Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/wEpNWhUqQf8xFmnsef_94ZXELzw.roa
File: wEpNWhUqQf8xFmnsef_94ZXELzw.roa (raw, json)
Hash identifier: jabitAeor9n1V1DwRtnEDeZrY92/yIHeq8y+8bHMRmw=
Subject key identifier: C0:4A:4D:5A:15:2A:41:FF:31:16:69:EC:79:FF:FD:E1:95:C4:2F:3C
Certificate issuer: /CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Certificate serial: 0188290C54D5B229490802CDE75415A45C85
Authority key identifier: 27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/wEpNWhUqQf8xFmnsef_94ZXELzw.roa
Signing time: Wed 17 May 2023 09:30:53 +0000
ROA not before: Wed 17 May 2023 09:30:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35432
IP address blocks: 164.215.0.0/19 maxlen: 24
91.184.192.0/19 maxlen: 24
195.179.96.0/20 maxlen: 24
185.7.156.0/22 maxlen: 24
64.59.208.0/20 maxlen: 24
69.6.0.0/19 maxlen: 24
213.140.192.0/19 maxlen: 24
85.132.224.0/19 maxlen: 24
80.244.16.0/20 maxlen: 24
212.50.96.0/19 maxlen: 24
109.110.224.0/19 maxlen: 24
77.83.248.0/22 maxlen: 24
66.205.64.0/19 maxlen: 24
213.133.80.0/20 maxlen: 24
65.18.208.0/20 maxlen: 24
185.162.16.0/22 maxlen: 24
185.42.32.0/22 maxlen: 24
69.94.112.0/20 maxlen: 24
194.233.16.0/22 maxlen: 24
139.138.192.0/19 maxlen: 24
194.233.24.0/22 maxlen: 24
216.241.128.0/19 maxlen: 24
194.233.60.0/22 maxlen: 24
46.251.96.0/19 maxlen: 24
194.64.144.0/22 maxlen: 24
2a02:540::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:0c:54:d5:b2:29:49:08:02:cd:e7:54:15:a4:5c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Validity
Not Before: May 17 09:30:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c04a4d5a152a41ff311669ec79fffde195c42f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:11:c1:c6:10:ac:23:df:a1:db:44:9a:92:49:
6a:5a:fe:a1:23:53:93:67:d7:1c:a8:85:d1:36:d9:
bb:34:5a:f6:90:f0:a6:7b:e0:a9:10:d2:a6:14:74:
b6:43:e4:97:a8:e0:b6:bb:7c:ce:e2:a9:b9:25:87:
a3:80:95:7f:28:8b:71:8f:55:78:5e:74:f5:53:e5:
ee:79:52:5d:14:e5:a7:1b:9d:2a:89:ce:43:ce:97:
63:f1:81:7b:aa:e5:48:80:c1:e9:b2:8f:6e:a5:42:
26:9c:58:cd:18:bd:70:d4:09:4a:ec:34:47:2b:f4:
f9:0f:32:17:eb:f0:57:4d:7a:f5:50:ff:31:ac:c7:
02:84:3e:50:59:12:49:4b:fb:4b:27:a5:49:11:63:
38:e3:90:5a:b5:86:dd:64:e1:45:b8:15:d1:b4:0b:
2c:4d:47:a8:65:d6:a8:a0:4c:93:7b:07:e5:c9:81:
20:25:58:f5:4d:5c:43:73:78:4d:d7:82:b3:c0:b1:
3a:7a:a8:8f:46:97:8a:cf:24:ae:5e:54:45:16:af:
41:9d:76:44:23:16:0b:3c:da:97:a1:3b:2a:37:8c:
e7:3b:0a:87:96:fa:5c:92:a1:68:0c:74:73:44:33:
42:43:83:8c:88:19:4e:65:92:e7:74:7b:08:11:a1:
61:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4A:4D:5A:15:2A:41:FF:31:16:69:EC:79:FF:FD:E1:95:C4:2F:3C
X509v3 Authority Key Identifier:
keyid:27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/wEpNWhUqQf8xFmnsef_94ZXELzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.96.0/19
64.59.208.0/20
65.18.208.0/20
66.205.64.0/19
69.6.0.0/19
69.94.112.0/20
77.83.248.0/22
80.244.16.0/20
85.132.224.0/19
91.184.192.0/19
109.110.224.0/19
139.138.192.0/19
164.215.0.0/19
185.7.156.0/22
185.42.32.0/22
185.162.16.0/22
194.64.144.0/22
194.233.16.0/22
194.233.24.0/22
194.233.60.0/22
195.179.96.0/20
212.50.96.0/19
213.133.80.0/20
213.140.192.0/19
216.241.128.0/19
IPv6:
2a02:540::/32
Signature Algorithm: sha256WithRSAEncryption
52:39:02:b7:19:f9:4a:33:e7:75:0f:77:c7:3f:22:81:d6:fc:
10:78:f0:15:13:34:26:a6:6b:92:92:0a:9e:06:3c:af:b2:04:
61:30:2d:6e:b4:50:b6:23:22:b6:12:a3:6f:f3:63:ae:cc:01:
20:8b:9b:53:c7:cc:cc:ba:76:10:41:07:2a:31:27:f5:a8:e1:
5d:b3:bf:72:0f:75:36:f8:ea:58:eb:e7:b3:1d:ff:38:e7:ca:
c8:b5:59:66:af:a3:13:74:7c:4d:9a:4d:98:03:10:2b:4d:80:
49:a4:28:f3:b5:5c:0d:80:3a:1e:cb:1e:69:d0:34:75:73:c3:
62:c6:32:2f:bb:15:db:7e:93:40:7e:04:f3:45:6a:d9:da:cf:
6d:da:28:dc:01:80:aa:2b:c1:af:8b:e4:48:b2:18:fd:71:c2:
29:e7:a4:4b:47:20:c1:10:95:4b:6c:77:63:3f:32:ad:ff:e0:
de:b3:d7:92:35:5d:02:b7:8b:f4:10:97:63:ac:8f:41:99:13:
73:a7:5c:b4:7e:da:62:28:51:51:be:95:b2:b7:5b:91:52:53:
ff:98:14:15:d9:ab:99:04:98:5b:37:bc:cb:33:e0:a1:96:d1:
68:54:a6:05:4c:68:2f:90:6a:78:a2:0a:b8:7d:64:ce:2b:ee:
a4:43:91:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:33 2024 by rpki-client on console.sobornost.net