Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/GYB1eRWcS89CKiR037dE-T4cu5c.roa
File: GYB1eRWcS89CKiR037dE-T4cu5c.roa (raw, json)
Hash identifier: eyFr4XK6BtT5MHRf0CvlLcbn9d5/NMlPPQY72hlORQ8=
Subject key identifier: 19:80:75:79:15:9C:4B:CF:42:2A:24:74:DF:B7:44:F9:3E:1C:BB:97
Certificate issuer: /CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Certificate serial: 018572CCA7AB6EAE9E2C13FED0E3815732F6
Authority key identifier: A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/GYB1eRWcS89CKiR037dE-T4cu5c.roa
Signing time: Mon 02 Jan 2023 14:04:52 +0000
ROA not before: Mon 02 Jan 2023 14:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200107
IP address blocks: 185.85.15.0/24 maxlen: 24
185.85.14.0/24 maxlen: 24
185.85.12.0/24 maxlen: 24
185.54.222.0/24 maxlen: 24
185.54.220.0/24 maxlen: 24
93.159.226.0/24 maxlen: 24
93.159.230.0/23 maxlen: 23
93.159.228.0/23 maxlen: 24
77.74.178.0/23 maxlen: 24
77.74.176.0/24 maxlen: 24
77.74.176.0/23 maxlen: 24
82.202.185.0/24 maxlen: 24
82.202.184.0/23 maxlen: 23
82.202.184.0/24 maxlen: 24
77.74.182.0/24 maxlen: 24
77.74.183.0/24 maxlen: 24
77.74.180.0/24 maxlen: 24
77.74.181.0/24 maxlen: 24
2a03:2480:802f::/48 maxlen: 48
2a03:2480:802a::/48 maxlen: 48
2a03:2480:8025::/48 maxlen: 48
2a03:2480:8020::/48 maxlen: 48
2a03:2480:80::/48 maxlen: 48
2a03:2480:8023::/48 maxlen: 48
2a03:2480:8027::/48 maxlen: 48
2a03:2480:8022::/48 maxlen: 48
2a03:2480:8000::/44 maxlen: 44
2a03:2480:8031::/48 maxlen: 48
2a03:2480:802c::/48 maxlen: 48
2a03:2480:70::/48 maxlen: 48
2a03:2480:8030::/48 maxlen: 48
2a03:2480:8033::/48 maxlen: 48
2a03:2480:802e::/48 maxlen: 48
2a03:2480:8029::/48 maxlen: 48
2a03:2480:69::/48 maxlen: 48
2a03:2480:8024::/48 maxlen: 48
2a03:2480:8032::/48 maxlen: 48
2a03:2480:802d::/48 maxlen: 48
2a03:2480:8010::/44 maxlen: 44
2a03:2480:8028::/48 maxlen: 48
2a03:2480:68::/48 maxlen: 48
2a03:2480:802b::/48 maxlen: 48
2a03:2480:8026::/48 maxlen: 48
2a03:2480:8021::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:a7:ab:6e:ae:9e:2c:13:fe:d0:e3:81:57:32:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Validity
Not Before: Jan 2 14:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19807579159c4bcf422a2474dfb744f93e1cbb97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a4:60:df:fd:03:f9:b5:57:c7:48:c3:b8:8a:
ec:d5:9f:9b:26:7d:6d:69:19:13:41:2e:bf:87:65:
4a:d7:d9:01:43:88:38:70:0d:8c:0f:1e:9f:49:91:
f9:34:f2:cb:ae:51:a1:ac:04:06:ae:c5:88:6a:6f:
77:b1:47:fb:f2:49:ca:ca:1d:04:2e:21:dc:d6:a2:
07:30:01:df:30:78:8d:b5:f2:46:47:61:2a:b6:6d:
58:26:43:05:f8:fe:2c:2a:8e:b4:bd:f6:84:34:c9:
89:26:80:4e:66:0d:cd:fb:8d:fc:c0:7d:83:c1:11:
f9:8e:52:df:37:fa:bc:1e:0f:74:a3:b9:b8:92:c7:
5a:67:6d:84:02:f0:79:07:15:2b:9a:aa:20:98:8c:
ce:59:2d:a6:80:d9:72:a7:2f:e4:bc:a3:f3:55:52:
79:06:23:36:7d:04:23:bd:17:1b:7b:2a:e4:64:b6:
0e:79:71:b5:b5:69:fc:ce:ae:00:1f:53:02:96:87:
3a:7b:80:eb:e5:86:34:53:2d:d5:a2:98:28:e8:f1:
ce:f5:ff:83:4e:ae:62:99:73:f7:eb:a6:16:a8:1b:
28:4c:53:ab:3e:03:a5:4a:be:e5:12:eb:35:44:4e:
40:19:47:9f:77:02:6d:bf:1a:2a:53:52:20:be:a0:
37:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:80:75:79:15:9C:4B:CF:42:2A:24:74:DF:B7:44:F9:3E:1C:BB:97
X509v3 Authority Key Identifier:
keyid:A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/GYB1eRWcS89CKiR037dE-T4cu5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/p9ha3isNTsHKCSqOJwPBkgDHLzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.176.0/21
82.202.184.0/23
93.159.226.0/24
93.159.228.0/22
185.54.220.0/24
185.54.222.0/24
185.85.12.0/24
185.85.14.0/23
IPv6:
2a03:2480:68::/47
2a03:2480:70::/48
2a03:2480:80::/48
2a03:2480:8000::-2a03:2480:8033:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
94:da:2b:80:6b:f6:e0:e7:af:12:af:87:80:e0:83:a5:02:1a:
d9:c9:30:f1:fb:cf:7f:ef:55:61:60:76:ea:13:96:94:89:09:
d6:07:18:d3:03:5b:66:ae:e9:39:50:c8:64:6b:56:57:6e:72:
d5:89:31:c0:ba:22:f7:d7:bd:9b:31:95:b9:c3:3d:89:20:1e:
11:40:2d:5e:21:96:ff:29:ec:61:bd:2f:a5:ed:0a:20:59:e2:
ac:62:d6:35:18:4f:3a:c4:99:28:7d:1f:4a:e4:f4:b3:14:01:
03:18:f0:89:05:bf:8c:b9:f0:a7:a2:5d:9b:5a:92:15:55:f6:
39:1b:ea:ff:ee:6b:87:ba:33:5d:83:6b:40:12:60:49:18:25:
f4:bd:0c:05:9c:b0:8c:df:79:a0:45:69:e2:d1:7e:e4:af:55:
ce:56:a0:69:37:b7:f8:2a:8c:70:08:c5:1a:8a:f7:33:3a:a0:
09:c3:ec:43:cb:45:0a:96:28:f2:1f:f4:85:fd:e5:27:10:a9:
f7:59:00:84:d8:0b:48:dc:44:da:01:ab:f3:1e:6b:cf:6f:80:
10:d2:bc:e5:59:54:3e:28:03:e8:73:a8:e2:c8:de:e6:da:c0:
af:ac:b1:be:c7:7b:7c:b7:76:8c:23:26:8b:36:5d:77:9d:eb:
2c:13:bf:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:48 2023 by rpki-client on console.sobornost.net