Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/YOgOhnrz0mk8E0ecz_0obd5YLfo.roa
File: YOgOhnrz0mk8E0ecz_0obd5YLfo.roa (raw, json)
Hash identifier: PwiBPgRPdQAVLVTJJZMTTB8+nxs+HiXXM9PxvM35eY8=
Subject key identifier: 60:E8:0E:86:7A:F3:D2:69:3C:13:47:9C:CF:FD:28:6D:DE:58:2D:FA
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 018C8741FF2E113E2FE09EE09E0E35AA00BD
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/YOgOhnrz0mk8E0ecz_0obd5YLfo.roa
Signing time: Wed 20 Dec 2023 12:44:58 +0000
ROA not before: Wed 20 Dec 2023 12:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13194
IP address blocks: 89.191.96.0/19 maxlen: 32
91.188.32.0/19 maxlen: 32
85.115.96.0/19 maxlen: 32
79.132.64.0/19 maxlen: 32
93.177.192.0/18 maxlen: 32
62.84.0.0/19 maxlen: 32
185.144.184.0/22 maxlen: 32
188.112.128.0/18 maxlen: 32
77.38.128.0/17 maxlen: 32
89.18.192.0/19 maxlen: 32
195.244.128.0/20 maxlen: 32
91.123.64.0/20 maxlen: 32
87.226.0.0/17 maxlen: 32
217.198.224.0/20 maxlen: 32
213.180.96.0/19 maxlen: 32
94.30.128.0/17 maxlen: 32
195.62.128.0/19 maxlen: 32
217.199.96.0/19 maxlen: 32
217.24.64.0/20 maxlen: 32
79.135.128.0/19 maxlen: 32
80.254.208.0/20 maxlen: 32
91.142.0.0/20 maxlen: 32
85.234.160.0/19 maxlen: 32
109.110.0.0/19 maxlen: 32
89.201.0.0/17 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:41:ff:2e:11:3e:2f:e0:9e:e0:9e:0e:35:aa:00:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Dec 20 12:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60e80e867af3d2693c13479ccffd286dde582dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cb:7b:79:af:7e:a6:59:88:5c:58:e5:17:61:
0d:81:eb:e5:b9:c2:59:92:d0:64:50:37:34:f1:ac:
da:7b:83:eb:06:aa:aa:15:5e:07:1f:57:f3:32:7d:
4b:4d:b7:10:08:11:50:60:87:81:08:58:06:7f:f3:
ba:d8:22:e2:39:cb:f9:04:a3:df:33:0f:3d:60:d6:
93:98:01:74:54:13:66:fe:cd:57:32:3b:48:d6:cc:
1c:4a:f7:23:fc:90:71:a0:d4:02:57:11:2b:e4:e0:
48:8f:cf:eb:ae:df:6f:48:85:0e:86:df:ac:c9:28:
3d:15:c3:03:14:d8:44:6b:2e:13:24:bf:9f:da:ea:
4e:1a:5c:26:85:e6:de:07:10:55:29:1a:4f:37:e9:
87:08:b7:6f:46:e9:f2:07:58:ea:d4:2f:c6:27:c9:
9e:5c:f4:b8:97:7d:f8:1d:d5:d8:5f:31:c6:08:91:
58:e7:30:e5:55:02:16:87:4f:c3:4b:0f:9f:5e:3f:
cb:a5:63:c7:ad:b3:82:43:e9:59:98:d3:d5:12:6b:
81:79:e2:80:3f:80:1c:41:47:19:90:75:95:99:d0:
61:af:20:2d:ee:23:d5:7a:9d:af:de:e2:07:f3:c7:
a7:87:40:ad:41:6c:56:86:3a:06:82:80:2f:3c:a9:
8f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E8:0E:86:7A:F3:D2:69:3C:13:47:9C:CF:FD:28:6D:DE:58:2D:FA
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/YOgOhnrz0mk8E0ecz_0obd5YLfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.84.0.0/19
77.38.128.0/17
79.132.64.0/19
79.135.128.0/19
80.254.208.0/20
85.115.96.0/19
85.234.160.0/19
87.226.0.0/17
89.18.192.0/19
89.191.96.0/19
89.201.0.0/17
91.123.64.0/20
91.142.0.0/20
91.188.32.0/19
93.177.192.0/18
94.30.128.0/17
109.110.0.0/19
185.144.184.0/22
188.112.128.0/18
195.62.128.0/19
195.244.128.0/20
213.180.96.0/19
217.24.64.0/20
217.198.224.0/20
217.199.96.0/19
Signature Algorithm: sha256WithRSAEncryption
41:5b:b9:85:90:0b:c0:31:a6:20:09:40:f6:b9:73:a2:49:0c:
b2:9c:70:e3:44:96:11:3f:aa:e7:8b:f1:95:61:8e:3f:88:76:
4f:23:08:ab:fa:be:b9:81:12:6d:48:b1:9b:a1:58:23:f5:9f:
52:b0:ac:0d:0f:63:3c:a2:4d:ef:6c:9c:02:4c:d3:99:fa:ae:
51:66:5e:4b:53:e2:25:3b:2b:1f:48:32:a3:74:25:83:22:99:
44:76:9a:11:94:d1:15:5e:82:21:fe:d1:34:05:01:19:4a:78:
4f:d2:fd:24:24:e0:a9:b7:e5:7b:f6:d1:be:b2:5a:27:39:a7:
79:a5:ae:a2:15:e4:92:1c:28:62:66:e5:4b:ce:b0:ad:d6:fa:
73:41:a0:09:0c:2d:db:96:92:93:b9:73:8e:89:42:17:c8:46:
79:5c:02:94:2f:b6:b6:0b:81:40:28:6a:ce:7d:11:2e:c7:23:
94:e0:c0:67:73:f6:0b:d5:4d:d1:7b:7a:44:ab:29:a5:63:3e:
97:2c:4b:89:9a:01:34:08:1b:de:ae:ca:a7:03:fa:af:99:90:
19:93:22:c8:a6:cf:50:cb:93:73:a9:76:4a:0e:f1:27:b8:a7:
41:6f:47:aa:d3:dc:58:d0:96:28:de:1e:73:e4:93:cb:79:3a:
ea:f8:f4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:50 2024 by rpki-client on console.sobornost.net