Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/l_TmoHX1gfwBak188Hu9MtR7XbQ.roa
File: l_TmoHX1gfwBak188Hu9MtR7XbQ.roa (raw, json)
Hash identifier: XSS9rru4GMDja8JU1Xuhn/PWI+npqjz8fuqMXeJU9QQ=
Subject key identifier: 97:F4:E6:A0:75:F5:81:FC:01:6A:4D:7C:F0:7B:BD:32:D4:7B:5D:B4
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 01880F7C60BA27C9BC7FB242418CE1E9FE47
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/l_TmoHX1gfwBak188Hu9MtR7XbQ.roa
Signing time: Fri 12 May 2023 10:23:09 +0000
ROA not before: Fri 12 May 2023 10:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31363
IP address blocks: 86.62.84.0/24 maxlen: 24
86.62.96.0/24 maxlen: 24
86.62.92.0/24 maxlen: 24
86.62.102.0/24 maxlen: 24
86.62.125.0/24 maxlen: 24
195.91.254.0/24 maxlen: 24
195.91.255.0/24 maxlen: 24
195.91.208.0/24 maxlen: 24
195.91.209.0/24 maxlen: 24
195.91.210.0/24 maxlen: 24
195.91.211.0/24 maxlen: 24
195.91.213.0/24 maxlen: 24
195.91.215.0/24 maxlen: 24
195.91.217.0/24 maxlen: 24
195.91.218.0/24 maxlen: 24
195.91.219.0/24 maxlen: 24
195.91.222.0/24 maxlen: 24
195.91.223.0/24 maxlen: 24
195.91.224.0/24 maxlen: 24
195.91.220.0/24 maxlen: 24
195.91.221.0/24 maxlen: 24
195.91.225.0/24 maxlen: 24
195.91.226.0/24 maxlen: 24
195.91.232.0/24 maxlen: 24
195.91.233.0/24 maxlen: 24
195.91.229.0/24 maxlen: 24
195.91.230.0/24 maxlen: 24
195.91.231.0/24 maxlen: 24
195.91.228.0/24 maxlen: 24
195.91.236.0/24 maxlen: 24
195.91.237.0/24 maxlen: 24
195.91.238.0/24 maxlen: 24
195.91.234.0/24 maxlen: 24
195.91.235.0/24 maxlen: 24
195.91.239.0/24 maxlen: 24
195.91.240.0/24 maxlen: 24
195.91.246.0/24 maxlen: 24
195.91.243.0/24 maxlen: 24
195.91.244.0/24 maxlen: 24
195.91.245.0/24 maxlen: 24
195.91.241.0/24 maxlen: 24
195.91.242.0/24 maxlen: 24
195.91.247.0/24 maxlen: 24
86.62.75.0/24 maxlen: 24
195.91.149.0/24 maxlen: 24
195.91.148.0/24 maxlen: 24
195.91.156.0/24 maxlen: 24
195.91.160.0/24 maxlen: 24
195.91.168.0/24 maxlen: 24
195.91.169.0/24 maxlen: 24
195.91.170.0/24 maxlen: 24
195.91.171.0/24 maxlen: 24
195.91.172.0/24 maxlen: 24
195.91.173.0/24 maxlen: 24
195.91.174.0/24 maxlen: 24
195.91.175.0/24 maxlen: 24
195.91.184.0/24 maxlen: 24
195.91.133.0/24 maxlen: 24
2a02:2698:9800::/38 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:7c:60:ba:27:c9:bc:7f:b2:42:41:8c:e1:e9:fe:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: May 12 10:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97f4e6a075f581fc016a4d7cf07bbd32d47b5db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:75:cb:53:8b:4f:3e:8f:85:98:42:b1:5a:
b9:a0:a4:68:95:49:ef:a0:a7:28:e8:e1:84:16:67:
5a:f6:0a:94:ad:1f:94:67:77:54:84:f6:1b:aa:12:
2c:c8:63:bf:77:e8:ed:9f:3f:41:95:50:42:cc:de:
90:32:6b:19:50:af:2b:89:d0:ca:ad:ba:f4:b2:10:
f5:dd:68:fb:c5:bd:6c:03:00:ae:d5:5c:0f:a4:7f:
c3:08:80:bc:ff:21:c1:0f:80:06:7a:f9:22:de:47:
21:06:e3:e0:b3:29:19:5a:48:df:42:b4:65:33:21:
bb:c1:cf:17:f6:fe:a6:af:ca:5c:e7:8e:4c:b6:60:
6a:b0:83:c2:b5:fc:55:04:7c:bc:58:5f:c6:a9:cc:
c4:31:96:72:9a:29:4c:67:eb:bf:94:9f:94:4f:16:
6d:bc:44:3f:7e:a8:39:ac:e1:11:e2:3c:16:1c:70:
08:93:0d:13:6a:2a:a7:10:0a:be:75:07:ef:88:4b:
ae:d0:73:04:50:82:a9:0b:b7:b9:19:2c:2e:2a:88:
e4:4c:4e:2a:6a:e0:06:dc:eb:18:7a:6f:49:dd:a2:
50:d5:82:a2:ae:99:04:72:87:11:ec:1d:e5:57:0d:
3d:50:05:dc:46:10:2c:09:fb:2f:1f:4a:60:8e:d1:
f9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F4:E6:A0:75:F5:81:FC:01:6A:4D:7C:F0:7B:BD:32:D4:7B:5D:B4
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/l_TmoHX1gfwBak188Hu9MtR7XbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.75.0/24
86.62.84.0/24
86.62.92.0/24
86.62.96.0/24
86.62.102.0/24
86.62.125.0/24
195.91.133.0/24
195.91.148.0/23
195.91.156.0/24
195.91.160.0/24
195.91.168.0/21
195.91.184.0/24
195.91.208.0/22
195.91.213.0/24
195.91.215.0/24
195.91.217.0-195.91.226.255
195.91.228.0-195.91.247.255
195.91.254.0/23
IPv6:
2a02:2698:9800::/38
Signature Algorithm: sha256WithRSAEncryption
09:13:25:69:40:56:ad:a7:09:b3:fc:9d:2b:17:da:f9:2c:3f:
46:66:14:93:09:e9:7e:51:4f:96:18:e2:f7:2b:1d:f6:d3:2a:
a6:e8:ee:3c:87:c5:83:29:dc:fc:11:01:42:cb:eb:93:2e:c1:
3a:16:ed:a0:e6:97:68:cf:cc:46:31:89:37:a3:cb:7a:87:41:
4a:59:f4:a5:bd:2e:63:6a:79:cf:f1:b3:b0:dc:69:90:c5:0e:
63:1f:91:f8:6f:f9:46:a6:a9:4a:c9:5f:2e:93:b3:84:15:32:
5e:87:73:90:d8:d7:64:bf:78:07:92:69:0a:bf:83:39:09:b1:
5b:bc:99:2c:e5:3a:1c:40:e0:14:22:fa:97:ac:93:02:dd:b8:
65:62:ae:82:1f:17:bb:1e:47:80:32:76:9c:93:9d:5f:4c:94:
e7:4b:66:b0:e8:70:e4:0b:2f:76:e5:53:94:32:81:47:e5:6d:
61:d2:54:7b:ae:e4:9a:ba:7a:a7:50:d9:15:c2:d8:f2:0a:5e:
a9:50:76:a1:a4:1e:9c:aa:1c:08:31:c4:17:8e:4c:a4:dc:fe:
9c:fe:3c:0a:ae:5f:32:f0:b4:0e:0b:07:21:22:d7:8d:27:a4:
e0:f7:b0:79:5e:5a:cb:90:83:54:7f:04:dd:af:4a:88:dd:86:
59:fa:0d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:48 2023 by rpki-client on console.sobornost.net