Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/hw1MgJj8Fd8kYHuFbTNDUxzmLTk.roa
File: hw1MgJj8Fd8kYHuFbTNDUxzmLTk.roa (raw, json)
Hash identifier: fARoIeO53+6rNb0/Dp5uNJWp0CWTb650ZTDxmuf5wWU=
Subject key identifier: 87:0D:4C:80:98:FC:15:DF:24:60:7B:85:6D:33:43:53:1C:E6:2D:39
Certificate issuer: /CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Certificate serial: 01860E9022AE5CC270C1D669E7D272F84BB5
Authority key identifier: 7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/hw1MgJj8Fd8kYHuFbTNDUxzmLTk.roa
Signing time: Wed 01 Feb 2023 19:59:32 +0000
ROA not before: Wed 01 Feb 2023 19:59:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210756
IP address blocks: 5.101.68.0/24 maxlen: 24
5.101.69.0/24 maxlen: 24
5.101.70.0/24 maxlen: 24
5.188.176.0/24 maxlen: 24
5.188.177.0/24 maxlen: 24
5.188.178.0/24 maxlen: 24
5.188.179.0/24 maxlen: 24
37.9.37.0/24 maxlen: 24
37.9.38.0/24 maxlen: 24
37.9.36.0/24 maxlen: 24
37.9.39.0/24 maxlen: 24
37.9.54.0/24 maxlen: 24
37.9.55.0/24 maxlen: 24
37.9.52.0/24 maxlen: 24
37.9.53.0/24 maxlen: 24
146.185.197.0/24 maxlen: 24
146.185.198.0/24 maxlen: 24
146.185.199.0/24 maxlen: 24
146.185.196.0/24 maxlen: 24
2a11:27c0:170::/44 maxlen: 44
2a11:27c0:150::/44 maxlen: 44
2a11:27c0:130::/44 maxlen: 44
2a11:27c0:110::/44 maxlen: 44
2a11:27c0:120::/44 maxlen: 44
2a11:27c0:140::/44 maxlen: 44
2a11:27c0:160::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0e:90:22:ae:5c:c2:70:c1:d6:69:e7:d2:72:f8:4b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3e585a59b523bb86d660a7168e1c1eba094da0
Validity
Not Before: Feb 1 19:59:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=870d4c8098fc15df24607b856d3343531ce62d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2c:e7:7a:ae:ec:b9:36:b1:e0:92:3e:ca:29:
42:20:cd:5b:f2:e8:d9:3c:68:c8:23:2d:a2:39:f1:
48:f1:4e:f0:30:94:c1:3a:4a:ee:1c:42:be:c5:17:
e2:ea:6d:82:34:c0:25:02:be:d7:fd:51:66:95:43:
21:8e:7f:bd:0a:d5:62:3a:ce:bb:20:f7:38:cf:c1:
05:b2:7b:71:df:8d:e6:54:85:30:6b:6a:70:87:ff:
33:02:29:fd:a2:9c:e0:ef:84:88:01:16:b6:56:9c:
74:44:96:ef:5d:ac:c5:a6:6f:6c:98:61:d4:fd:16:
67:8c:6a:c1:08:57:cd:49:27:18:c8:34:99:ca:79:
69:be:f5:76:fe:49:8f:bb:07:a8:90:75:2c:9c:f3:
68:e1:56:a9:4c:d3:61:a4:c9:84:9c:22:f1:26:f9:
7b:6a:87:99:06:44:22:9e:39:87:52:6f:04:91:9d:
52:8f:13:30:aa:ed:34:80:91:d2:9f:4b:ed:86:fe:
25:8b:98:a1:e6:b6:11:46:85:a0:f9:d2:c7:a0:70:
56:e9:67:ee:3a:a1:22:de:aa:da:3d:1e:76:8f:18:
5e:ac:19:20:4c:dd:2f:6f:b6:c7:30:34:d7:9f:9e:
1a:2b:db:4f:4d:3e:76:91:84:f7:77:a2:2e:66:f9:
d9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0D:4C:80:98:FC:15:DF:24:60:7B:85:6D:33:43:53:1C:E6:2D:39
X509v3 Authority Key Identifier:
keyid:7C:3E:58:5A:59:B5:23:BB:86:D6:60:A7:16:8E:1C:1E:BA:09:4D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD5YWlm1I7uG1mCnFo4cHroJTaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/hw1MgJj8Fd8kYHuFbTNDUxzmLTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/26e32a-35ba-443f-bc1e-6dc1f56031eb/1/fD5YWlm1I7uG1mCnFo4cHroJTaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.101.68.0-5.101.70.255
5.188.176.0/22
37.9.36.0/22
37.9.52.0/22
146.185.196.0/22
IPv6:
2a11:27c0:110::-2a11:27c0:17f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1c:a1:d1:17:d3:33:02:28:1c:d7:da:61:01:eb:e9:5d:f7:27:
8a:42:19:83:29:d6:38:28:1f:34:f4:39:13:e9:80:da:05:ac:
44:a6:00:14:a8:f9:b3:b9:14:f8:1a:2a:b9:00:56:82:f7:f5:
c5:40:28:9e:f3:cd:d0:3c:4b:70:53:68:c1:4a:54:15:65:89:
4f:f8:ab:97:aa:a0:a7:d0:63:7d:2b:76:7d:e9:d6:40:ad:5a:
dd:b1:45:73:52:76:24:c2:e0:d6:cb:11:fe:85:c9:c4:f8:e4:
f5:67:f4:e8:9d:0a:83:42:c1:89:93:ba:61:cf:0b:ed:ed:40:
d1:a8:93:cf:d9:17:8f:2a:be:38:e8:91:74:17:fd:9c:68:8c:
f7:b4:ae:ce:f6:8a:a9:79:ad:8d:86:ae:aa:c4:67:26:fc:19:
97:8f:bf:0a:a6:df:c3:3f:2b:a5:36:ef:b8:4d:1c:83:8a:81:
34:e3:6c:cd:dd:f1:cc:62:b6:7a:a4:66:ca:c7:f6:87:91:b7:
2d:e9:64:8a:3c:fb:bf:05:84:4d:b6:7a:47:5b:b5:c9:69:db:
b5:a6:d4:9f:dd:cb:ab:0b:d9:08:ce:09:43:b6:a1:fa:7b:31:
da:65:91:38:2d:49:2b:f6:c5:12:ae:25:d5:66:f9:af:5e:d3:
eb:87:c9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:42 2023 by rpki-client on console.sobornost.net