Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4sJl9N-LEYy7gianqI74bbTPMwk.roa
File: 4sJl9N-LEYy7gianqI74bbTPMwk.roa (raw, json)
Hash identifier: qh4iTQ1TRYbCFsaJLpjgnL6sXe/om5xeuAlTq9piVF0=
Subject key identifier: E2:C2:65:F4:DF:8B:11:8C:BB:82:26:A7:A8:8E:F8:6D:B4:CF:33:09
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01882BB491A1C002A3BF94D30AD0D3C9D61E
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4sJl9N-LEYy7gianqI74bbTPMwk.roa
Signing time: Wed 17 May 2023 21:53:54 +0000
ROA not before: Wed 17 May 2023 21:53:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 95.164.60.0/22 maxlen: 24
95.164.84.0/22 maxlen: 24
94.131.2.0/24 maxlen: 24
94.131.3.0/24 maxlen: 24
94.131.8.0/21 maxlen: 24
94.131.96.0/24 maxlen: 24
94.131.98.0/24 maxlen: 24
94.131.97.0/24 maxlen: 24
94.131.99.0/24 maxlen: 24
94.131.103.0/24 maxlen: 24
94.131.102.0/24 maxlen: 24
94.131.101.0/24 maxlen: 24
94.131.100.0/24 maxlen: 24
94.131.105.0/24 maxlen: 24
94.131.106.0/24 maxlen: 24
94.131.110.0/24 maxlen: 24
94.131.109.0/24 maxlen: 24
94.131.108.0/24 maxlen: 24
94.131.107.0/24 maxlen: 24
94.131.111.0/24 maxlen: 24
94.131.116.0/24 maxlen: 24
94.131.114.0/24 maxlen: 24
95.164.8.0/22 maxlen: 24
95.164.16.0/22 maxlen: 24
95.164.21.0/24 maxlen: 24
95.164.22.0/23 maxlen: 23
95.164.32.0/21 maxlen: 24
95.164.44.0/22 maxlen: 24
95.164.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:b4:91:a1:c0:02:a3:bf:94:d3:0a:d0:d3:c9:d6:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: May 17 21:53:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2c265f4df8b118cbb8226a7a88ef86db4cf3309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7d:7b:60:12:28:f9:03:77:08:01:53:8d:54:
51:5f:36:c6:1e:ec:82:fa:fe:d5:8a:2d:3e:ea:e3:
38:d6:d1:9a:0c:41:9a:fd:50:5b:e5:2d:9a:03:26:
74:9f:07:24:23:e6:73:4d:47:af:96:97:fa:32:31:
8c:05:a1:bb:cc:61:fd:ad:92:40:21:6f:dc:16:d9:
03:24:fb:3d:d2:b4:a5:c3:49:fe:c5:1d:29:47:e2:
18:31:90:c6:67:31:e5:88:b2:49:16:eb:b3:0e:a5:
d2:f6:4b:fd:e1:f8:e5:8e:0e:f9:a1:d9:35:13:9c:
19:99:2d:eb:73:39:41:e4:b7:64:8b:5a:65:31:e5:
cd:0e:c5:75:80:0b:9f:59:b5:da:ad:98:fb:a6:ac:
80:1b:77:83:fc:85:2f:7c:2f:8d:4e:3a:37:f1:8f:
4f:31:b0:f1:05:01:ce:a7:f1:04:60:72:0a:6b:a9:
a6:d6:2c:32:1a:f8:ee:9e:89:ab:5b:b8:b5:c9:41:
b1:f0:ec:1f:67:dc:e2:a5:f6:77:9c:a9:cf:6b:e1:
27:a2:d7:3c:f2:d4:09:be:bb:8a:e4:92:c0:0d:a9:
78:db:41:e8:08:6c:54:76:cc:4b:e2:8e:a2:9b:e7:
17:3f:07:cb:ac:56:c8:be:b9:cc:29:6a:bf:72:88:
07:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C2:65:F4:DF:8B:11:8C:BB:82:26:A7:A8:8E:F8:6D:B4:CF:33:09
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4sJl9N-LEYy7gianqI74bbTPMwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.2.0/23
94.131.8.0/21
94.131.96.0/21
94.131.105.0-94.131.111.255
94.131.114.0/24
94.131.116.0/24
95.164.8.0/22
95.164.16.0/22
95.164.21.0-95.164.23.255
95.164.32.0/21
95.164.44.0/22
95.164.51.0/24
95.164.60.0/22
95.164.84.0/22
Signature Algorithm: sha256WithRSAEncryption
17:9e:15:1c:f7:72:df:fe:4a:4a:9a:b8:6b:a4:13:5f:af:b1:
d0:a9:e4:94:8e:c7:0e:27:4b:38:84:1e:39:58:ff:4c:32:0f:
06:7e:9b:cd:30:50:36:96:ad:9b:4c:a9:20:47:f8:aa:0b:98:
d0:74:12:a5:90:fe:e5:8f:63:af:0e:0e:89:54:06:7f:d5:85:
32:c0:e2:78:ca:ad:99:c7:0b:98:de:09:7e:d1:d3:9b:55:d4:
f6:ef:cc:72:e5:27:08:41:50:e5:f5:b3:c0:c8:ac:12:47:1f:
54:d0:19:e3:b7:66:64:8a:d2:ca:82:76:a8:fb:98:16:5e:fb:
68:38:48:56:6b:2b:eb:ab:7b:4b:0f:9a:33:f7:f8:01:50:d9:
2b:94:db:a5:dd:53:c6:b8:fd:70:88:69:c1:52:f9:56:8a:7c:
1d:0b:ab:31:8b:c3:51:15:8a:f8:eb:1e:e6:3c:0e:68:d6:67:
28:21:98:5d:cf:fa:dc:4f:00:fd:2d:9a:a0:d7:0d:a8:5d:3d:
62:b5:f5:4e:eb:2d:6a:5a:10:2c:cf:6e:8e:03:20:56:3f:14:
56:ad:cc:9b:16:aa:ca:7a:de:be:ce:85:66:3f:66:1e:d9:fb:
97:01:ee:01:8d:4c:2f:ae:13:ce:04:25:a8:f6:db:f7:21:eb:
f0:e2:6b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:40 2023 by rpki-client on console.sobornost.net