen: 24
109.121.158.0/24 maxlen: 24
109.121.157.0/24 maxlen: 24
109.121.156.0/24 maxlen: 24
109.121.165.0/24 maxlen: 24
109.121.164.0/24 maxlen: 24
31.193.189.0/24 maxlen: 24
62.192.132.0/24 maxlen: 24
62.192.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:b6:a5:48:0e:65:8b:65:65:71:86:d5:a6:3b:16:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12ef9e49fecf2509eb6769eee2cdd4a5253b71c5
Validity
Not Before: Mar 20 11:10:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c092a60ff6d0db56d963d5409f0e631d2387c033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bb:39:38:f1:79:a1:64:a1:41:a5:db:ef:8e:
ef:ef:a6:31:c5:29:67:ec:55:05:62:5b:16:ad:e5:
9e:be:04:b5:94:26:08:c7:d7:aa:0c:f4:0f:11:43:
c5:d4:85:94:21:0a:ab:d8:88:df:54:a4:78:19:63:
c6:99:94:7a:6f:d9:6c:9b:ed:74:4b:b0:12:f8:e5:
8c:b6:25:4c:42:75:f5:7e:4c:2a:06:3e:4c:fd:78:
af:38:64:5f:49:c1:d4:f4:9e:f6:a9:64:c5:49:5d:
97:eb:fc:8d:61:dc:1a:0d:9b:2a:af:d0:76:ea:68:
02:47:f3:d7:8d:be:c5:e8:57:82:07:ec:18:e0:27:
89:e8:79:30:86:a7:ea:0d:c1:49:bb:bf:fe:d3:98:
94:0f:23:0a:29:1a:0a:9b:a9:31:ad:25:a5:da:ee:
4e:9e:68:ab:c2:30:d6:d5:97:06:a6:16:a3:36:6a:
7f:1c:d2:91:fb:8f:ab:07:7b:cd:54:68:4f:f1:31:
40:68:c5:17:8d:ac:31:cc:cb:84:10:42:43:78:e2:
31:df:c6:1e:23:6c:0a:a1:e3:9e:10:95:42:1f:d7:
ab:0f:b4:f6:57:0d:6b:10:b6:7e:53:34:3c:0f:07:
43:dc:db:08:ba:dd:c2:5a:4d:5f:07:a6:5b:00:ef:
e4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:92:A6:0F:F6:D0:DB:56:D9:63:D5:40:9F:0E:63:1D:23:87:C0:33
X509v3 Authority Key Identifier:
keyid:12:EF:9E:49:FE:CF:25:09:EB:67:69:EE:E2:CD:D4:A5:25:3B:71:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/wJKmD_bQ21bZY9VAnw5jHSOHwDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9c27c2-fdbe-4e39-ba92-1d5d945a05a3/1/Eu-eSf7PJQnrZ2nu4s3UpSU7ccU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.189.0/24
62.192.132.0/23
77.78.128.0/23
77.78.131.0-77.78.143.255
109.121.129.0-109.121.132.255
109.121.148.0/22
109.121.154.0-109.121.158.255
109.121.164.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:ea:4b:3b:8a:76:c4:c7:7d:4d:f7:3d:3d:7f:17:e1:50:29:
56:56:80:d3:90:70:f6:2b:98:9d:9d:18:68:bd:8f:18:4a:01:
5b:fc:70:d6:69:24:09:6e:ae:55:d1:ad:66:a0:9b:98:48:9f:
0b:2e:18:5e:b0:d3:eb:f4:07:c5:2b:1b:6d:ba:fa:c1:54:fd:
64:6d:71:ce:8f:1d:ea:36:e0:e1:57:ff:41:8e:66:e6:69:e7:
70:8e:f0:5c:a7:70:ef:52:e2:10:36:0c:82:a9:3f:85:4c:67:
32:e8:05:cc:5c:dd:c1:09:a7:d5:a4:4b:d5:cf:cc:d4:94:7f:
73:6c:ed:22:2d:0d:23:c7:04:9c:ef:bd:83:57:1a:10:f9:0b:
74:38:03:00:1d:17:42:87:90:1c:f1:84:b3:0c:0b:4c:69:3a:
1a:30:2c:b2:df:3c:9b:18:17:be:63:c2:34:af:35:a0:dc:38:
82:86:f3:60:75:8b:d5:23:94:b3:4b:13:d4:ee:32:0e:4b:2d:
c0:52:89:7b:04:29:1d:80:76:96:9d:4e:47:a5:bd:16:6e:c8:
4b:22:5c:8a:7b:b5:97:19:01:54:74:bd:97:8d:5e:0d:b0:20:
40:7f:2e:70:8a:b3:d0:95:13:c1:20:df:16:d7:43:ec:93:a6:
e5:a1:01:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-fra.rpki-client.org