Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/_x_bVbdLFanFCF5oIhlqsnuJtGg.roa
File: _x_bVbdLFanFCF5oIhlqsnuJtGg.roa (raw, json)
Hash identifier: yjfbY24es1DMVRi/7F3hD/cRc+lZTc+Uag9r04wMFVc=
Subject key identifier: FF:1F:DB:55:B7:4B:15:A9:C5:08:5E:68:22:19:6A:B2:7B:89:B4:68
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 018924ED2E94519D3CBC4782DC5AB0F45CDF
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/_x_bVbdLFanFCF5oIhlqsnuJtGg.roa
Signing time: Wed 05 Jul 2023 07:21:10 +0000
ROA not before: Wed 05 Jul 2023 07:21:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 195.238.244.0/24 maxlen: 24
37.26.224.0/24 maxlen: 24
37.26.226.0/24 maxlen: 24
37.26.225.0/24 maxlen: 24
37.26.231.0/24 maxlen: 24
37.26.230.0/24 maxlen: 24
37.26.229.0/24 maxlen: 24
37.26.228.0/24 maxlen: 24
37.26.227.0/24 maxlen: 24
63.247.206.0/24 maxlen: 24
63.247.205.0/24 maxlen: 24
63.247.204.0/24 maxlen: 24
63.247.203.0/24 maxlen: 24
63.247.202.0/24 maxlen: 24
63.247.201.0/24 maxlen: 24
63.247.200.0/24 maxlen: 24
63.247.207.0/24 maxlen: 24
91.103.17.0/24 maxlen: 24
91.103.16.0/24 maxlen: 24
91.103.19.0/24 maxlen: 24
91.103.18.0/24 maxlen: 24
91.103.23.0/24 maxlen: 24
91.103.21.0/24 maxlen: 24
86.48.221.0/24 maxlen: 24
86.48.220.0/24 maxlen: 24
86.48.240.0/24 maxlen: 24
185.62.118.0/24 maxlen: 24
185.62.117.0/24 maxlen: 24
185.62.116.0/24 maxlen: 24
63.247.192.0/24 maxlen: 24
185.62.119.0/24 maxlen: 24
63.247.199.0/24 maxlen: 24
63.247.198.0/24 maxlen: 24
63.247.197.0/24 maxlen: 24
63.247.196.0/24 maxlen: 24
63.247.195.0/24 maxlen: 24
63.247.194.0/24 maxlen: 24
63.247.193.0/24 maxlen: 24
45.93.85.0/24 maxlen: 24
45.93.84.0/24 maxlen: 24
45.93.87.0/24 maxlen: 24
193.160.135.0/24 maxlen: 24
193.160.134.0/24 maxlen: 24
45.81.223.0/24 maxlen: 24
45.81.222.0/24 maxlen: 24
45.81.221.0/24 maxlen: 24
45.81.220.0/24 maxlen: 24
45.95.219.0/24 maxlen: 24
45.95.218.0/24 maxlen: 24
45.95.217.0/24 maxlen: 24
45.95.216.0/24 maxlen: 24
5.253.89.0/24 maxlen: 24
5.253.88.0/24 maxlen: 24
5.253.91.0/24 maxlen: 24
5.253.90.0/24 maxlen: 24
45.94.190.0/24 maxlen: 24
216.172.64.0/24 maxlen: 24
216.172.67.0/24 maxlen: 24
216.172.66.0/24 maxlen: 24
216.172.65.0/24 maxlen: 24
216.172.71.0/24 maxlen: 24
216.172.70.0/24 maxlen: 24
216.172.69.0/24 maxlen: 24
216.172.68.0/24 maxlen: 24
216.172.74.0/24 maxlen: 24
216.172.73.0/24 maxlen: 24
216.172.72.0/24 maxlen: 24
216.172.78.0/24 maxlen: 24
216.172.77.0/24 maxlen: 24
216.172.76.0/24 maxlen: 24
216.172.75.0/24 maxlen: 24
216.172.79.0/24 maxlen: 24
2a00:cb8:971::/48 maxlen: 48
2a00:cb8:31::/48 maxlen: 48
2a00:cb8:34::/48 maxlen: 48
2a00:cb8:48::/48 maxlen: 48
2a00:cb8:41::/48 maxlen: 48
2a00:cb8:44::/48 maxlen: 48
2a00:cb8:144::/48 maxlen: 48
2a00:cb8:33::/48 maxlen: 48
2a00:cb8:39::/48 maxlen: 48
2a00:cb8:49::/48 maxlen: 48
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:24:ed:2e:94:51:9d:3c:bc:47:82:dc:5a:b0:f4:5c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Jul 5 07:21:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff1fdb55b74b15a9c5085e6822196ab27b89b468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:51:78:14:d8:b0:c8:a9:65:52:9e:23:a2:0b:
71:0b:90:29:53:33:56:94:2d:0e:fe:31:bb:6e:a8:
bc:93:bd:5f:47:e8:fc:30:bf:23:72:0f:6e:94:e2:
86:0a:2b:0e:35:c6:f9:e1:b5:71:64:f7:cd:f6:6b:
ef:df:5e:46:e6:1d:26:d4:03:db:eb:f1:98:01:68:
8b:46:77:43:42:cb:42:85:3b:b5:b8:47:ad:ea:2a:
97:80:2f:65:76:c7:9e:d9:3f:67:19:e9:b2:d3:66:
51:85:a1:cb:f2:b4:dc:dd:05:41:a3:b3:63:2f:13:
9d:9d:d5:ac:11:5a:3d:4e:49:53:82:57:03:8d:a6:
47:ae:2f:30:d3:59:83:56:63:27:0c:a6:8c:48:a4:
80:8f:21:30:6a:8c:d9:58:2f:70:8e:14:22:cb:f5:
d0:88:31:59:fd:c8:4a:23:0e:d8:f7:1f:51:36:5f:
a0:77:8a:35:b5:7f:73:09:e8:bd:16:ae:d7:a1:ce:
b9:df:4c:db:51:d5:a6:a2:3b:2d:44:20:ea:2a:90:
ba:d9:85:56:4b:dc:02:62:27:7e:85:78:4f:9f:5b:
b2:55:ad:32:95:53:fb:74:3c:78:0f:d4:db:3c:76:
f3:be:3e:33:52:c8:f7:53:7d:93:92:de:a5:1b:d8:
3a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1F:DB:55:B7:4B:15:A9:C5:08:5E:68:22:19:6A:B2:7B:89:B4:68
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/_x_bVbdLFanFCF5oIhlqsnuJtGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.88.0/22
37.26.224.0/21
45.81.220.0/22
45.93.84.0/23
45.93.87.0/24
45.94.190.0/24
45.95.216.0/22
63.247.192.0/20
86.48.220.0/23
86.48.240.0/24
91.103.16.0/22
91.103.21.0/24
91.103.23.0/24
185.62.116.0/22
193.160.134.0/23
195.238.244.0/24
216.172.64.0/20
IPv6:
2a00:cb8:31::/48
2a00:cb8:33::-2a00:cb8:34:ffff:ffff:ffff:ffff:ffff
2a00:cb8:39::/48
2a00:cb8:41::/48
2a00:cb8:44::/48
2a00:cb8:48::/47
2a00:cb8:144::/48
2a00:cb8:353::/48
2a00:cb8:971::/48
Signature Algorithm: sha256WithRSAEncryption
95:64:0f:aa:04:ff:2a:31:13:33:b5:97:7f:63:9c:30:ac:de:
25:fe:40:55:f0:bb:e9:32:81:d8:ba:20:e1:30:7d:56:f7:8a:
ac:96:d5:3a:e4:1f:f5:dd:33:41:14:bf:75:94:d8:32:aa:ae:
e8:59:3b:63:08:93:94:e3:9d:dc:67:77:62:ab:e3:88:62:b1:
3f:98:c6:ce:4b:f5:f8:76:c3:3f:37:f7:6d:c9:bd:8a:f1:2a:
a2:a6:0e:3a:dd:1b:96:df:98:8a:a2:1c:a0:ed:cd:90:e5:16:
fa:23:51:1e:13:5a:8e:16:37:cb:a8:6d:9c:96:2c:e9:2f:47:
44:40:01:3b:58:26:61:07:60:d4:c0:be:bf:1a:28:2c:0c:91:
66:77:90:5b:89:15:a3:20:f0:05:a9:4e:f6:f7:24:79:b6:ee:
2c:2e:06:3a:34:3e:6f:df:91:62:71:cd:b0:e6:02:e8:bd:88:
15:18:78:62:62:d5:bb:b8:ee:44:44:32:d1:26:bf:3e:af:1b:
3d:f5:4a:db:3c:cd:45:53:4d:54:ff:25:8c:4a:56:06:b0:09:
5c:83:f1:53:3d:fb:75:bf:c2:e2:d1:b1:98:34:88:e6:71:de:
52:c5:04:f1:85:f1:81:de:f8:88:d1:3a:35:e2:83:49:74:00:
b6:f9:1c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:37 2023 by rpki-client on console.sobornost.net