Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/1-Wg2YYenjNv_V6wRQuPaTV2vIm0.roa
File: 1-Wg2YYenjNv_V6wRQuPaTV2vIm0.roa (raw, json)
Hash identifier: cjc3cpN7GuYc7REZRubSWpyDelTCoSCj0eVNSa/ovkU=
Subject key identifier: F9:68:36:61:87:A7:8C:DB:FF:57:AC:11:42:E3:DA:4D:5D:AF:22:6D
Certificate issuer: /CN=85aaadc568f6c928fd764d421d42c71cf5791954
Certificate serial: 01875A6E7917C90179E0AA650B8B9AD558D0
Authority key identifier: 85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/1-Wg2YYenjNv_V6wRQuPaTV2vIm0.roa
Signing time: Fri 07 Apr 2023 06:36:42 +0000
ROA not before: Fri 07 Apr 2023 06:36:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44092
IP address blocks: 185.191.105.0/24 maxlen: 24
185.191.104.0/24 maxlen: 24
185.191.106.0/24 maxlen: 24
185.191.107.0/24 maxlen: 24
188.191.56.0/22 maxlen: 24
188.191.56.0/24 maxlen: 24
188.191.57.0/24 maxlen: 24
188.191.58.0/24 maxlen: 24
188.191.59.0/24 maxlen: 24
185.56.156.0/22 maxlen: 24
85.208.200.0/24 maxlen: 24
85.208.201.0/24 maxlen: 24
85.208.203.0/24 maxlen: 24
85.208.202.0/24 maxlen: 24
185.215.144.0/24 maxlen: 24
77.242.130.0/24 maxlen: 24
77.242.128.0/24 maxlen: 24
77.242.129.0/24 maxlen: 24
77.242.128.0/20 maxlen: 24
185.215.145.0/24 maxlen: 24
77.242.131.0/24 maxlen: 24
77.242.132.0/24 maxlen: 24
185.248.227.0/24 maxlen: 24
185.255.29.0/24 maxlen: 24
45.145.201.0/24 maxlen: 24
45.145.202.0/24 maxlen: 24
45.145.200.0/24 maxlen: 24
45.145.203.0/24 maxlen: 24
217.28.64.0/24 maxlen: 24
217.28.66.0/24 maxlen: 24
217.28.67.0/24 maxlen: 24
217.28.65.0/24 maxlen: 24
89.37.71.0/24 maxlen: 24
89.37.70.0/24 maxlen: 24
89.37.70.0/23 maxlen: 24
77.242.134.0/24 maxlen: 24
77.242.133.0/24 maxlen: 24
185.215.147.0/24 maxlen: 24
185.215.146.0/24 maxlen: 24
77.242.137.0/24 maxlen: 24
77.242.135.0/24 maxlen: 24
77.242.136.0/24 maxlen: 24
77.242.138.0/24 maxlen: 24
77.242.139.0/24 maxlen: 24
77.242.140.0/24 maxlen: 24
77.242.141.0/24 maxlen: 24
77.242.143.0/24 maxlen: 24
77.242.142.0/24 maxlen: 24
185.171.232.0/24 maxlen: 24
185.171.233.0/24 maxlen: 24
185.171.235.0/24 maxlen: 24
185.171.234.0/24 maxlen: 24
185.219.117.0/24 maxlen: 24
185.219.118.0/24 maxlen: 24
185.219.116.0/24 maxlen: 24
185.219.119.0/24 maxlen: 24
2a02:53e0::/32 maxlen: 32
2a0b:7b80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5a:6e:79:17:c9:01:79:e0:aa:65:0b:8b:9a:d5:58:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85aaadc568f6c928fd764d421d42c71cf5791954
Validity
Not Before: Apr 7 06:36:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f968366187a78cdbff57ac1142e3da4d5daf226d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c8:39:9f:ad:5c:b9:5d:4a:48:a1:a5:1f:f6:
70:c0:ae:f3:42:05:bd:76:ad:c7:d2:d9:31:fe:2f:
cb:c4:12:48:3d:b8:0f:c5:b9:89:d9:26:d6:6b:bd:
59:47:80:49:22:be:45:07:0b:8d:e4:1b:8d:dc:5e:
f0:9e:13:29:a7:14:c3:87:3c:21:61:82:d9:68:5d:
2f:e0:e1:43:33:07:c3:e7:ea:7f:82:91:57:aa:e6:
03:15:df:ab:b1:d8:9c:b0:20:63:3d:f7:67:be:0f:
8f:56:a4:78:9d:57:e4:31:df:d0:94:7a:bb:43:fd:
0f:8c:df:6c:ea:8d:19:1c:a5:b7:bd:f0:19:b8:48:
52:8f:79:f0:0c:50:1b:fe:99:52:4c:6a:25:67:b6:
3a:85:56:ff:5b:46:bc:01:95:28:de:df:b0:26:78:
b7:13:a0:08:d0:90:3b:87:09:a6:fd:b0:fb:88:b9:
ca:50:ff:69:1a:9a:ab:65:4b:14:36:c9:e1:76:84:
d5:36:83:18:74:b4:50:09:b9:e9:32:1f:14:22:68:
62:a0:5c:89:77:d1:a9:e8:a8:18:92:04:8d:7c:9c:
b9:f9:cb:50:1c:22:54:cb:d8:8d:61:ca:b5:3f:5f:
e3:c0:cc:e5:04:4a:24:00:52:d6:0e:fc:fb:e6:67:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:68:36:61:87:A7:8C:DB:FF:57:AC:11:42:E3:DA:4D:5D:AF:22:6D
X509v3 Authority Key Identifier:
keyid:85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/1-Wg2YYenjNv_V6wRQuPaTV2vIm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/haqtxWj2ySj9dk1CHULHHPV5GVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.200.0/22
77.242.128.0/20
85.208.200.0/22
89.37.70.0/23
185.56.156.0/22
185.171.232.0/22
185.191.104.0/22
185.215.144.0/22
185.219.116.0/22
185.248.227.0/24
185.255.29.0/24
188.191.56.0/22
217.28.64.0/22
IPv6:
2a02:53e0::/32
2a0b:7b80::/29
Signature Algorithm: sha256WithRSAEncryption
12:0f:15:3e:51:a1:ae:3a:71:6f:c2:55:cc:60:24:22:26:ac:
24:1a:69:45:b9:d7:f3:98:de:02:4a:a2:05:ba:bf:17:53:b1:
d7:87:e2:66:94:ac:75:8e:f2:af:10:86:a8:36:e4:d1:41:f5:
84:a7:ae:e9:38:67:ae:24:b2:92:67:63:1d:a3:f1:bf:4e:57:
9d:8b:dc:c3:17:0e:9e:23:97:49:d6:1e:58:82:bc:fa:9b:d5:
5a:42:98:3c:d5:a9:ca:5f:20:13:3e:e9:27:3b:22:cc:64:9f:
03:ef:ba:7a:20:11:6e:b7:9d:df:d3:df:ff:fb:9a:48:cb:b8:
79:3e:69:b9:4c:c1:39:00:61:1e:7f:cf:1e:ca:11:57:fe:e4:
fe:3a:80:7f:90:ff:ce:27:2f:fa:8f:9b:cc:80:28:a1:66:7e:
90:52:c8:48:a6:b5:e0:6b:9d:40:4f:47:e4:a9:9f:a5:a8:f3:
1d:7e:4e:a6:c5:7d:61:d4:b6:47:6d:7f:c2:78:f0:dd:23:f9:
aa:f3:01:d9:84:0c:4d:2f:17:2f:6d:3e:e4:da:66:22:2b:77:
d2:d6:cd:4e:43:53:6d:87:a4:e5:c0:12:47:94:f5:d0:03:83:
3d:23:7e:92:2b:0b:72:d4:b3:65:38:66:04:79:43:89:4d:20:
58:3c:73:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:19 2024 by rpki-client on console.sobornost.net