Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/ATG7sqwyVac6sfAQeyxh-X6YnXA.roa
File: ATG7sqwyVac6sfAQeyxh-X6YnXA.roa (raw, json)
Hash identifier: 3D1/diUgAK9dE2T99cn9mjrcWta2sjjiVsy97TLo4xc=
Subject key identifier: 01:31:BB:B2:AC:32:55:A7:3A:B1:F0:10:7B:2C:61:F9:7E:98:9D:70
Certificate issuer: /CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Certificate serial: 018B384019066B6EEBD9C5E258D1CE651E97
Authority key identifier: A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/ATG7sqwyVac6sfAQeyxh-X6YnXA.roa
Signing time: Mon 16 Oct 2023 11:30:06 +0000
ROA not before: Mon 16 Oct 2023 11:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200107
IP address blocks: 185.85.15.0/24 maxlen: 24
185.85.14.0/24 maxlen: 24
185.85.12.0/24 maxlen: 24
185.54.222.0/24 maxlen: 24
185.54.220.0/24 maxlen: 24
185.54.223.0/24 maxlen: 24
93.159.226.0/24 maxlen: 24
93.159.230.0/23 maxlen: 23
93.159.228.0/23 maxlen: 24
77.74.178.0/23 maxlen: 24
77.74.176.0/23 maxlen: 24
77.74.176.0/24 maxlen: 24
82.202.185.0/24 maxlen: 24
82.202.184.0/23 maxlen: 23
82.202.184.0/24 maxlen: 24
77.74.182.0/24 maxlen: 24
77.74.183.0/24 maxlen: 24
77.74.180.0/24 maxlen: 24
77.74.181.0/24 maxlen: 24
2a03:2480:802f::/48 maxlen: 48
2a03:2480:802a::/48 maxlen: 48
2a03:2480:8025::/48 maxlen: 48
2a03:2480:8020::/48 maxlen: 48
2a03:2480:80::/48 maxlen: 48
2a03:2480:8023::/48 maxlen: 48
2a03:2480:8027::/48 maxlen: 48
2a03:2480:8022::/48 maxlen: 48
2a03:2480:8000::/44 maxlen: 44
2a03:2480:8031::/48 maxlen: 48
2a03:2480:802c::/48 maxlen: 48
2a03:2480:8030::/48 maxlen: 48
2a03:2480:70::/48 maxlen: 48
2a03:2480:8033::/48 maxlen: 48
2a03:2480:802e::/48 maxlen: 48
2a03:2480:69::/48 maxlen: 48
2a03:2480:8029::/48 maxlen: 48
2a03:2480:8024::/48 maxlen: 48
2a03:2480:8032::/48 maxlen: 48
2a03:2480:802d::/48 maxlen: 48
2a03:2480:8010::/44 maxlen: 44
2a03:2480:68::/48 maxlen: 48
2a03:2480:8028::/48 maxlen: 48
2a03:2480:802b::/48 maxlen: 48
2a03:2480:8026::/48 maxlen: 48
2a03:2480:8021::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:38:40:19:06:6b:6e:eb:d9:c5:e2:58:d1:ce:65:1e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Validity
Not Before: Oct 16 11:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0131bbb2ac3255a73ab1f0107b2c61f97e989d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f6:c8:a8:96:1d:d7:8a:30:ca:52:fd:2f:b5:
27:f1:76:e5:68:27:10:a0:15:b5:25:bb:38:d5:82:
f9:95:f0:c2:d9:1a:56:a3:3a:a2:e2:da:75:9c:a8:
6a:f2:0b:bc:12:c4:b8:a3:6a:70:e0:c4:de:3a:6f:
85:37:40:89:dc:19:a9:71:88:6b:7f:1b:40:e5:7e:
df:86:23:e3:58:47:f2:2b:83:6d:0b:c9:7b:e2:ed:
03:9b:ce:29:78:48:df:e3:e0:be:95:f4:4e:f0:d0:
c5:99:60:3e:06:ee:c4:fe:72:a2:38:d6:18:b3:1a:
c0:18:cc:11:65:10:06:f1:50:4c:5f:86:8f:04:0e:
02:45:66:da:6c:99:bf:b5:d6:20:6a:da:cf:e4:09:
ec:0c:19:72:25:48:ae:6e:f5:fe:7e:2a:26:b8:f8:
b1:12:b7:9d:cf:d5:be:c9:df:7b:7f:b7:a9:61:3c:
b9:c5:e2:99:f0:a9:0b:ef:b8:f1:b9:64:72:cd:f0:
f3:6a:ec:97:71:c5:08:e6:04:b3:c9:ad:ae:12:9b:
51:f0:b7:99:35:92:71:2e:1f:83:3c:4f:8f:5e:15:
26:2a:c5:e7:08:98:5c:10:5d:a4:8a:f6:c9:1c:91:
dd:97:a8:b2:a1:a1:74:d5:4b:4f:9a:1a:5c:39:5f:
68:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:31:BB:B2:AC:32:55:A7:3A:B1:F0:10:7B:2C:61:F9:7E:98:9D:70
X509v3 Authority Key Identifier:
keyid:A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/ATG7sqwyVac6sfAQeyxh-X6YnXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/p9ha3isNTsHKCSqOJwPBkgDHLzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.176.0/21
82.202.184.0/23
93.159.226.0/24
93.159.228.0/22
185.54.220.0/24
185.54.222.0/23
185.85.12.0/24
185.85.14.0/23
IPv6:
2a03:2480:68::/47
2a03:2480:70::/48
2a03:2480:80::/48
2a03:2480:8000::-2a03:2480:8033:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
3f:cd:d5:8d:b7:24:a2:8e:58:3e:af:fc:d7:4b:d2:c4:67:ed:
18:56:a2:21:ff:6a:65:e9:85:e2:8e:f5:87:8e:34:93:c4:25:
78:c4:93:99:81:95:86:da:45:af:db:36:7d:ec:fd:c7:3a:f1:
b2:9a:44:e3:c5:da:1a:2c:b7:25:7b:2f:da:73:bd:96:e5:42:
19:8e:1f:fd:b2:13:b7:73:9c:dd:77:76:0e:2b:47:16:12:a6:
66:bd:47:68:53:8d:cb:c8:95:86:03:09:69:e5:fe:77:09:f5:
95:56:47:d5:b9:17:63:03:d5:f2:89:29:fd:57:b1:f7:5b:40:
e5:47:b3:87:e0:39:69:b8:31:2b:43:56:6d:25:70:4a:64:52:
c2:f4:36:83:c0:4d:f7:53:5f:d4:c2:e3:2f:19:32:b6:0b:62:
c8:b4:7d:7d:fd:98:e1:d3:7c:43:d1:5e:89:b2:93:37:1a:e6:
f9:87:6b:53:11:f2:b9:82:8f:93:7b:46:fb:62:96:b0:97:86:
ea:33:55:74:ad:41:66:aa:a4:70:15:54:a5:a4:94:86:da:aa:
a0:fd:92:d5:bd:8d:b4:a1:51:4f:d8:a8:9a:01:8d:f8:cd:a1:
43:5d:0d:73:3c:23:bd:c3:91:92:2f:c8:0f:43:a0:8c:5a:49:
7e:8e:eb:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:48 2023 by rpki-client on console.sobornost.net