Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZxLbD3ASLcVh6ufvCfLJV7dTsO4.roa
File: ZxLbD3ASLcVh6ufvCfLJV7dTsO4.roa (raw, json)
Hash identifier: HTUF3Im79E2DmWH7yyzvHBHhIRKvYL9HBdBptwE4RPM=
Subject key identifier: 67:12:DB:0F:70:12:2D:C5:61:EA:E7:EF:09:F2:C9:57:B7:53:B0:EE
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018B1D6F4F0C6806E643EC9996AFAA589ED8
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZxLbD3ASLcVh6ufvCfLJV7dTsO4.roa
Signing time: Wed 11 Oct 2023 06:31:55 +0000
ROA not before: Wed 11 Oct 2023 06:31:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 176.46.134.0/24 maxlen: 24
176.46.139.0/24 maxlen: 24
176.46.136.0/24 maxlen: 24
176.46.138.0/24 maxlen: 24
176.46.143.0/24 maxlen: 24
176.46.140.0/24 maxlen: 24
176.46.132.0/24 maxlen: 24
176.46.130.0/24 maxlen: 24
176.46.131.0/24 maxlen: 24
176.46.128.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
109.203.164.0/22 maxlen: 24
109.203.160.0/22 maxlen: 24
37.49.144.0/24 maxlen: 24
37.49.146.0/24 maxlen: 24
37.49.151.0/24 maxlen: 24
37.49.150.0/24 maxlen: 24
37.49.149.0/24 maxlen: 24
37.49.148.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:6f:4f:0c:68:06:e6:43:ec:99:96:af:aa:58:9e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Oct 11 06:31:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6712db0f70122dc561eae7ef09f2c957b753b0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c8:2b:01:c3:a6:10:23:86:e4:9a:a7:72:b0:
c6:e8:6e:17:dc:36:f5:27:83:8d:84:ae:87:6b:04:
c9:5e:3c:ce:aa:18:d8:b0:1d:be:52:de:1f:27:ec:
49:e1:3a:c3:16:ab:70:07:47:7f:18:94:db:69:7a:
57:f3:27:f0:16:76:11:64:2d:ec:23:dc:0b:10:d9:
6f:47:51:f2:79:62:b8:ae:3a:dc:bf:9c:7d:0b:a3:
52:1c:37:a2:38:ed:a7:d4:11:01:81:74:7d:bc:dd:
36:75:36:f6:21:14:6b:52:0a:26:bf:ed:fd:cc:5b:
c3:5a:2f:c3:95:a8:a4:e1:b5:69:22:d3:30:d5:8a:
d2:e1:04:30:f4:58:0f:48:a6:65:de:08:b8:64:c7:
69:87:fe:e9:aa:5e:ce:14:d7:c1:37:49:80:39:15:
58:ef:4d:51:03:cd:d4:96:bd:bc:b8:e2:6e:b1:5d:
0a:d3:70:9f:0b:16:fd:bc:32:71:4a:48:52:2c:e7:
7b:d5:a9:be:95:27:22:de:3c:24:a7:4f:4d:db:ea:
2a:9a:14:d1:69:56:5f:df:0f:35:55:df:f7:8f:6d:
63:58:fa:4a:99:80:da:0e:1c:04:f2:d9:23:47:6f:
ed:09:fd:fb:3a:ba:16:7d:20:8b:19:40:4f:83:03:
bf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:12:DB:0F:70:12:2D:C5:61:EA:E7:EF:09:F2:C9:57:B7:53:B0:EE
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ZxLbD3ASLcVh6ufvCfLJV7dTsO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.49.144.0/24
37.49.146.0/24
37.49.148.0/22
94.74.137.0/24
94.74.173.0/24
94.74.187.0/24
94.74.191.0/24
109.203.160.0/21
176.46.128.0/24
176.46.130.0-176.46.132.255
176.46.134.0/24
176.46.136.0/24
176.46.138.0-176.46.140.255
176.46.143.0/24
Signature Algorithm: sha256WithRSAEncryption
51:6d:ea:c0:56:0d:9a:e6:fc:31:22:5d:fa:a1:ed:1e:e6:28:
ba:85:0b:87:9f:0c:82:4d:e0:40:d8:32:4a:62:92:c2:55:ab:
1c:9d:47:4c:40:2b:e3:3a:1b:1a:8d:05:cc:37:d8:ca:81:65:
af:85:b2:1e:e8:01:4a:64:b0:0e:d4:1c:6b:3e:6d:b3:3d:dc:
88:2a:b8:9c:2e:f5:25:0e:52:b7:fb:3d:11:a0:4b:07:21:dc:
bd:0d:e4:5a:c3:e1:f5:94:51:29:5d:5d:6e:f3:e2:ac:2a:48:
16:6a:ca:ee:16:f9:1f:dd:ad:be:4f:69:b3:a1:ea:75:00:b4:
b0:f4:c0:07:56:c5:11:6f:9b:93:9e:35:c8:6a:09:fe:37:41:
d1:e3:b4:64:12:4f:d1:92:8e:f4:98:3f:bb:76:ef:2e:f1:76:
93:61:03:cb:f4:65:e9:53:c2:8a:66:71:57:58:4a:f4:43:fd:
4e:b0:a5:ef:ff:a2:61:97:c8:34:70:2e:1d:0a:d7:43:06:71:
bb:3a:3b:8f:bb:5c:eb:39:8c:fb:62:63:5a:5f:0c:c1:e6:67:
6b:92:08:f0:27:39:5c:49:75:86:6a:92:ce:48:b1:4b:50:ab:
6a:10:65:fd:d0:80:de:09:e6:ec:42:60:02:da:65:a1:4d:d7:
06:db:66:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net