Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/GDESUdu32ssY26tviCUEo_DgroY.roa
File: GDESUdu32ssY26tviCUEo_DgroY.roa (raw, json)
Hash identifier: jYpUYyZKVviKnMU4P4JRWS6Ie9tneqQJ7woJbLr/zXY=
Subject key identifier: 18:31:12:51:DB:B7:DA:CB:18:DB:AB:6F:88:25:04:A3:F0:E0:AE:86
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018BFB0D19D8BDFA8D95700E21CE51AF8AD1
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/GDESUdu32ssY26tviCUEo_DgroY.roa
Signing time: Thu 23 Nov 2023 07:20:21 +0000
ROA not before: Thu 23 Nov 2023 07:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 176.46.145.0/24 maxlen: 24
176.46.147.0/24 maxlen: 24
31.170.55.0/24 maxlen: 24
109.203.162.0/24 maxlen: 24
109.203.164.0/24 maxlen: 24
109.203.165.0/24 maxlen: 24
109.203.166.0/24 maxlen: 24
37.49.144.0/24 maxlen: 24
109.203.167.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.168.0/24 maxlen: 24
94.74.169.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:fb:0d:19:d8:bd:fa:8d:95:70:0e:21:ce:51:af:8a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Nov 23 07:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18311251dbb7dacb18dbab6f882504a3f0e0ae86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ec:2f:68:34:c2:ae:e2:4e:26:bb:11:79:b7:
8d:2a:be:de:24:06:15:cf:bf:04:b7:73:bc:fb:d3:
1d:89:3a:46:27:61:af:84:e4:f3:75:c3:7c:e9:31:
ac:ab:59:c4:aa:73:bf:00:fb:6e:73:48:59:07:5e:
1e:37:aa:aa:a6:68:90:ab:7d:07:c5:ce:ff:dd:13:
3d:d2:0a:69:ce:67:87:9a:c2:ad:5a:72:2b:ba:82:
f8:99:ba:70:cc:7b:58:74:c0:07:64:ed:a8:f3:df:
66:29:f3:61:87:e1:d5:29:03:ae:ea:97:5c:08:c4:
d6:98:20:21:ef:17:d8:a8:de:e8:d1:58:35:5f:65:
e1:32:e8:2e:48:33:17:7a:ca:ed:61:fe:99:3d:b1:
42:c6:9c:de:f3:be:ef:d7:f3:d2:ec:b3:b3:38:6e:
92:e7:01:bf:fc:ee:92:e5:25:ef:02:2e:fa:d3:19:
4b:81:7a:7d:7e:4f:53:4d:2b:04:bf:6c:46:c5:4b:
b8:0e:1e:cc:8e:c0:eb:cd:45:cb:23:a5:d7:45:d1:
9c:43:cf:1b:d4:12:e5:13:ef:1d:f3:52:45:52:8f:
b7:05:34:cb:06:bc:9a:29:d9:46:0c:d5:54:ad:5c:
2a:b8:8b:1e:09:2b:59:3a:b8:33:e6:25:57:99:bb:
24:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:31:12:51:DB:B7:DA:CB:18:DB:AB:6F:88:25:04:A3:F0:E0:AE:86
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/GDESUdu32ssY26tviCUEo_DgroY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
37.49.144.0/24
37.49.146.0/24
37.49.148.0/22
94.74.158.0/23
94.74.168.0/23
94.74.173.0/24
109.203.162.0/24
109.203.164.0/22
176.46.145.0/24
176.46.147.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:15:4a:3b:96:e6:55:c5:36:0f:e5:e3:2a:d8:21:9c:a9:5e:
41:7b:64:c6:b5:7d:89:9d:7d:e9:93:68:9b:da:7f:3f:07:01:
a1:ee:dd:49:8b:d1:7b:fd:b6:b9:92:5f:b9:75:bf:9e:a4:5f:
6f:e8:81:67:92:f4:d5:1c:c6:fb:51:cf:33:c8:b2:95:d4:6b:
33:59:e3:3b:35:4b:27:e8:18:a5:02:bb:9f:69:7a:fa:9b:2f:
10:e1:f3:f0:d9:5f:1e:e2:e6:5b:02:8d:e9:06:c7:95:c3:6b:
14:66:c1:62:a0:48:21:99:4c:e2:3d:2a:5d:d4:37:74:5d:ee:
8c:d0:78:44:38:b4:4e:79:05:c4:f1:4b:d6:7b:9a:cc:6c:55:
7d:74:af:eb:90:57:ba:97:ac:99:e0:52:e7:2f:13:39:05:1d:
83:ce:55:e9:67:d2:51:ab:e2:17:ac:67:71:6f:e0:d7:15:13:
30:30:50:81:fa:38:42:61:40:8a:e5:13:7f:43:2f:ff:b7:ed:
c9:e3:10:2f:e5:fa:80:41:6b:bc:be:29:b4:c0:1f:3e:bd:ca:
dd:fa:03:77:18:bf:bd:7f:ab:4e:c8:81:ea:11:30:4b:3b:0b:
fd:dd:0d:10:ac:71:58:a7:bc:67:cf:6c:df:75:93:9e:9f:f4:
e2:ef:d5:91
-----BEGIN CERTIFICATE-----
MIIFOTCCBCGgAwIBAgISAYv7DRnYvfqNlXAOIc5Rr4rRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx
ZjQ1ZjcwHhcNMjMxMTIzMDcyMDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODMxMTI1MWRiYjdkYWNiMThkYmFiNmY4ODI1MDRhM2YwZTBhZTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+wvaDTCruJOJrsRebeNKr7eJAYV
z78Et3O8+9MdiTpGJ2GvhOTzdcN86TGsq1nEqnO/APtuc0hZB14eN6qqpmiQq30H
xc7/3RM90gppzmeHmsKtWnIruoL4mbpwzHtYdMAHZO2o899mKfNhh+HVKQOu6pdc
CMTWmCAh7xfYqN7o0Vg1X2XhMuguSDMXesrtYf6ZPbFCxpze877v1/PS7LOzOG6S
5wG//O6S5SXvAi760xlLgXp9fk9TTSsEv2xGxUu4Dh7MjsDrzUXLI6XXRdGcQ88b
1BLlE+8d81JFUo+3BTTLBryaKdlGDNVUrVwquIseCStZOrgz5iVXmbskZwIDAQAB
o4ICRTCCAkEwHQYDVR0OBBYEFBgxElHbt9rLGNurb4glBKPw4K6GMB8GA1UdIwQY
MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt
NDk2ZjhlYmIyZDYxLzEvR0RFU1VkdTMyc3NZMjZ0dmlDVUVvX0Rncm9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx
LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQAH6o3AwQA
JTGQAwQAJTGSAwQCJTGUAwQBXkqeAwQBXkqoAwQAXkqtAwQAbcuiAwQCbcukAwQA
sC6RAwQAsC6TMA0GCSqGSIb3DQEBCwUAA4IBAQCkFUo7luZVxTYP5eMq2CGcqV5B
e2TGtX2JnX3pk2ib2n8/BwGh7t1Ji9F7/ba5kl+5db+epF9v6IFnkvTVHMb7Uc8z
yLKV1GszWeM7NUsn6BilArufaXr6my8Q4fPw2V8e4uZbAo3pBseVw2sUZsFioEgh
mUziPSpd1Dd0Xe6M0HhEOLROeQXE8UvWe5rMbFV9dK/rkFe6l6yZ4FLnLxM5BR2D
zlXpZ9JRq+IXrGdxb+DXFRMwMFCB+jhCYUCK5RN/Qy//t+3J4xAv5fqAQWu8vim0
wB8+vcrd+gN3GL+9f6tOyIHqETBLOwv93Q0QrHFYp7xnz2zfdZOen/Ti79WR
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net