Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/t8ruunGA8aXce-jbnLtQgc-JQ3A.roa
File: t8ruunGA8aXce-jbnLtQgc-JQ3A.roa (raw, json)
Hash identifier: YJOJMePRSxr7sB++5fQHUjXgr+UNGzTRv2RtHVmb2HI=
Subject key identifier: B7:CA:EE:BA:71:80:F1:A5:DC:7B:E8:DB:9C:BB:50:81:CF:89:43:70
Certificate issuer: /CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Certificate serial: 018626580A872CFC17EF5D744CEC46775CAF
Authority key identifier: F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/t8ruunGA8aXce-jbnLtQgc-JQ3A.roa
Signing time: Mon 06 Feb 2023 10:49:09 +0000
ROA not before: Mon 06 Feb 2023 10:49:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206825
IP address blocks: 185.36.112.0/22 maxlen: 22
195.5.96.0/23 maxlen: 23
185.186.116.0/22 maxlen: 22
195.181.254.0/24 maxlen: 24
185.11.16.0/22 maxlen: 22
185.11.16.0/23 maxlen: 23
185.11.18.0/23 maxlen: 23
195.192.252.0/24 maxlen: 24
80.208.255.0/24 maxlen: 24
31.14.30.0/24 maxlen: 24
31.14.29.0/24 maxlen: 24
94.177.133.0/24 maxlen: 24
178.157.95.0/24 maxlen: 24
185.207.240.0/22 maxlen: 22
103.197.8.0/22 maxlen: 22
212.103.52.0/22 maxlen: 22
46.102.102.0/24 maxlen: 24
217.61.255.0/24 maxlen: 24
5.182.107.0/24 maxlen: 24
212.237.254.0/24 maxlen: 24
2a03:4f40::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:58:0a:87:2c:fc:17:ef:5d:74:4c:ec:46:77:5c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0f14ed124f9a2f3deab1006f184cf4fb80a3aec
Validity
Not Before: Feb 6 10:49:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7caeeba7180f1a5dc7be8db9cbb5081cf894370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6d:72:93:7b:d5:a2:80:10:69:06:e1:9e:03:
92:7d:94:73:f0:d0:b6:2e:74:b1:f3:b9:0c:cc:a3:
39:c6:fb:e7:bf:f7:69:19:c1:d9:e4:04:e6:87:5e:
ca:35:b5:a9:85:76:d1:67:a0:49:59:17:2e:88:fa:
9d:af:54:94:03:02:d2:dd:97:3f:5a:58:ea:45:f8:
0b:17:35:b3:bc:d1:43:71:af:9b:9a:b6:ba:3d:33:
eb:d8:f4:f7:cb:2f:e3:94:44:e7:d0:38:97:71:d2:
fe:91:ae:12:40:0f:35:a8:05:77:50:58:69:86:c5:
d8:90:ca:a9:50:3c:09:34:db:14:4d:5c:87:5e:56:
41:f2:a7:38:d9:3b:12:9c:ed:5b:43:f4:07:3a:69:
3c:56:57:be:0b:1d:35:96:7f:37:ca:54:a3:c4:63:
eb:e9:58:6c:e2:a2:65:a7:2f:65:09:76:c2:50:4a:
20:87:aa:53:e6:43:4a:8e:a4:15:7c:d1:5b:fb:5b:
67:6d:cb:a8:73:cd:d7:6e:12:59:6e:8a:6d:03:28:
ba:74:2f:c1:3a:8b:9c:cd:50:ac:60:f8:bc:78:a3:
0a:b0:be:56:76:9f:03:c0:d1:bb:64:01:95:12:7a:
1e:69:31:6e:e3:20:6b:d2:32:94:24:b0:e3:84:1f:
2e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CA:EE:BA:71:80:F1:A5:DC:7B:E8:DB:9C:BB:50:81:CF:89:43:70
X509v3 Authority Key Identifier:
keyid:F0:F1:4E:D1:24:F9:A2:F3:DE:AB:10:06:F1:84:CF:4F:B8:0A:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PFO0ST5ovPeqxAG8YTPT7gKOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/t8ruunGA8aXce-jbnLtQgc-JQ3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c79cf3-a070-4d5b-9ee4-43612e7d9cc1/1/8PFO0ST5ovPeqxAG8YTPT7gKOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.107.0/24
31.14.29.0-31.14.30.255
46.102.102.0/24
80.208.255.0/24
94.177.133.0/24
103.197.8.0/22
178.157.95.0/24
185.11.16.0/22
185.36.112.0/22
185.186.116.0/22
185.207.240.0/22
195.5.96.0/23
195.181.254.0/24
195.192.252.0/24
212.103.52.0/22
212.237.254.0/24
217.61.255.0/24
IPv6:
2a03:4f40::/32
Signature Algorithm: sha256WithRSAEncryption
19:50:66:a4:88:a0:22:0d:b7:bd:7a:65:08:f3:79:8d:0f:de:
c4:b9:e1:f6:af:68:f0:4b:be:cb:00:f3:74:d1:b2:89:b0:15:
a5:c3:8e:e0:ed:bc:df:6b:16:18:19:7a:be:ef:18:b8:a7:72:
02:91:4d:7f:ea:b5:e5:df:00:6d:20:5b:81:24:7c:a0:b7:56:
c1:30:6c:06:55:e8:84:e8:65:e5:f1:40:50:a1:ca:8d:76:06:
2a:12:14:e4:55:8b:f9:ec:d3:ab:e5:2e:c9:b7:e2:17:13:5a:
00:f2:d5:27:fb:4c:36:e6:6e:44:64:a0:3f:c2:90:55:c3:b0:
3b:74:0b:9d:34:2f:57:68:0f:31:c4:04:79:dd:82:7a:c8:c8:
b8:d1:7b:b7:10:e1:fd:4a:72:1e:3c:4f:98:eb:d0:a0:2a:96:
42:6e:3a:27:d0:fd:25:c9:2a:8f:94:f1:d4:9e:4a:8c:16:12:
78:50:dc:1d:72:06:ed:a9:07:00:fa:7b:64:c7:da:df:c2:f4:
e0:2d:cf:bd:18:87:7e:e4:ba:e2:c4:6e:12:f3:82:2c:06:04:
06:7d:1d:27:b5:36:fd:10:f4:ff:5d:c5:5b:c5:75:9e:17:ab:
0d:24:30:8a:10:31:6d:1c:83:68:a0:36:0a:22:f9:2b:18:41:
57:b2:66:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:59 2023 by rpki-client on console-fra.rpki-client.org