Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/1rEcR125SFQcFWLLwOa3wIfHXSI.roa
File: 1rEcR125SFQcFWLLwOa3wIfHXSI.roa (raw, json)
Hash identifier: 7kJb1DydvtKPSU/qFwCzrf7W1IsImoHiLh0LhrNULK8=
Subject key identifier: D6:B1:1C:47:5D:B9:48:54:1C:15:62:CB:C0:E6:B7:C0:87:C7:5D:22
Certificate issuer: /CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Certificate serial: 01869DACBECC9478948CF39FBDB0B1568AFF
Authority key identifier: 7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/1rEcR125SFQcFWLLwOa3wIfHXSI.roa
Signing time: Wed 01 Mar 2023 14:56:29 +0000
ROA not before: Wed 01 Mar 2023 14:56:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210756
IP address blocks: 95.181.180.0/24 maxlen: 24
5.101.68.0/24 maxlen: 24
5.101.69.0/24 maxlen: 24
5.101.70.0/24 maxlen: 24
5.188.176.0/24 maxlen: 24
5.188.177.0/24 maxlen: 24
5.188.178.0/24 maxlen: 24
5.188.179.0/24 maxlen: 24
37.9.37.0/24 maxlen: 24
37.9.38.0/24 maxlen: 24
37.9.36.0/24 maxlen: 24
37.9.39.0/24 maxlen: 24
37.9.54.0/24 maxlen: 24
37.9.55.0/24 maxlen: 24
37.9.52.0/24 maxlen: 24
37.9.53.0/24 maxlen: 24
146.185.197.0/24 maxlen: 24
146.185.198.0/24 maxlen: 24
146.185.199.0/24 maxlen: 24
146.185.196.0/24 maxlen: 24
2a11:27c0:110::/44 maxlen: 44
2a11:27c0:130::/44 maxlen: 44
2a11:27c0:150::/44 maxlen: 44
2a11:27c0:170::/44 maxlen: 44
2a11:27c0:1010::/44 maxlen: 44
2a11:27c0:1f0::/44 maxlen: 44
2a11:27c0:1e0::/44 maxlen: 44
2a11:27c0:160::/44 maxlen: 44
2a11:27c0:140::/44 maxlen: 44
2a11:27c0:120::/44 maxlen: 44
2a11:27c0:1000::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ac:be:cc:94:78:94:8c:f3:9f:bd:b0:b1:56:8a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Validity
Not Before: Mar 1 14:56:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6b11c475db948541c1562cbc0e6b7c087c75d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:79:77:19:6e:55:9d:39:1a:9e:7b:c8:2c:4f:
38:90:f4:c1:6c:c7:77:a6:c2:1e:ce:77:93:2d:51:
3f:cd:bb:c2:7c:a8:50:70:3a:de:15:1e:5f:51:9f:
ca:24:d4:7f:89:39:a7:d4:d9:31:74:4b:d9:0e:05:
27:b0:04:4d:c0:88:46:e3:dc:e8:ab:86:0f:fc:b5:
aa:e0:1d:0e:11:b4:c3:cb:14:91:a7:ab:51:80:cb:
46:df:fc:fe:ad:48:a5:f2:58:4c:cb:09:16:96:76:
bc:91:7d:98:e9:ed:3f:c1:e1:08:1e:c9:12:8b:c0:
1d:5b:c3:29:9a:a5:e1:bd:04:99:4e:18:ad:82:a2:
f9:26:25:a9:a4:91:ec:a4:bd:85:e9:52:59:e3:af:
4a:db:ab:d9:e8:db:66:a3:c5:7c:56:2f:53:fb:e4:
cd:f9:1c:88:83:46:35:fb:2d:7c:98:fa:14:b8:77:
1e:91:c7:83:b3:fb:f8:6f:aa:0f:1d:4c:1e:69:08:
b1:f4:8d:80:f0:2c:c3:96:e6:68:24:7e:4a:e4:1c:
cc:c4:40:f3:67:c9:f9:7e:26:ef:e1:56:11:a7:3e:
b3:0a:12:25:60:66:c3:fa:b5:05:76:f3:0b:00:98:
a4:65:67:7d:1a:76:41:2e:df:50:cc:42:3a:2d:02:
83:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B1:1C:47:5D:B9:48:54:1C:15:62:CB:C0:E6:B7:C0:87:C7:5D:22
X509v3 Authority Key Identifier:
keyid:7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/1rEcR125SFQcFWLLwOa3wIfHXSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.68.0-5.101.70.255
5.188.176.0/22
37.9.36.0/22
37.9.52.0/22
95.181.180.0/24
146.185.196.0/22
IPv6:
2a11:27c0:110::-2a11:27c0:17f:ffff:ffff:ffff:ffff:ffff
2a11:27c0:1e0::/43
2a11:27c0:1000::/43
Signature Algorithm: sha256WithRSAEncryption
3b:1c:27:15:5b:56:4c:5c:f7:5b:84:68:4b:d7:47:f0:d9:d3:
42:2f:d4:d8:0b:f9:08:68:dd:2b:98:95:8e:c1:45:3a:91:f5:
93:c5:d3:11:f1:b6:0e:44:b2:bf:1c:71:23:11:ed:d1:06:e4:
16:e9:85:c7:8e:4e:01:90:0e:52:8a:35:1b:35:8b:e9:58:5c:
f9:3f:6b:60:4c:28:01:2d:c1:94:40:dc:0f:a7:e0:4e:6e:f8:
b2:b2:9b:01:ff:e7:6e:06:d1:6c:17:fe:35:1a:66:5a:3a:9f:
6e:22:c3:f0:de:a7:1f:65:3f:3f:e2:f0:54:0f:d6:69:c7:85:
61:2f:4e:e5:79:97:fb:cf:7e:3f:b0:a4:d3:cd:96:34:47:c0:
3e:41:c3:9e:73:f4:c8:47:51:de:23:ff:32:78:0c:19:f7:00:
f4:4d:12:f8:32:17:04:e0:05:96:a5:7c:b6:b9:29:f5:fc:69:
af:94:02:4e:31:a6:05:5d:97:16:32:17:05:b5:4d:e3:b7:e1:
9d:98:58:49:fc:08:36:77:36:96:cd:c8:a5:22:ba:9a:a6:ba:
45:a2:85:96:c1:e3:b7:80:a4:5f:d4:31:73:b1:48:a1:41:f0:
0f:db:b4:46:40:a8:0b:7f:0e:61:49:be:9d:96:86:d4:b2:77:
7f:fb:5a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:42 2023 by rpki-client on console.sobornost.net