Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/qOVxDRbyueg5GhphWPbvs95y-Ws.roa
File: qOVxDRbyueg5GhphWPbvs95y-Ws.roa (raw, json)
Hash identifier: /fKa/l7FcdOUJr/nJv9eq8ZDFsXNgvxkmza3Azq1jAE=
Subject key identifier: A8:E5:71:0D:16:F2:B9:E8:39:1A:1A:61:58:F6:EF:B3:DE:72:F9:6B
Certificate issuer: /CN=c57e58c346e7b415550c13aeadd2cf90edd07895
Certificate serial: 0188B8E964FB4F57CA00DF53748293AE04A6
Authority key identifier: C5:7E:58:C3:46:E7:B4:15:55:0C:13:AE:AD:D2:CF:90:ED:D0:78:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xX5Yw0bntBVVDBOurdLPkO3QeJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/qOVxDRbyueg5GhphWPbvs95y-Ws.roa
Signing time: Wed 14 Jun 2023 07:58:03 +0000
ROA not before: Wed 14 Jun 2023 07:58:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39611
IP address blocks: 185.49.24.0/24 maxlen: 24
185.49.25.0/24 maxlen: 24
185.49.26.0/24 maxlen: 24
185.49.27.0/24 maxlen: 24
213.207.39.0/24 maxlen: 24
213.207.40.0/24 maxlen: 24
213.207.40.0/22 maxlen: 22
213.207.43.0/24 maxlen: 24
213.207.41.0/24 maxlen: 24
213.207.42.0/24 maxlen: 24
213.207.44.0/22 maxlen: 22
213.207.44.0/24 maxlen: 24
213.207.45.0/24 maxlen: 24
213.207.46.0/24 maxlen: 24
213.207.47.0/24 maxlen: 24
213.207.48.0/21 maxlen: 21
213.207.48.0/20 maxlen: 20
213.207.50.0/24 maxlen: 24
213.207.48.0/24 maxlen: 24
213.207.48.0/22 maxlen: 22
213.207.49.0/24 maxlen: 24
213.207.51.0/24 maxlen: 24
213.207.55.0/24 maxlen: 24
213.207.57.0/24 maxlen: 24
213.207.52.0/22 maxlen: 22
213.207.53.0/24 maxlen: 24
213.207.54.0/24 maxlen: 24
213.207.52.0/24 maxlen: 24
213.207.56.0/22 maxlen: 22
213.207.56.0/21 maxlen: 21
213.207.56.0/24 maxlen: 24
213.207.58.0/24 maxlen: 24
213.207.60.0/24 maxlen: 24
213.207.60.0/22 maxlen: 22
213.207.61.0/24 maxlen: 24
213.207.59.0/24 maxlen: 24
213.207.63.0/24 maxlen: 24
213.207.62.0/24 maxlen: 24
213.207.37.0/24 maxlen: 24
213.207.38.0/24 maxlen: 24
213.207.35.0/24 maxlen: 24
213.207.32.0/22 maxlen: 22
213.207.32.0/24 maxlen: 24
213.207.33.0/24 maxlen: 24
213.207.34.0/24 maxlen: 24
213.207.32.0/19 maxlen: 19
213.207.32.0/20 maxlen: 20
213.207.36.0/22 maxlen: 22
213.207.36.0/24 maxlen: 24
2a01:9d24::/31 maxlen: 31
2a01:9d20::/29 maxlen: 29
2a01:9d22::/31 maxlen: 31
2a01:9d20::/31 maxlen: 31
2a01:9d26::/31 maxlen: 31
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:e9:64:fb:4f:57:ca:00:df:53:74:82:93:ae:04:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c57e58c346e7b415550c13aeadd2cf90edd07895
Validity
Not Before: Jun 14 07:58:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8e5710d16f2b9e8391a1a6158f6efb3de72f96b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e7:96:5d:5c:34:ab:c5:2a:01:0f:25:4e:cf:
7f:ed:d7:6d:78:cd:5a:b2:cb:15:bb:13:69:ed:99:
09:77:7b:c3:30:bf:0e:67:60:a6:c9:a8:26:6b:ad:
50:6a:24:3b:00:db:ac:14:f6:d1:03:03:27:b3:b5:
51:d1:69:2b:39:67:0d:db:31:b2:46:13:92:15:b9:
1d:ac:71:1f:c0:e1:12:3d:d6:5f:a6:47:ed:1d:b7:
fc:d7:ac:c6:e8:de:fa:fb:42:21:a7:85:9f:3c:56:
40:63:e6:21:50:63:fc:f1:d0:9d:45:b5:a7:86:db:
25:1b:00:03:6f:6c:42:68:ba:66:37:7e:57:b7:dc:
4b:55:77:4b:04:a9:1f:7e:6e:ad:f7:8c:25:6e:99:
be:40:ad:b8:82:ab:06:26:c9:0b:94:90:31:79:53:
82:55:3e:6b:cc:13:2a:96:ca:ff:0a:14:20:e7:fb:
bd:63:e2:89:10:b2:09:4c:79:fc:c4:48:fb:57:fd:
f2:07:6d:d5:f4:6e:d0:26:86:b4:09:f0:3b:08:25:
03:cc:c5:2f:1e:84:80:be:8f:9b:b7:17:7e:ae:fd:
3f:80:65:44:79:88:0b:15:b7:c9:dd:28:e5:23:ac:
bb:8f:de:ac:f8:5d:82:55:da:10:e8:06:39:60:ef:
04:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E5:71:0D:16:F2:B9:E8:39:1A:1A:61:58:F6:EF:B3:DE:72:F9:6B
X509v3 Authority Key Identifier:
keyid:C5:7E:58:C3:46:E7:B4:15:55:0C:13:AE:AD:D2:CF:90:ED:D0:78:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xX5Yw0bntBVVDBOurdLPkO3QeJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/qOVxDRbyueg5GhphWPbvs95y-Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/cee70d-8b52-4c11-a77c-074305735ac2/1/xX5Yw0bntBVVDBOurdLPkO3QeJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.24.0/22
213.207.32.0/19
IPv6:
2a01:9d20::/29
Signature Algorithm: sha256WithRSAEncryption
3a:12:5a:97:06:1a:e8:a0:72:a2:94:c9:e8:1f:d9:42:78:78:
a5:7a:5f:3f:58:c4:9c:9c:9d:73:f0:f9:57:49:32:af:fa:2e:
fb:c3:fe:f1:aa:34:7c:4a:7f:3d:b1:b1:e4:39:bd:9f:db:ac:
8e:ee:5f:13:d5:74:ff:ae:b0:a6:ec:9f:1b:bc:34:17:77:91:
80:c6:1b:32:f9:47:9b:f1:b2:f7:ad:a0:4f:d7:65:5f:1d:4c:
af:7b:c0:41:81:62:3e:e9:65:39:61:e6:c6:6f:72:a5:b1:b6:
73:72:c5:aa:ec:fa:36:7c:7f:0f:38:48:b6:aa:e1:4d:36:68:
d6:9c:d0:31:4a:0d:4d:38:18:6c:bb:65:8d:30:4d:f1:36:38:
0f:d9:02:bf:9f:cb:2b:58:5a:12:2e:ba:b0:d3:07:3b:b1:51:
86:9b:0c:e8:53:45:fb:5e:b2:79:ec:73:bc:d4:52:af:4f:e7:
c4:87:6c:f5:f7:b0:37:81:53:ad:51:70:be:50:ca:b9:38:a1:
54:94:68:de:d5:90:3f:63:10:26:b6:da:67:c6:f0:37:ca:e6:
72:f2:a1:74:3a:6c:bb:5f:4f:ea:4d:f8:ef:82:c3:eb:34:a2:
34:79:35:74:d8:41:3a:1a:e0:d6:45:fe:fd:4a:20:83:60:4c:
74:ee:42:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:41 2024 by rpki-client on console.sobornost.net