Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/8hlHrEwD_8Zx9Y4RUN5MJqo6LXQ.roa
File: 8hlHrEwD_8Zx9Y4RUN5MJqo6LXQ.roa (raw, json)
Hash identifier: cwBi0kyeOisKPu1eeG4DNccHlztspmLNtnG+a/XHiiE=
Subject key identifier: F2:19:47:AC:4C:03:FF:C6:71:F5:8E:11:50:DE:4C:26:AA:3A:2D:74
Certificate issuer: /CN=15fd3804e00b9e06a82ced9f07b34fe3fd80394e
Certificate serial: 018C860E7F01500B6EAC5B408EE2A6590775
Authority key identifier: 15:FD:38:04:E0:0B:9E:06:A8:2C:ED:9F:07:B3:4F:E3:FD:80:39:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff04BOALngaoLO2fB7NP4_2AOU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/8hlHrEwD_8Zx9Y4RUN5MJqo6LXQ.roa
Signing time: Wed 20 Dec 2023 07:09:06 +0000
ROA not before: Wed 20 Dec 2023 07:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61173
IP address blocks: 45.159.112.0/24 maxlen: 24
45.159.115.0/24 maxlen: 24
45.159.114.0/24 maxlen: 24
45.159.113.0/24 maxlen: 24
185.255.88.0/24 maxlen: 24
185.255.89.0/24 maxlen: 24
185.255.91.0/24 maxlen: 24
185.255.90.0/24 maxlen: 24
193.141.65.0/24 maxlen: 24
62.3.42.0/24 maxlen: 24
185.50.38.0/24 maxlen: 24
185.50.37.0/24 maxlen: 24
185.50.39.0/24 maxlen: 24
185.213.165.0/24 maxlen: 24
185.213.164.0/24 maxlen: 24
185.213.166.0/24 maxlen: 24
193.141.64.0/24 maxlen: 24
185.213.167.0/24 maxlen: 24
5.182.44.0/24 maxlen: 24
5.182.45.0/24 maxlen: 24
5.182.46.0/24 maxlen: 24
5.182.47.0/24 maxlen: 24
193.141.127.0/24 maxlen: 24
193.141.126.0/24 maxlen: 24
85.208.253.0/24 maxlen: 24
85.208.255.0/24 maxlen: 24
85.208.254.0/24 maxlen: 24
185.4.31.0/24 maxlen: 24
185.4.28.0/24 maxlen: 24
185.4.30.0/24 maxlen: 24
185.4.29.0/24 maxlen: 24
185.116.163.0/24 maxlen: 24
185.116.160.0/24 maxlen: 24
185.116.162.0/24 maxlen: 24
185.116.161.0/24 maxlen: 24
2a05:ab80::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:0e:7f:01:50:0b:6e:ac:5b:40:8e:e2:a6:59:07:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15fd3804e00b9e06a82ced9f07b34fe3fd80394e
Validity
Not Before: Dec 20 07:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f21947ac4c03ffc671f58e1150de4c26aa3a2d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6b:97:f3:b5:bf:58:ba:93:ee:6c:7f:d1:10:
36:ce:c4:f5:f5:a7:2a:a7:e4:f9:5b:05:28:c2:04:
c4:aa:7c:cf:84:3f:8b:da:3b:fb:d0:bd:61:d6:52:
ec:ac:09:a5:2e:57:25:4e:3b:27:17:51:ba:a0:63:
d9:2e:73:af:6f:0c:1a:97:e3:07:32:7b:8f:ac:2a:
af:6d:46:bf:fc:67:96:39:dd:18:09:f5:9e:b3:ab:
11:2f:ef:6b:fb:59:6e:57:46:d6:f4:d5:2d:56:8f:
47:6f:aa:de:6a:6f:63:d0:e8:43:03:6d:f0:7c:6d:
73:cd:bd:e9:08:21:7a:2e:3f:c0:60:19:d5:6f:e2:
63:95:3b:e6:e0:29:cf:e5:0e:40:5f:f4:28:35:60:
7f:94:00:2c:79:c4:ba:43:a0:f2:5c:0f:4c:8c:be:
b1:93:63:26:71:63:13:f8:d7:cd:c4:67:a1:f9:3f:
9f:69:6a:8d:68:03:64:5f:64:66:83:4c:f4:47:ff:
d6:21:09:00:98:6b:4d:ca:70:ca:b7:fe:72:d9:bf:
67:70:50:d2:90:79:e0:7c:33:f0:e0:1b:07:74:37:
b3:b1:c5:e9:6e:32:49:46:c5:ee:23:2c:a7:01:cb:
60:6c:8c:5a:ed:8a:d8:e8:bf:92:92:08:e5:2e:b8:
07:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:19:47:AC:4C:03:FF:C6:71:F5:8E:11:50:DE:4C:26:AA:3A:2D:74
X509v3 Authority Key Identifier:
keyid:15:FD:38:04:E0:0B:9E:06:A8:2C:ED:9F:07:B3:4F:E3:FD:80:39:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff04BOALngaoLO2fB7NP4_2AOU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/8hlHrEwD_8Zx9Y4RUN5MJqo6LXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/Ff04BOALngaoLO2fB7NP4_2AOU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.44.0/22
45.159.112.0/22
62.3.42.0/24
85.208.253.0-85.208.255.255
185.4.28.0/22
185.50.37.0-185.50.39.255
185.116.160.0/22
185.213.164.0/22
185.255.88.0/22
193.141.64.0/23
193.141.126.0/23
IPv6:
2a05:ab80::/48
Signature Algorithm: sha256WithRSAEncryption
59:f1:26:58:28:ca:6d:07:f1:29:88:ba:b5:de:24:af:9b:91:
f3:ef:25:f9:84:d9:77:25:f2:62:0a:b7:13:39:ca:c3:e8:ee:
ca:b5:ef:a5:90:e1:66:c9:a2:4b:b5:54:48:b1:8b:db:1d:ed:
a3:91:b9:86:7e:c9:2b:29:92:f8:3d:f0:71:91:9a:7d:e0:41:
dc:f3:af:62:43:5f:39:32:1f:4a:fd:2e:b4:ad:49:0e:1d:0b:
52:7a:76:13:19:5c:d3:db:3e:64:bf:fa:f2:a2:23:64:38:a0:
0c:02:63:73:ed:16:7f:27:71:59:ab:2c:ef:49:2c:d4:d7:c7:
26:68:3a:10:a4:c1:a1:7b:8b:04:c3:10:45:e1:fd:61:71:84:
86:d0:26:41:e0:e5:1f:a9:6c:85:9b:3f:d6:42:b7:cd:73:97:
a3:54:03:e2:58:b5:12:b7:8f:95:a6:50:16:f6:b0:69:55:00:
f3:6d:93:d5:28:fc:56:63:3e:f5:dc:78:36:d1:f6:d6:4a:79:
09:64:24:80:0b:85:6f:a7:9d:91:74:b9:c4:8c:f5:2c:23:36:
84:59:af:6d:09:c2:d0:b8:52:46:a9:90:ec:4c:eb:14:e9:35:
76:e4:37:3c:72:65:e4:f5:86:0a:b9:e9:5c:26:c8:73:cc:6e:
0f:68:38:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:54 2024 by rpki-client on console-ams.rpki-client.org