Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/hW12NsaAJCbcwFIkdssMlUQJCCs.roa
File: hW12NsaAJCbcwFIkdssMlUQJCCs.roa (raw, json)
Hash identifier: VexNiyfOGSArTo0ycdUeJHBg/cGko6N19pMBY4sHlK4=
Subject key identifier: 85:6D:76:36:C6:80:24:26:DC:C0:52:24:76:CB:0C:95:44:09:08:2B
Certificate issuer: /CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Certificate serial: 018BF79F1BB5DAD0D1F0B302CCF3A9A3FCC6
Authority key identifier: 22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/hW12NsaAJCbcwFIkdssMlUQJCCs.roa
Signing time: Wed 22 Nov 2023 15:21:21 +0000
ROA not before: Wed 22 Nov 2023 15:21:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16030
IP address blocks: 185.184.151.0/24 maxlen: 24
185.184.150.0/24 maxlen: 24
185.184.149.0/24 maxlen: 24
185.184.148.0/22 maxlen: 24
77.75.176.0/21 maxlen: 24
77.75.176.0/24 maxlen: 24
77.75.179.0/24 maxlen: 24
77.75.178.0/24 maxlen: 24
77.75.177.0/24 maxlen: 24
77.75.183.0/24 maxlen: 24
77.75.182.0/24 maxlen: 24
77.75.181.0/24 maxlen: 24
212.121.229.0/24 maxlen: 24
213.148.218.0/24 maxlen: 24
212.121.232.0/24 maxlen: 24
213.148.219.0/24 maxlen: 24
213.148.217.0/24 maxlen: 24
212.121.231.0/24 maxlen: 24
213.148.216.0/24 maxlen: 24
213.148.214.0/24 maxlen: 24
213.148.215.0/24 maxlen: 24
212.121.230.0/24 maxlen: 24
212.121.233.0/24 maxlen: 24
212.121.228.0/24 maxlen: 24
212.121.227.0/24 maxlen: 24
212.121.235.0/24 maxlen: 24
212.121.239.0/24 maxlen: 24
212.121.238.0/24 maxlen: 24
213.148.223.0/24 maxlen: 24
212.121.237.0/24 maxlen: 24
212.121.240.0/24 maxlen: 24
213.148.222.0/24 maxlen: 24
212.121.236.0/24 maxlen: 24
213.148.221.0/24 maxlen: 24
213.148.220.0/24 maxlen: 24
212.121.234.0/24 maxlen: 24
212.121.246.0/24 maxlen: 24
212.121.245.0/24 maxlen: 24
212.121.244.0/24 maxlen: 24
212.121.243.0/24 maxlen: 24
212.121.242.0/24 maxlen: 24
212.121.241.0/24 maxlen: 24
212.121.250.0/24 maxlen: 24
212.121.249.0/24 maxlen: 24
212.121.248.0/24 maxlen: 24
212.121.247.0/24 maxlen: 24
212.121.253.0/24 maxlen: 24
212.121.252.0/24 maxlen: 24
212.121.251.0/24 maxlen: 24
212.121.255.0/24 maxlen: 24
212.121.254.0/24 maxlen: 24
213.148.192.0/19 maxlen: 24
213.148.192.0/24 maxlen: 24
213.148.198.0/24 maxlen: 24
213.148.197.0/24 maxlen: 24
213.148.196.0/24 maxlen: 24
213.148.199.0/24 maxlen: 24
213.148.195.0/24 maxlen: 24
213.148.194.0/24 maxlen: 24
213.148.193.0/24 maxlen: 24
213.148.205.0/24 maxlen: 24
213.148.204.0/24 maxlen: 24
213.148.203.0/24 maxlen: 24
213.148.202.0/24 maxlen: 24
213.148.206.0/24 maxlen: 24
213.148.201.0/24 maxlen: 24
213.148.200.0/24 maxlen: 24
213.148.208.0/24 maxlen: 24
213.148.207.0/24 maxlen: 24
213.148.212.0/24 maxlen: 24
213.148.211.0/24 maxlen: 24
212.121.225.0/24 maxlen: 24
213.148.210.0/24 maxlen: 24
213.148.213.0/24 maxlen: 24
212.121.224.0/24 maxlen: 24
213.148.209.0/24 maxlen: 24
212.121.226.0/24 maxlen: 24
2001:4d10::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:9f:1b:b5:da:d0:d1:f0:b3:02:cc:f3:a9:a3:fc:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Validity
Not Before: Nov 22 15:21:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=856d7636c6802426dcc0522476cb0c954409082b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:87:f9:82:dd:d8:c4:f9:a0:35:d4:60:7a:46:
90:bf:31:25:31:45:cc:85:e2:13:cc:29:41:6c:04:
df:f0:07:54:ae:24:8c:45:25:35:2c:4d:c4:9d:ed:
ec:cd:6f:90:dc:6f:27:68:3d:93:96:f5:6e:a0:52:
63:d8:af:11:9c:7f:62:f7:ec:5a:c8:14:3d:b8:92:
e2:2d:8a:28:7a:0e:bd:1c:df:e8:48:9c:e0:4f:4c:
50:e9:9d:f9:d5:b8:34:6f:74:14:66:bc:4d:86:bc:
97:59:de:f7:eb:61:9e:ec:ca:38:57:63:33:f9:e2:
a0:e9:8d:5c:31:3b:e1:e4:da:29:ec:38:13:2a:74:
25:52:58:51:cc:08:5e:e6:0f:22:a5:e0:ab:4b:bf:
f4:4b:03:a8:69:ef:ed:b0:d7:d7:6f:22:97:de:5a:
88:ce:f3:0e:86:7c:a1:c7:1d:c3:f2:82:fa:37:cd:
26:68:76:71:97:ce:05:e6:c2:d6:67:83:83:e7:f5:
d3:d4:5c:49:4b:dd:2d:0f:99:14:b1:83:d0:f4:0d:
6a:ce:9b:fd:32:3d:e6:41:94:c6:02:85:56:be:e5:
1c:de:02:dd:d7:f2:62:0f:87:73:f9:8e:25:c1:7c:
d8:bd:f1:9d:d8:aa:e3:9d:f4:da:d4:24:20:52:f1:
ce:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:6D:76:36:C6:80:24:26:DC:C0:52:24:76:CB:0C:95:44:09:08:2B
X509v3 Authority Key Identifier:
keyid:22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/hW12NsaAJCbcwFIkdssMlUQJCCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/IsfNp19OFeSG3uWmUBy-IBi8Dg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.176.0/21
185.184.148.0/22
212.121.224.0/19
213.148.192.0/19
IPv6:
2001:4d10::/32
Signature Algorithm: sha256WithRSAEncryption
b7:0a:0b:1e:ec:91:27:a8:33:0d:96:dc:9a:50:67:f8:7d:1a:
ba:1a:72:4c:35:94:f0:61:10:c7:b4:a3:02:bf:e3:c4:dc:99:
d7:73:69:e5:56:7e:b7:ea:aa:4f:b0:6c:43:8b:58:78:e1:d3:
36:64:f4:ea:3d:12:aa:a8:cd:9b:2a:c1:1e:eb:4d:22:e4:88:
c8:52:85:7e:c9:0f:d8:46:a3:ab:46:7c:fd:f2:5f:7f:ed:c0:
b6:da:e9:b8:f5:bd:2f:09:24:09:11:ca:8d:4d:22:c8:28:72:
77:c1:f7:37:50:ae:f1:f2:e2:05:2c:1f:2e:0e:2b:3c:59:54:
4c:68:29:a4:4a:32:a5:95:13:96:bb:0c:68:7e:d4:67:76:04:
b3:36:d7:35:a1:34:38:2d:db:20:f9:9a:1d:fc:ca:00:a0:f5:
a9:7a:f5:ef:cf:6e:5a:28:5a:72:10:cb:fb:f4:a4:e6:ee:91:
5a:10:de:84:dc:ee:3e:99:48:91:51:d0:81:ba:d6:2c:10:40:
92:ab:41:c4:d3:b6:5c:0b:f0:c1:38:20:c8:ce:62:88:66:ec:
d9:5e:83:48:33:2d:9c:08:ff:ee:97:d8:56:7b:d8:87:8d:c6:
e3:59:15:56:38:88:d2:98:b4:4c:15:19:c3:be:38:9c:87:42:
f7:91:c7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:02 2023 by rpki-client on console.sobornost.net