Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/n3pngyjGw26pI3ZKuwlz4zIxXS8.roa
File: n3pngyjGw26pI3ZKuwlz4zIxXS8.roa (raw, json)
Hash identifier: DXnWYfpMtEk+aGHnFQm91ZT+wGzSrEsXv88aegLKH/I=
Subject key identifier: 9F:7A:67:83:28:C6:C3:6E:A9:23:76:4A:BB:09:73:E3:32:31:5D:2F
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 018991F174C5792D30083BAD1C14A5816C13
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/n3pngyjGw26pI3ZKuwlz4zIxXS8.roa
Signing time: Wed 26 Jul 2023 11:24:27 +0000
ROA not before: Wed 26 Jul 2023 11:24:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205647
IP address blocks: 151.242.0.0/21 maxlen: 21
151.242.8.0/22 maxlen: 22
31.56.116.0/24 maxlen: 24
151.241.224.0/21 maxlen: 21
151.247.214.0/23 maxlen: 23
151.247.216.0/21 maxlen: 21
151.247.224.0/22 maxlen: 22
151.247.232.0/22 maxlen: 22
151.247.228.0/22 maxlen: 22
151.247.238.0/23 maxlen: 23
151.247.237.0/24 maxlen: 24
151.247.240.0/24 maxlen: 24
151.247.236.0/24 maxlen: 24
151.247.241.0/24 maxlen: 24
151.247.248.0/22 maxlen: 22
31.58.240.0/20 maxlen: 20
151.244.52.0/22 maxlen: 22
151.244.56.0/21 maxlen: 21
85.15.49.0/24 maxlen: 24
85.15.48.0/24 maxlen: 24
151.240.240.0/21 maxlen: 21
31.59.12.0/22 maxlen: 22
94.183.192.0/18 maxlen: 18
31.56.64.0/19 maxlen: 19
31.56.96.0/20 maxlen: 20
31.56.0.0/18 maxlen: 18
94.183.0.0/18 maxlen: 18
151.240.80.0/21 maxlen: 21
94.182.192.0/18 maxlen: 18
94.182.204.0/24 maxlen: 24
94.182.205.0/24 maxlen: 24
94.182.206.0/24 maxlen: 24
94.182.204.0/22 maxlen: 22
94.182.207.0/24 maxlen: 24
94.182.217.0/24 maxlen: 24
94.182.226.0/24 maxlen: 24
94.182.222.0/23 maxlen: 23
94.182.228.0/22 maxlen: 22
151.240.168.0/22 maxlen: 22
151.240.192.0/21 maxlen: 21
94.183.128.0/18 maxlen: 18
151.244.48.0/22 maxlen: 22
31.58.236.0/22 maxlen: 22
94.183.64.0/18 maxlen: 18
94.182.41.0/24 maxlen: 24
94.182.56.0/22 maxlen: 22
94.182.60.0/22 maxlen: 22
94.182.64.0/18 maxlen: 18
94.182.72.0/21 maxlen: 21
94.182.97.192/28 maxlen: 28
94.182.0.0/18 maxlen: 18
94.182.8.0/23 maxlen: 23
94.182.12.0/23 maxlen: 23
94.182.82.0/24 maxlen: 24
94.182.116.0/22 maxlen: 22
94.182.114.0/23 maxlen: 23
94.182.120.0/21 maxlen: 21
94.182.128.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:91:f1:74:c5:79:2d:30:08:3b:ad:1c:14:a5:81:6c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Jul 26 11:24:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f7a678328c6c36ea923764abb0973e332315d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ca:19:79:80:89:bc:e6:7f:64:d1:39:15:bc:
5d:4e:fa:55:7d:82:28:99:b3:66:b2:fa:66:b3:ff:
c4:13:13:84:c4:92:fb:9e:c9:e9:80:2d:12:09:4f:
a2:e6:21:7a:d9:e2:52:64:1d:9c:d4:5a:8a:ef:da:
cb:58:cd:36:01:6e:3f:16:bd:94:18:4d:b3:b0:44:
5a:c7:33:08:42:7b:9e:fa:29:48:61:e3:34:fa:d9:
22:53:e7:50:56:98:eb:00:a1:a0:a0:03:57:41:a6:
00:45:e6:76:23:63:5a:6a:9a:93:2f:f3:43:a8:44:
bd:99:66:8c:03:88:d0:66:fd:0e:7f:ed:b7:f9:bf:
95:f1:a8:6c:71:f4:ba:2f:db:c0:af:4e:e5:66:5e:
6f:ed:fe:e3:89:0d:4d:fd:28:52:73:93:1a:cf:da:
e8:3f:e1:38:e6:b3:08:09:b1:db:70:d2:f3:65:58:
1e:da:e5:b3:cb:85:00:b2:9f:95:02:08:0f:bd:86:
12:39:74:9b:eb:b1:49:34:2d:72:89:a2:7a:c0:6d:
5d:6e:e7:78:c2:35:57:b2:6f:a6:3f:94:25:a5:be:
30:68:26:07:fa:31:63:71:f6:d8:42:a2:4c:07:43:
2e:d1:a3:dd:11:49:d4:7b:28:81:19:10:e2:a4:af:
3f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7A:67:83:28:C6:C3:6E:A9:23:76:4A:BB:09:73:E3:32:31:5D:2F
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/n3pngyjGw26pI3ZKuwlz4zIxXS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.0.0-31.56.111.255
31.56.116.0/24
31.58.236.0-31.58.255.255
31.59.12.0/22
85.15.48.0/23
94.182.0.0/15
151.240.80.0/21
151.240.168.0/22
151.240.192.0/21
151.240.240.0/21
151.241.224.0/21
151.242.0.0-151.242.11.255
151.244.48.0/20
151.247.214.0-151.247.241.255
151.247.248.0/22
Signature Algorithm: sha256WithRSAEncryption
32:0c:31:5f:eb:07:c3:55:bf:b9:b2:52:54:58:c7:07:1b:bc:
51:f9:f5:79:32:79:ea:2c:be:6b:56:4c:f6:12:5f:e2:8f:f7:
a9:5f:c3:ed:2b:85:a6:1f:09:a8:44:03:ca:fb:4f:07:33:ff:
5f:7e:6b:d7:5a:3c:1e:19:c4:41:5b:43:a4:c5:d5:5f:6a:5a:
03:62:91:ca:b7:bf:00:d0:65:df:c5:86:f9:13:5b:92:86:29:
4d:a1:57:cf:1d:a6:4d:2f:31:1e:4f:36:ee:4d:41:63:a7:be:
25:42:6d:81:63:9f:68:f7:95:c0:8c:54:91:ad:06:b8:d2:8d:
a0:b3:86:02:b8:eb:f4:e2:19:3a:ee:07:33:d5:15:3a:02:b7:
fc:3f:53:36:5e:ac:dd:15:ea:ee:41:b1:4e:8c:04:27:e2:b6:
6e:3c:b7:f6:88:e4:b6:9d:91:75:fa:f2:b8:f7:85:ab:76:c9:
72:bd:41:b0:d5:a3:bf:48:8e:bf:a3:3d:b1:c0:fe:b1:a8:84:
07:64:da:3c:af:35:a4:6d:98:5c:11:2a:0f:63:e7:a0:54:d5:
a7:18:6c:79:ec:2c:62:8c:27:ff:ea:04:a7:a8:0d:6f:df:bf:
e4:9e:d9:ca:7c:80:32:1d:bb:81:2b:a2:51:58:f0:29:f6:8c:
51:c4:8d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net