Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/ee2h-s23fkV3f_L_F0-3YxAaZA4.roa
File: ee2h-s23fkV3f_L_F0-3YxAaZA4.roa (raw, json)
Hash identifier: 44/gt58TtQaWc2xlMSwHYrLQs0jjK5l3B1gw2yjwOao=
Subject key identifier: 79:ED:A1:FA:CD:B7:7E:45:77:7F:F2:FF:17:4F:B7:63:10:1A:64:0E
Certificate issuer: /CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Certificate serial: 0187F0107D7483CA1BC43FB5E62AC4BD128F
Authority key identifier: 21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/ee2h-s23fkV3f_L_F0-3YxAaZA4.roa
Signing time: Sat 06 May 2023 07:57:05 +0000
ROA not before: Sat 06 May 2023 07:57:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200088
IP address blocks: 188.225.14.0/24 maxlen: 24
94.228.122.0/24 maxlen: 24
188.225.60.0/24 maxlen: 24
193.201.115.0/24 maxlen: 24
89.191.229.0/24 maxlen: 24
89.191.228.0/24 maxlen: 24
87.249.50.0/24 maxlen: 24
85.193.93.0/24 maxlen: 24
85.193.92.0/24 maxlen: 24
85.193.95.0/24 maxlen: 24
90.156.228.0/24 maxlen: 24
90.156.231.0/24 maxlen: 24
217.151.229.0/24 maxlen: 24
217.151.231.0/24 maxlen: 24
185.104.112.0/24 maxlen: 24
185.104.115.0/24 maxlen: 24
217.25.91.0/24 maxlen: 24
194.35.116.0/24 maxlen: 24
194.35.118.0/24 maxlen: 24
194.35.117.0/24 maxlen: 24
217.25.95.0/24 maxlen: 24
194.35.119.0/24 maxlen: 24
78.40.216.0/24 maxlen: 24
176.57.221.0/24 maxlen: 24
2a03:6f00:8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f0:10:7d:74:83:ca:1b:c4:3f:b5:e6:2a:c4:bd:12:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2160b2b1c829d88936b1adaeec97fdd1b40d41e5
Validity
Not Before: May 6 07:57:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79eda1facdb77e45777ff2ff174fb763101a640e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ab:48:a9:fa:e4:8e:ea:21:1f:7f:98:b1:81:
50:f2:0c:85:d3:1e:03:ab:6e:1d:65:8a:26:c4:70:
ee:be:de:6c:93:25:9f:db:28:2b:a8:49:93:6a:e8:
db:e3:74:a1:e6:f9:a6:a9:3f:f2:c3:1c:f4:d6:b4:
e0:41:b6:96:66:e0:52:b2:56:23:1a:0f:a3:bc:44:
2e:b3:ac:ec:e9:7b:06:5d:a2:06:92:b3:14:8e:ef:
21:8c:a2:21:af:42:21:4e:f5:48:a4:2e:4f:1d:a6:
77:74:14:e2:f8:e4:ae:47:39:53:6b:65:00:33:74:
2b:55:1b:92:9d:b9:7a:1c:c1:4a:fc:c0:16:61:48:
47:c3:e9:f9:2c:7f:87:8a:7b:d9:9a:53:b5:d3:b8:
fa:6b:6e:56:b2:11:8f:9e:5e:c7:e9:41:eb:f7:7e:
55:1d:5c:3e:27:b7:05:10:80:a7:27:ce:51:54:dd:
6c:f1:3a:b5:a1:c5:b8:4d:93:78:87:8b:a7:02:ea:
76:8d:d0:35:b2:0d:f9:cf:70:e7:a0:fa:5e:ff:54:
e7:92:d8:84:be:e8:d1:8e:d5:d7:c5:91:bb:ed:82:
12:90:34:c7:36:37:18:d6:c8:f4:2b:7d:c1:2f:3d:
bf:65:c3:f3:6d:7d:52:a9:c3:4c:97:00:36:61:9b:
cb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:ED:A1:FA:CD:B7:7E:45:77:7F:F2:FF:17:4F:B7:63:10:1A:64:0E
X509v3 Authority Key Identifier:
keyid:21:60:B2:B1:C8:29:D8:89:36:B1:AD:AE:EC:97:FD:D1:B4:0D:41:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWCyscgp2Ik2sa2u7Jf90bQNQeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/ee2h-s23fkV3f_L_F0-3YxAaZA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/db1e20-dc36-488d-91a1-3df7faf3535d/1/IWCyscgp2Ik2sa2u7Jf90bQNQeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.40.216.0/24
85.193.92.0/23
85.193.95.0/24
87.249.50.0/24
89.191.228.0/23
90.156.228.0/24
90.156.231.0/24
94.228.122.0/24
176.57.221.0/24
185.104.112.0/24
185.104.115.0/24
188.225.14.0/24
188.225.60.0/24
193.201.115.0/24
194.35.116.0/22
217.25.91.0/24
217.25.95.0/24
217.151.229.0/24
217.151.231.0/24
IPv6:
2a03:6f00:8::/48
Signature Algorithm: sha256WithRSAEncryption
5c:aa:ab:19:00:cd:cd:32:d7:36:77:9d:2c:e5:7a:af:d5:02:
7b:5a:57:b2:38:d6:80:78:87:fa:7d:38:a4:d1:de:46:f6:c2:
32:61:0e:ad:e5:8d:39:4f:e8:9b:db:67:c6:2b:ad:0f:76:83:
21:86:76:f7:5c:05:4a:1c:1c:71:0c:b6:39:67:12:10:da:db:
98:f1:c1:40:7c:30:3c:14:7f:1d:25:e7:6e:4c:e2:2f:9a:94:
81:0c:e9:95:dd:53:f0:fa:1e:ed:62:e6:e8:fb:4d:d3:37:2f:
a1:2e:7a:76:5f:33:76:84:4b:75:bd:d0:79:85:d5:5b:15:fe:
64:d1:15:dc:71:a4:23:73:73:9e:de:e5:5d:e1:94:ff:89:39:
fb:b7:08:13:d1:d5:81:d8:97:95:12:65:35:f6:4e:18:d0:0c:
49:21:76:56:4d:26:63:4a:22:3e:a6:2e:58:5e:3a:2d:62:5b:
37:0e:61:5a:e7:1b:82:23:6d:d9:a7:7a:5f:50:55:a0:a7:b0:
5e:7e:d2:a3:00:d5:ca:cf:c9:38:7a:c8:ed:11:08:61:01:db:
cf:07:64:c9:ab:5a:43:8d:cb:e4:83:5a:e5:6a:a9:ad:dd:6a:
2e:45:54:57:00:02:41:29:5c:a9:51:b6:e1:aa:d7:f7:be:69:
5d:82:f7:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-fra.rpki-client.org