Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/XhvQ-DWF19nDl8JJdO696ktKos8.roa
File: XhvQ-DWF19nDl8JJdO696ktKos8.roa (raw, json)
Hash identifier: +kYXO31ZsxRngc1c5ZTiCRUXID0gy/Ov1AcgO8ogvWg=
Subject key identifier: 5E:1B:D0:F8:35:85:D7:D9:C3:97:C2:49:74:EE:BD:EA:4B:4A:A2:CF
Certificate issuer: /CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Certificate serial: 018CC8DEE83A2DCE312264CAA994D149B16B
Authority key identifier: A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/XhvQ-DWF19nDl8JJdO696ktKos8.roa
Signing time: Tue 02 Jan 2024 06:31:40 +0000
ROA not before: Tue 02 Jan 2024 06:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200107
IP address blocks: 185.85.15.0/24 maxlen: 24
185.85.14.0/24 maxlen: 24
185.85.12.0/24 maxlen: 24
185.54.222.0/24 maxlen: 24
185.54.220.0/24 maxlen: 24
185.54.221.0/24 maxlen: 24
185.54.223.0/24 maxlen: 24
93.159.226.0/24 maxlen: 24
93.159.230.0/23 maxlen: 23
93.159.228.0/23 maxlen: 24
77.74.178.0/23 maxlen: 24
77.74.176.0/24 maxlen: 24
77.74.176.0/23 maxlen: 24
82.202.185.0/24 maxlen: 24
82.202.184.0/23 maxlen: 23
82.202.184.0/24 maxlen: 24
77.74.182.0/24 maxlen: 24
77.74.183.0/24 maxlen: 24
77.74.180.0/24 maxlen: 24
77.74.181.0/24 maxlen: 24
2a03:2480:802f::/48 maxlen: 48
2a03:2480:802a::/48 maxlen: 48
2a03:2480:8025::/48 maxlen: 48
2a03:2480:8020::/48 maxlen: 48
2a03:2480:80::/48 maxlen: 48
2a03:2480:8023::/48 maxlen: 48
2a03:2480:8027::/48 maxlen: 48
2a03:2480:8022::/48 maxlen: 48
2a03:2480:8000::/44 maxlen: 44
2a03:2480:8031::/48 maxlen: 48
2a03:2480:802c::/48 maxlen: 48
2a03:2480:70::/48 maxlen: 48
2a03:2480:8030::/48 maxlen: 48
2a03:2480:8033::/48 maxlen: 48
2a03:2480:802e::/48 maxlen: 48
2a03:2480:8029::/48 maxlen: 48
2a03:2480:69::/48 maxlen: 48
2a03:2480:8024::/48 maxlen: 48
2a03:2480:8032::/48 maxlen: 48
2a03:2480:802d::/48 maxlen: 48
2a03:2480:8010::/44 maxlen: 44
2a03:2480:8028::/48 maxlen: 48
2a03:2480:68::/48 maxlen: 48
2a03:2480:802b::/48 maxlen: 48
2a03:2480:8026::/48 maxlen: 48
2a03:2480:8021::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 16 Apr 2024 08:03:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:e8:3a:2d:ce:31:22:64:ca:a9:94:d1:49:b1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d85ade2b0d4ec1ca092a8e2703c19200c72f32
Validity
Not Before: Jan 2 06:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e1bd0f83585d7d9c397c24974eebdea4b4aa2cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:94:32:56:15:e1:39:25:d8:a6:33:87:34:c7:
39:f7:ca:8f:6d:70:88:9e:a1:87:17:b7:3d:b4:4d:
45:14:b0:40:4f:7d:21:cb:c0:41:f2:2a:d8:da:4c:
5d:7a:f0:18:70:72:e7:13:9f:af:09:ee:c5:fa:d9:
e6:bf:a6:09:26:e8:7e:86:a6:20:d3:f6:75:05:d7:
6e:a2:ad:83:dd:5c:a5:7e:6d:a7:55:2a:cf:27:94:
b5:37:3b:3e:6e:3a:44:95:1f:44:33:bf:48:c4:fd:
d3:3c:44:cc:81:10:6b:30:3c:5e:06:21:86:03:32:
a7:ec:5a:d1:8c:0d:14:26:f2:9d:b8:a4:24:34:68:
5f:a5:bf:ec:57:be:54:82:cd:07:ae:6b:e2:78:96:
27:0d:59:f8:59:56:f2:d9:55:5b:a4:51:b7:f7:b4:
21:39:b5:ab:57:7d:e8:c0:2f:2e:60:39:b6:87:77:
ed:fa:11:f8:52:ec:6e:fd:5b:21:09:b9:b4:49:43:
68:3e:50:60:79:01:02:da:ad:3d:7b:5e:4d:38:32:
1d:8a:66:ec:6f:75:c9:29:04:88:28:79:5f:ea:07:
ec:2a:cf:3a:c0:2b:ec:42:9e:e1:19:c5:96:ed:5c:
4f:61:0c:7e:ba:50:86:d7:9d:50:28:4b:d9:33:50:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1B:D0:F8:35:85:D7:D9:C3:97:C2:49:74:EE:BD:EA:4B:4A:A2:CF
X509v3 Authority Key Identifier:
keyid:A7:D8:5A:DE:2B:0D:4E:C1:CA:09:2A:8E:27:03:C1:92:00:C7:2F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9ha3isNTsHKCSqOJwPBkgDHLzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/XhvQ-DWF19nDl8JJdO696ktKos8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/403142-dcfc-4fb5-ae1f-04b0bf60b9b7/1/p9ha3isNTsHKCSqOJwPBkgDHLzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.176.0/21
82.202.184.0/23
93.159.226.0/24
93.159.228.0/22
185.54.220.0/22
185.85.12.0/24
185.85.14.0/23
IPv6:
2a03:2480:68::/47
2a03:2480:70::/48
2a03:2480:80::/48
2a03:2480:8000::-2a03:2480:8033:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a0:4c:7a:54:60:81:bd:a9:ac:98:f8:ca:de:18:93:f3:11:58:
74:d4:e4:1d:19:99:9c:64:1c:60:b5:d5:f0:68:b3:02:7b:d8:
b1:2a:06:74:b6:b0:69:37:07:5d:54:f1:3c:5b:db:21:8d:18:
46:f7:e9:85:82:3b:0a:5e:8b:11:69:53:ea:31:4c:ee:b3:f0:
d8:c3:89:98:85:98:a5:8e:c9:21:bf:64:47:a7:33:d5:9b:87:
69:bf:1f:e9:62:a2:bd:98:e4:d6:7d:62:0c:5a:ea:c6:73:89:
8a:56:9b:5e:5f:8b:56:57:d9:4e:a9:bd:23:85:93:cd:1e:ef:
25:e6:31:e7:95:ff:87:88:2f:cd:8c:22:19:44:a5:09:ae:66:
4b:4d:4e:b5:d4:8c:59:7e:76:35:1a:20:28:ed:66:bf:cf:82:
24:09:26:3f:6f:cc:1c:4f:9c:3a:52:02:05:4f:65:13:10:fc:
5e:9c:51:18:3e:2a:2a:8c:8c:78:c9:90:c2:10:57:27:4c:b5:
75:64:62:39:47:09:b8:0d:60:63:f0:99:7e:92:f8:1c:9b:af:
de:91:6b:14:26:2d:d8:f7:4c:ce:38:e8:af:34:65:fb:ce:66:
8d:f1:be:56:a0:2a:09:50:eb:77:f0:10:12:f6:88:71:e5:b0:
99:03:a4:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 15:59:09 2024 by rpki-client on console.sobornost.net