Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/7dGxZCSeUtj1_FcG-fEXGvsi70I.roa
File: 7dGxZCSeUtj1_FcG-fEXGvsi70I.roa (raw, json)
Hash identifier: 70U8sjzPW+RI7xzvvhaTq8umz6oXwLhrqeRCPs0Y2nA=
Subject key identifier: ED:D1:B1:64:24:9E:52:D8:F5:FC:57:06:F9:F1:17:1A:FB:22:EF:42
Certificate issuer: /CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Certificate serial: 0186174B80B12AFC3F40E33935582FB54289
Authority key identifier: 7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/7dGxZCSeUtj1_FcG-fEXGvsi70I.roa
Signing time: Fri 03 Feb 2023 12:41:09 +0000
ROA not before: Fri 03 Feb 2023 12:41:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210756
IP address blocks: 95.181.180.0/24 maxlen: 24
5.101.68.0/24 maxlen: 24
5.101.69.0/24 maxlen: 24
5.101.70.0/24 maxlen: 24
5.188.176.0/24 maxlen: 24
5.188.177.0/24 maxlen: 24
5.188.178.0/24 maxlen: 24
5.188.179.0/24 maxlen: 24
37.9.37.0/24 maxlen: 24
37.9.38.0/24 maxlen: 24
37.9.36.0/24 maxlen: 24
37.9.39.0/24 maxlen: 24
37.9.54.0/24 maxlen: 24
37.9.55.0/24 maxlen: 24
37.9.52.0/24 maxlen: 24
37.9.53.0/24 maxlen: 24
146.185.197.0/24 maxlen: 24
146.185.198.0/24 maxlen: 24
146.185.199.0/24 maxlen: 24
146.185.196.0/24 maxlen: 24
2a11:27c0:110::/44 maxlen: 44
2a11:27c0:130::/44 maxlen: 44
2a11:27c0:150::/44 maxlen: 44
2a11:27c0:170::/44 maxlen: 44
2a11:27c0:1010::/44 maxlen: 44
2a11:27c0:160::/44 maxlen: 44
2a11:27c0:140::/44 maxlen: 44
2a11:27c0:120::/44 maxlen: 44
2a11:27c0:1000::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:4b:80:b1:2a:fc:3f:40:e3:39:35:58:2f:b5:42:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Validity
Not Before: Feb 3 12:41:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edd1b164249e52d8f5fc5706f9f1171afb22ef42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:11:fc:42:d2:c7:6b:c1:70:cb:3c:d1:4f:8d:
22:bb:32:00:11:0c:19:9b:31:14:bc:4b:4d:21:1a:
92:67:21:3a:8b:48:95:14:c4:6c:0f:0e:d3:8f:29:
a8:4d:d2:a4:f0:9d:87:6e:57:63:ff:d1:27:d7:09:
4c:a3:88:cd:2b:53:4a:32:3c:0a:80:1b:e4:4a:ac:
94:9f:c8:61:23:0b:d7:78:a1:d5:bc:90:6a:4a:a2:
be:db:78:0c:c6:0e:cc:93:19:5e:4f:20:26:10:e8:
e1:0d:32:b2:59:ad:38:74:b9:eb:fe:70:eb:61:32:
13:05:7c:5d:2e:2f:4f:d5:5f:d2:08:bc:db:53:5e:
56:db:67:a1:63:8e:a7:60:be:6f:79:ba:8c:d5:1d:
1c:7a:4c:43:dd:f5:d7:58:3b:3e:59:cb:7b:eb:b9:
1a:36:73:9e:45:b9:21:17:dd:5c:18:48:31:5a:e6:
59:38:0d:62:2b:e8:e4:3d:59:8e:db:9a:77:65:27:
fe:55:8f:23:69:b5:32:ad:59:75:14:dc:e6:18:53:
19:07:c0:9a:ad:35:bf:54:90:87:d0:7a:27:5b:ca:
80:f2:ae:73:8f:c0:54:2d:b1:72:bb:5e:2b:c8:bb:
cd:a9:6f:ab:a3:2c:3b:f6:c5:c8:36:f2:80:f4:73:
1a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D1:B1:64:24:9E:52:D8:F5:FC:57:06:F9:F1:17:1A:FB:22:EF:42
X509v3 Authority Key Identifier:
keyid:7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/7dGxZCSeUtj1_FcG-fEXGvsi70I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.68.0-5.101.70.255
5.188.176.0/22
37.9.36.0/22
37.9.52.0/22
95.181.180.0/24
146.185.196.0/22
IPv6:
2a11:27c0:110::-2a11:27c0:17f:ffff:ffff:ffff:ffff:ffff
2a11:27c0:1000::/43
Signature Algorithm: sha256WithRSAEncryption
40:32:41:10:29:31:24:3c:d5:3b:01:80:9b:88:12:fa:a9:6d:
ed:e0:4b:71:f2:d3:fb:ad:b8:fe:8b:87:0a:6e:a7:53:06:08:
f5:eb:31:e7:39:ce:c6:69:34:08:c5:d9:af:5c:c8:97:31:81:
6a:02:f9:c6:83:a1:54:e7:a2:97:dc:07:b7:ee:d7:7a:c8:b3:
93:21:3d:7e:26:92:71:f0:9c:50:fb:93:e0:ac:26:95:20:58:
2e:55:94:18:e3:81:8d:6f:04:76:60:41:c5:08:5e:71:8b:02:
f2:e5:40:1c:be:9d:52:e5:78:ea:58:96:83:34:58:dd:d2:43:
b7:b4:21:28:61:87:38:b7:02:91:2b:cc:2f:eb:f7:af:9f:4a:
e4:9d:32:4d:94:d2:fa:3b:aa:17:39:c5:34:d9:c2:c4:17:97:
12:80:e8:c4:c4:77:5a:f0:57:c6:71:42:5c:cd:8b:b7:1e:2c:
e1:14:37:3e:bd:39:88:55:01:20:84:d0:d2:66:de:6e:0b:cc:
bf:d0:5b:12:77:4e:5b:61:14:49:06:f6:50:dc:29:95:d6:e2:
21:c1:cc:07:81:c3:19:0c:73:77:f4:a9:5f:8d:01:5a:5f:30:
b6:8e:c3:6f:2b:e1:a1:8a:6a:d4:7b:1d:a3:2c:1b:a5:d8:d2:
7e:2b:6c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:42 2023 by rpki-client on console.sobornost.net