Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Vt3usL13tZjwa8ev8PvGpGzXCaw.roa
File: Vt3usL13tZjwa8ev8PvGpGzXCaw.roa (raw, json)
Hash identifier: oJNMMMMOdbZdRPTyN5xnfRKAX0AEo2ARQmxqITVCVD8=
Subject key identifier: 56:DD:EE:B0:BD:77:B5:98:F0:6B:C7:AF:F0:FB:C6:A4:6C:D7:09:AC
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018A546B7AA4AB812EC12DC8322685AF754D
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Vt3usL13tZjwa8ev8PvGpGzXCaw.roa
Signing time: Sat 02 Sep 2023 05:44:04 +0000
ROA not before: Sat 02 Sep 2023 05:44:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.134.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
37.49.144.0/21 maxlen: 24
37.49.144.0/22 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:54:6b:7a:a4:ab:81:2e:c1:2d:c8:32:26:85:af:75:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 2 05:44:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56ddeeb0bd77b598f06bc7aff0fbc6a46cd709ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:69:0b:e5:cc:58:9d:e7:49:01:e9:03:47:db:
ab:df:56:73:ce:bd:14:f1:8d:ee:03:37:20:09:58:
7f:23:14:bc:95:37:0f:5a:30:ce:52:f2:7e:51:1e:
3d:63:e8:14:a6:ce:10:a7:30:96:01:71:f7:99:40:
db:d5:af:db:9a:96:8e:a2:e8:8a:19:8c:69:9f:40:
a5:1d:d7:dc:c4:c3:94:73:84:28:4d:b3:17:ec:22:
30:37:e5:b8:d8:da:31:db:d3:17:38:c7:8a:46:e9:
b4:65:94:0c:e3:96:ad:23:ee:af:18:1e:6d:94:41:
de:51:0d:5f:b9:92:33:70:4a:e5:fd:6d:37:f2:86:
9c:41:4f:1d:1b:87:e6:b7:38:f5:99:04:5b:67:4c:
e7:50:88:62:70:86:d5:93:55:fb:09:3d:c8:18:d0:
a3:70:d9:e8:9f:6a:56:11:af:04:36:db:1a:43:cd:
3c:a8:cd:f9:bb:db:2b:77:e8:1c:73:e4:0e:d5:dc:
5c:ee:16:a3:7c:d4:1a:55:17:ca:2e:cb:05:4c:b3:
a8:de:4a:0c:08:f0:5f:35:0e:83:3a:dc:a8:09:61:
2d:b8:66:c6:87:71:d8:7d:65:94:08:f2:ab:e2:2b:
fe:a6:4b:d8:fc:1c:fc:a3:e4:ad:76:eb:38:43:59:
65:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DD:EE:B0:BD:77:B5:98:F0:6B:C7:AF:F0:FB:C6:A4:6C:D7:09:AC
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/Vt3usL13tZjwa8ev8PvGpGzXCaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/21
94.74.137.0/24
94.74.156.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0/24
176.46.130.0-176.46.132.255
176.46.134.0/24
176.46.136.0/24
176.46.138.0-176.46.140.255
176.46.143.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f7:f4:ff:88:c6:85:00:df:da:53:f1:07:24:5c:59:25:60:
48:69:be:01:bf:eb:f4:33:23:b1:c3:76:21:48:d0:51:ca:e6:
71:e7:23:a0:9b:f5:0b:a7:a2:49:56:55:91:41:ca:6d:57:77:
b2:c5:d9:b8:49:38:85:98:a6:7c:40:c1:ca:50:b3:e1:2d:93:
be:b2:7d:4a:6c:f5:2a:f4:ac:36:14:88:eb:72:20:e2:5e:73:
79:0e:a1:34:08:0d:b5:3f:7b:24:ab:82:e6:b1:04:ae:b2:8c:
5a:93:40:af:04:a5:ce:5e:23:da:9c:62:c5:a9:4d:4a:92:a5:
87:ab:24:1a:0e:1e:ba:96:57:1b:79:f4:33:0e:a4:2b:70:58:
a5:8d:31:95:e5:aa:aa:79:b0:b4:8f:65:42:e2:44:ff:e1:e6:
d2:a0:58:07:26:96:bd:6d:2b:56:dc:4d:9f:7e:2b:e5:62:ed:
f9:3f:49:3d:1a:11:48:18:14:e1:c3:c1:94:c2:78:a0:93:c3:
4c:8f:e6:d2:99:bf:49:4f:cc:1b:2d:79:1d:e9:7e:08:b5:d0:
d3:96:80:ff:ee:ad:98:46:0d:70:f4:2a:92:61:87:79:f4:6c:
2e:ab:3e:3d:e4:75:49:c3:5b:9a:d2:cd:93:96:b6:8e:3c:f7:
35:a9:83:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net