Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/CW9AKy4tWGmgc75IsmgdOko-kYU.roa
File: CW9AKy4tWGmgc75IsmgdOko-kYU.roa (raw, json)
Hash identifier: D8zzmeLXQkv69vDrwrgOaOsi1igdiO9MnUgUEY9FsY8=
Subject key identifier: 09:6F:40:2B:2E:2D:58:69:A0:73:BE:48:B2:68:1D:3A:4A:3E:91:85
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0189B8CB4B1140D2E37FBC20810EFDC28DC6
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/CW9AKy4tWGmgc75IsmgdOko-kYU.roa
Signing time: Thu 03 Aug 2023 00:27:57 +0000
ROA not before: Thu 03 Aug 2023 00:27:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.240.83.0/24 maxlen: 24
84.247.20.0/24 maxlen: 24
89.37.106.0/24 maxlen: 24
91.250.244.0/24 maxlen: 24
62.112.30.0/24 maxlen: 24
89.44.210.0/24 maxlen: 24
89.36.231.0/24 maxlen: 24
46.102.174.0/24 maxlen: 24
89.37.128.0/24 maxlen: 24
93.114.69.0/24 maxlen: 24
89.40.43.0/24 maxlen: 24
176.223.190.0/24 maxlen: 24
188.211.249.0/24 maxlen: 24
94.177.113.0/24 maxlen: 24
94.177.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b8:cb:4b:11:40:d2:e3:7f:bc:20:81:0e:fd:c2:8d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Aug 3 00:27:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=096f402b2e2d5869a073be48b2681d3a4a3e9185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:bf:5c:30:3f:93:77:c9:86:31:e5:6b:b3:
05:04:10:5c:f4:c8:28:8b:80:99:d8:1d:ab:ae:e4:
d8:e8:95:19:29:b2:8a:87:65:6d:a7:d1:81:3b:27:
cf:fa:64:90:09:b5:dd:80:6c:74:79:8a:6f:bd:96:
58:7c:11:96:2f:7d:07:eb:4d:6d:4d:be:b7:d2:e1:
f0:51:d8:cd:f9:13:2e:9c:8f:92:6a:76:ab:70:e5:
e1:3c:8b:9b:5e:cb:2d:c4:95:1e:81:32:a2:5d:5b:
cc:d3:ab:97:93:b1:52:57:d6:bb:b0:0d:08:ae:35:
94:07:6c:08:fd:5d:86:c0:41:79:1e:e7:75:15:da:
63:4d:7c:75:63:02:a5:91:e1:81:8a:52:11:24:45:
da:14:0b:ab:3a:67:0a:51:5b:5e:33:19:6d:e1:31:
79:02:c0:64:4a:f5:77:7e:84:0b:92:12:83:dc:6f:
21:18:fc:7d:dd:a3:c7:af:c4:c3:d2:fb:11:f3:c4:
72:5c:42:4a:26:78:ee:37:5c:d4:3a:2d:fb:4f:bd:
f5:fc:fc:80:ba:ef:c7:9f:6a:ca:59:3f:b3:12:04:
c9:37:70:cc:53:29:d3:71:0f:d3:9f:12:74:91:3d:
fb:10:29:16:2f:db:3a:f5:3e:b6:b8:08:58:78:1d:
95:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:6F:40:2B:2E:2D:58:69:A0:73:BE:48:B2:68:1D:3A:4A:3E:91:85
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/CW9AKy4tWGmgc75IsmgdOko-kYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.174.0/24
62.112.30.0/24
84.247.20.0/24
89.36.231.0/24
89.37.106.0/24
89.37.128.0/24
89.40.43.0/24
89.44.210.0/24
91.250.244.0/24
93.114.69.0/24
94.177.113.0/24
94.177.118.0/24
176.223.190.0/24
188.211.249.0/24
188.240.83.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b1:11:d1:30:4b:d2:33:0b:e4:6d:43:bc:08:c0:47:13:3a:
7f:58:aa:bd:cc:f4:a8:87:cd:27:f8:1a:0b:1a:d3:2f:99:4e:
c4:a4:d3:5f:08:ec:10:07:6d:23:62:98:6a:4a:72:df:fd:14:
c3:e5:82:06:e7:0b:20:29:89:2e:2c:bc:73:dd:ab:5b:74:76:
9b:33:3f:fc:74:9f:91:b0:39:62:ef:51:00:b8:5c:8e:ac:a4:
46:3d:fd:33:e7:7d:a2:3b:df:14:75:d3:eb:a3:2a:5c:ff:6c:
94:45:8f:99:d6:86:14:f1:d3:3c:c8:ff:84:5e:54:65:56:91:
31:a1:70:7b:91:74:17:18:29:14:99:23:f2:a8:6d:20:63:d6:
d3:fd:17:03:c6:2c:41:5b:ed:8e:04:50:13:2d:c7:c2:05:e6:
6b:07:9d:bb:9c:b7:6f:96:98:d0:7f:f5:2d:06:6a:01:64:9f:
ef:71:0f:29:bf:e0:05:f6:7e:3b:5c:d4:2b:a4:6d:fe:57:ae:
0f:b2:09:02:38:1c:27:4b:38:74:8e:38:1d:cc:43:d0:3a:c1:
7c:a5:f9:4b:d4:fd:69:dd:95:cc:f9:6f:19:99:48:c3:61:a1:
bd:be:ef:95:42:c5:b1:62:4e:c6:44:d1:d8:9b:ad:7c:fb:b0:
2b:4b:eb:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 04:12:29 2023 by rpki-client on console-ams.rpki-client.org