Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/c_SRxXMetfE0DmSKCwkHpx0x5VE.roa
File: c_SRxXMetfE0DmSKCwkHpx0x5VE.roa (raw, json)
Hash identifier: T6e5MjO/9Nqmqr9YFf4IH3+TTKFMjO2PUau0e18Hxz8=
Subject key identifier: 73:F4:91:C5:73:1E:B5:F1:34:0E:64:8A:0B:09:07:A7:1D:31:E5:51
Certificate issuer: /CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Certificate serial: 0185719E6A192D2EE9E3FD49454004617A64
Authority key identifier: 9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/c_SRxXMetfE0DmSKCwkHpx0x5VE.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20676
IP address blocks: 194.9.127.0/24 maxlen: 24
92.201.128.0/17 maxlen: 17
212.202.0.0/19 maxlen: 19
195.80.192.0/19 maxlen: 19
185.144.188.0/22 maxlen: 22
212.202.0.0/16 maxlen: 16
212.110.192.0/19 maxlen: 19
84.245.128.0/18 maxlen: 18
92.195.0.0/17 maxlen: 17
62.8.168.0/21 maxlen: 21
62.8.176.0/20 maxlen: 20
92.194.0.0/17 maxlen: 17
213.160.0.0/19 maxlen: 19
213.217.64.0/18 maxlen: 18
212.5.16.0/20 maxlen: 20
92.200.128.0/17 maxlen: 17
62.8.128.0/17 maxlen: 17
85.8.132.0/22 maxlen: 22
195.90.0.0/19 maxlen: 19
195.90.8.0/21 maxlen: 21
92.194.128.0/17 maxlen: 17
212.63.32.0/19 maxlen: 19
92.197.130.0/24 maxlen: 24
195.32.128.0/17 maxlen: 17
194.140.96.0/20 maxlen: 20
92.201.0.0/17 maxlen: 17
92.196.128.0/17 maxlen: 17
62.206.164.0/24 maxlen: 24
62.206.165.0/24 maxlen: 24
62.206.166.0/24 maxlen: 24
92.193.0.0/17 maxlen: 17
87.193.0.0/16 maxlen: 16
92.193.128.0/17 maxlen: 17
87.234.0.0/16 maxlen: 16
212.5.0.0/19 maxlen: 19
217.146.128.0/19 maxlen: 19
212.5.8.0/21 maxlen: 21
212.4.160.0/19 maxlen: 19
92.200.0.0/17 maxlen: 17
212.4.176.0/20 maxlen: 20
92.200.0.0/15 maxlen: 15
212.105.192.0/19 maxlen: 19
92.192.0.0/13 maxlen: 13
83.236.0.0/20 maxlen: 20
83.236.0.0/16 maxlen: 16
83.236.16.0/20 maxlen: 20
213.148.129.0/24 maxlen: 24
213.148.130.0/24 maxlen: 24
213.148.128.0/24 maxlen: 24
213.148.128.0/19 maxlen: 19
195.158.160.0/19 maxlen: 19
213.148.133.0/24 maxlen: 24
83.236.32.0/21 maxlen: 21
92.192.0.0/17 maxlen: 17
92.198.192.0/18 maxlen: 18
212.202.40.0/21 maxlen: 21
212.202.48.0/20 maxlen: 20
212.60.192.0/18 maxlen: 18
92.195.128.0/17 maxlen: 17
62.145.0.0/19 maxlen: 19
92.196.0.0/17 maxlen: 17
212.84.224.0/19 maxlen: 19
92.192.128.0/17 maxlen: 17
62.206.0.0/16 maxlen: 16
212.202.168.0/21 maxlen: 21
212.202.176.0/20 maxlen: 20
212.84.208.0/20 maxlen: 20
2001:1a80:800::/48 maxlen: 48
2001:658::/29 maxlen: 29
2001:1a80:801::/48 maxlen: 48
2001:1a81:2000::/36 maxlen: 40
2001:1a81:4000::/36 maxlen: 40
2001:1a81:3000::/36 maxlen: 40
2001:1a81:6000::/40 maxlen: 48
2001:1a81:1000::/40 maxlen: 48
2001:1a81:1000::/36 maxlen: 40
2001:1a81:6000::/36 maxlen: 40
2001:1a81:4000::/40 maxlen: 48
2001:1a81:7000::/40 maxlen: 48
2001:1a81:5000::/36 maxlen: 40
2001:1a81:7000::/36 maxlen: 40
2001:1a81:5000::/40 maxlen: 48
2001:1a81:2000::/40 maxlen: 48
2001:1a81:3000::/40 maxlen: 48
2001:1a80:802::/48 maxlen: 48
2001:1a80::/29 maxlen: 29
2a09:7100::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6a:19:2d:2e:e9:e3:fd:49:45:40:04:61:7a:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73f491c5731eb5f1340e648a0b0907a71d31e551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:19:a4:31:ee:00:46:cb:b8:26:52:fd:d9:95:
bc:96:6d:0a:b6:9b:9f:90:8c:be:35:49:12:47:2e:
89:cd:bf:da:03:0e:26:b4:36:2a:df:61:8c:10:12:
dc:0a:df:4b:e0:88:f5:8e:d3:98:cd:25:45:18:c8:
03:7c:94:66:5a:82:49:b1:b7:2b:97:35:b6:0a:b9:
ec:c0:ad:e5:ab:6c:8b:01:07:18:e7:96:3e:8c:ae:
4d:0e:2e:b1:b2:72:dc:42:ba:dd:50:9a:e8:22:59:
dd:dc:b5:04:e7:36:e0:41:c2:47:87:6d:40:f9:91:
74:99:57:3b:4a:2e:24:8b:3b:25:08:39:12:41:b8:
d6:b8:52:09:c8:8e:3b:9c:0c:cf:8a:d9:78:e7:fc:
84:2b:b9:89:70:e7:91:99:3b:ae:1a:e6:80:c1:59:
5a:21:aa:28:4a:f1:59:a4:e8:3d:af:04:2d:65:f4:
a9:e9:62:01:ff:d0:4c:11:50:86:9d:0d:e4:11:0e:
7a:92:a6:f6:66:7b:71:ae:5d:8d:94:71:73:c1:92:
02:6e:a7:78:e8:d1:be:9e:8c:36:b0:fc:95:81:56:
a8:24:e3:36:26:45:72:74:e7:bb:e0:4d:f0:54:3b:
94:75:b4:81:a6:c4:77:e1:f9:88:0d:68:62:03:15:
17:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F4:91:C5:73:1E:B5:F1:34:0E:64:8A:0B:09:07:A7:1D:31:E5:51
X509v3 Authority Key Identifier:
keyid:9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/c_SRxXMetfE0DmSKCwkHpx0x5VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/nQZsuEiNrn5CNKp8iSQw2tEf5bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.8.128.0/17
62.145.0.0/19
62.206.0.0/16
83.236.0.0/16
84.245.128.0/18
85.8.132.0/22
87.193.0.0/16
87.234.0.0/16
92.192.0.0-92.201.255.255
185.144.188.0/22
194.9.127.0/24
194.140.96.0/20
195.32.128.0/17
195.80.192.0/19
195.90.0.0/19
195.158.160.0/19
212.4.160.0/19
212.5.0.0/19
212.60.192.0/18
212.63.32.0/19
212.84.208.0-212.84.255.255
212.105.192.0/19
212.110.192.0/19
212.202.0.0/16
213.148.128.0/19
213.160.0.0/19
213.217.64.0/18
217.146.128.0/19
IPv6:
2001:658::/29
2001:1a80::/29
2a09:7100::/29
Signature Algorithm: sha256WithRSAEncryption
19:81:4b:16:a5:41:71:1c:a2:50:7d:9d:95:a9:d2:a8:34:b9:
2f:8e:4b:2b:bd:f7:aa:13:4f:df:6b:0d:94:34:11:65:c3:74:
80:be:93:e6:34:9c:ba:1d:96:79:0a:8d:3b:d9:eb:46:20:36:
cf:09:48:06:bc:67:52:a8:bc:76:40:75:d4:37:0e:24:b7:7e:
a3:c6:92:1f:ff:fd:3f:9d:b3:59:eb:e9:ca:56:c3:7b:9f:ca:
b2:76:83:96:98:d4:a9:8d:6b:59:c3:09:1d:4b:fd:85:ef:99:
2c:a7:80:6f:17:b0:5b:ab:25:4b:fa:d6:96:04:81:62:66:80:
3e:d8:ae:30:53:14:da:9e:f0:5d:97:86:7d:cc:8b:e8:01:e7:
04:cd:0c:04:8d:8a:b3:76:06:4a:24:a3:e8:b9:87:1c:5b:13:
d3:98:7f:dc:87:b8:f2:fd:15:0e:f5:09:66:ef:80:2b:35:b7:
cf:77:9c:c3:09:dd:fd:5c:69:41:ca:7f:7d:83:e9:b3:8b:98:
a2:0b:4a:d2:8d:f4:4a:f7:fc:93:bc:b8:5c:c4:e7:eb:de:28:
fe:dd:4a:a3:1b:4e:ac:dc:a5:1a:3f:ea:cb:c0:7b:22:19:d9:
a3:16:85:af:7f:fd:6f:80:33:bc:ba:14:1e:fa:29:50:d8:13:
02:ce:5a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:22 2023 by rpki-client on console.sobornost.net