Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/CYjnuLA9l_0EMyGBBAr_3_M1sC0.roa
File: CYjnuLA9l_0EMyGBBAr_3_M1sC0.roa (raw, json)
Hash identifier: n5d2YnQS6wKiU0BOq7QUWnxaapi20hm6ELAgEu/oPc0=
Subject key identifier: 09:88:E7:B8:B0:3D:97:FD:04:33:21:81:04:0A:FF:DF:F3:35:B0:2D
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018AFBAA043CD36FD2B8DBBB468782743DD5
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/CYjnuLA9l_0EMyGBBAr_3_M1sC0.roa
Signing time: Wed 04 Oct 2023 17:08:57 +0000
ROA not before: Wed 04 Oct 2023 17:08:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.255.99.0/24 maxlen: 24
89.39.242.0/24 maxlen: 24
194.56.152.0/23 maxlen: 24
185.243.140.0/22 maxlen: 24
94.231.198.0/24 maxlen: 24
185.212.11.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
185.40.105.0/24 maxlen: 24
194.242.28.0/23 maxlen: 24
195.149.127.0/24 maxlen: 24
193.46.211.0/24 maxlen: 24
91.242.71.0/24 maxlen: 24
45.149.160.0/22 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.75.0/24 maxlen: 24
89.40.161.0/24 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/24 maxlen: 24
185.15.136.0/23 maxlen: 24
80.94.81.0/24 maxlen: 24
80.94.80.0/24 maxlen: 24
80.94.80.0/23 maxlen: 23
45.67.117.0/24 maxlen: 24
45.15.64.0/24 maxlen: 24
45.15.64.0/22 maxlen: 22
45.15.66.0/24 maxlen: 24
45.15.67.0/24 maxlen: 24
45.15.65.0/24 maxlen: 24
194.180.238.0/24 maxlen: 24
194.213.10.0/24 maxlen: 24
185.173.247.0/24 maxlen: 24
89.32.126.0/24 maxlen: 24
92.118.108.0/24 maxlen: 24
176.126.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fb:aa:04:3c:d3:6f:d2:b8:db:bb:46:87:82:74:3d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Oct 4 17:08:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0988e7b8b03d97fd04332181040affdff335b02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4b:45:b7:1a:6b:43:19:b1:80:d0:91:56:cb:
62:a1:c3:14:33:d7:fc:4c:8b:4c:fe:f2:11:58:3f:
68:d6:54:30:49:6c:fc:c1:20:1f:ad:a7:91:91:66:
3c:89:44:3d:68:e8:56:89:fb:5b:e6:aa:f8:74:e7:
6a:46:5a:26:49:61:fd:de:a3:ba:85:47:6f:7e:67:
28:2f:0f:5b:e8:f4:24:25:e8:96:04:ef:bd:6d:48:
ed:bb:ff:18:f7:7f:21:a5:32:7f:88:52:df:5a:49:
90:74:77:c4:ce:15:f2:fa:d9:a0:50:8f:b3:5d:66:
23:f7:b9:b7:e1:b8:e4:4f:2b:11:1c:42:bd:be:0a:
0c:89:93:37:20:ba:ea:b7:b9:7f:dc:85:ac:d2:af:
1f:60:4c:08:7b:1f:5d:ef:6f:a8:2a:59:91:93:f4:
5f:2d:c7:f9:a1:be:e2:db:0a:d4:e0:9b:53:85:d1:
ea:2b:76:81:67:63:ee:06:4c:0b:ca:32:a2:37:20:
51:af:15:21:af:cf:4f:fc:60:a2:84:3f:d4:18:4f:
df:4d:30:c7:61:14:e2:2f:80:82:a6:10:40:64:6f:
b6:2e:69:12:95:6f:ef:06:32:15:59:87:50:95:68:
1c:30:01:03:69:b3:25:31:86:25:01:91:63:d8:85:
b8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:88:E7:B8:B0:3D:97:FD:04:33:21:81:04:0A:FF:DF:F3:35:B0:2D
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/CYjnuLA9l_0EMyGBBAr_3_M1sC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.64.0/22
45.67.117.0/24
45.149.160.0/22
80.94.80.0/23
89.32.126.0/24
89.39.242.0/24
89.40.161.0/24
91.242.71.0-91.242.73.255
91.242.75.0/24
91.242.103.0/24
92.118.108.0/24
94.231.198.0/24
176.126.223.0/24
185.15.136.0/23
185.40.105.0/24
185.173.247.0/24
185.212.11.0/24
185.243.140.0/22
185.255.99.0/24
193.46.211.0/24
194.56.152.0/23
194.180.238.0/24
194.213.10.0/24
194.242.28.0/23
195.138.103.0-195.138.104.255
195.149.127.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:10:b5:22:8d:06:ec:67:b3:67:a4:0a:f9:74:5a:45:0f:4a:
e1:33:df:c5:9c:75:30:ec:80:6c:b9:96:10:5d:38:b2:fa:5e:
21:af:a1:f1:32:fa:da:92:5a:61:97:6a:8e:e5:2d:bc:c5:b7:
2b:ce:ef:34:39:6e:15:fe:09:c2:bd:8a:e2:a4:46:7b:db:ea:
0a:8e:78:04:e3:3b:65:ec:49:fa:77:c4:d8:4c:34:e1:e9:56:
ba:2e:bc:07:f4:77:48:87:8d:64:60:9b:b4:76:85:61:ab:6e:
bc:98:a1:1a:e2:d6:7b:1d:80:a2:82:30:af:bf:99:a0:37:a5:
d2:0c:2c:1f:eb:c6:46:72:cc:91:d0:49:71:7f:41:69:ec:04:
81:36:3a:75:12:81:b5:cf:f4:cd:f4:92:5f:7b:76:25:68:b4:
20:cf:e4:d4:0f:76:63:73:d8:63:44:e6:fa:9e:82:4e:4d:56:
06:ce:94:86:4f:aa:59:08:6c:c2:56:70:ce:2f:d9:b7:93:b1:
6c:df:54:e3:aa:99:df:00:84:98:38:de:d3:47:a1:f8:d6:ed:
c5:16:94:b3:e9:4b:dc:1c:87:39:34:76:fb:c5:5a:2e:0e:81:
ef:fd:2d:58:40:fe:1f:fc:4b:c1:48:15:13:29:fe:1d:18:73:
48:87:dc:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net