Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/SSh49vRREU_vylOsCByx0r0uKCE.roa
File: SSh49vRREU_vylOsCByx0r0uKCE.roa (raw, json)
Hash identifier: A+pYul6pwQduNO6ylow8YJ0AebG9lrfOOYXnbxwXoYo=
Subject key identifier: 49:28:78:F6:F4:51:11:4F:EF:CA:53:AC:08:1C:B1:D2:BD:2E:28:21
Certificate issuer: /CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Certificate serial: 018572D5A97C246448A3C2652292558A337A
Authority key identifier: 0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/SSh49vRREU_vylOsCByx0r0uKCE.roa
Signing time: Mon 02 Jan 2023 14:14:43 +0000
ROA not before: Mon 02 Jan 2023 14:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45011
IP address blocks: 188.120.160.0/19 maxlen: 19
82.117.96.0/19 maxlen: 19
94.198.64.0/21 maxlen: 21
94.245.16.0/20 maxlen: 20
85.235.0.0/19 maxlen: 19
85.235.17.0/24 maxlen: 24
94.245.48.0/20 maxlen: 20
85.235.24.0/24 maxlen: 24
85.235.18.0/23 maxlen: 23
85.235.20.0/22 maxlen: 22
178.251.240.0/21 maxlen: 21
213.185.12.0/22 maxlen: 22
213.185.16.0/23 maxlen: 23
91.232.59.0/24 maxlen: 24
91.232.60.0/23 maxlen: 23
213.185.20.0/23 maxlen: 23
213.185.24.0/24 maxlen: 24
213.185.26.0/24 maxlen: 24
109.124.128.0/18 maxlen: 18
79.138.0.0/17 maxlen: 17
109.225.64.0/18 maxlen: 18
85.238.192.0/19 maxlen: 19
85.30.0.0/18 maxlen: 18
213.185.4.0/24 maxlen: 24
213.185.6.0/24 maxlen: 24
213.185.7.0/24 maxlen: 24
213.185.8.0/23 maxlen: 23
213.185.10.0/24 maxlen: 24
80.244.64.0/19 maxlen: 19
185.18.164.0/22 maxlen: 22
94.245.0.0/20 maxlen: 20
77.53.0.0/16 maxlen: 16
87.241.64.0/18 maxlen: 18
87.96.128.0/17 maxlen: 17
185.52.180.0/22 maxlen: 22
88.83.32.0/19 maxlen: 19
213.21.64.0/18 maxlen: 18
37.17.248.0/21 maxlen: 21
188.122.128.0/19 maxlen: 19
5.44.192.0/20 maxlen: 20
88.129.0.0/16 maxlen: 16
217.72.54.0/24 maxlen: 24
217.72.56.0/22 maxlen: 22
217.72.52.0/23 maxlen: 23
217.72.60.0/23 maxlen: 23
217.72.62.0/24 maxlen: 24
178.132.248.0/21 maxlen: 21
85.8.0.0/18 maxlen: 18
185.58.144.0/22 maxlen: 22
195.78.224.0/22 maxlen: 22
146.247.80.0/21 maxlen: 21
89.236.2.0/23 maxlen: 23
89.236.4.0/22 maxlen: 22
89.236.0.0/23 maxlen: 23
89.236.8.0/23 maxlen: 23
89.236.11.0/24 maxlen: 24
89.236.17.0/24 maxlen: 24
89.236.15.0/24 maxlen: 24
89.236.18.0/23 maxlen: 23
89.236.20.0/22 maxlen: 22
89.236.24.0/23 maxlen: 23
89.236.26.0/24 maxlen: 24
89.236.35.0/24 maxlen: 24
89.236.36.0/23 maxlen: 23
89.236.38.0/24 maxlen: 24
89.236.47.0/24 maxlen: 24
89.236.48.0/24 maxlen: 24
62.182.0.0/21 maxlen: 21
83.209.0.0/16 maxlen: 16
31.192.192.0/20 maxlen: 20
5.172.144.0/21 maxlen: 21
95.155.192.0/18 maxlen: 18
89.236.53.0/24 maxlen: 24
89.236.54.0/23 maxlen: 23
89.236.56.0/22 maxlen: 22
46.236.64.0/18 maxlen: 18
213.142.0.0/19 maxlen: 19
87.236.88.0/21 maxlen: 21
87.253.64.0/19 maxlen: 19
2a02:7b8::/32 maxlen: 32
2a00:8280::/32 maxlen: 32
2a02:23c0::/32 maxlen: 32
2a01:b700::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:a9:7c:24:64:48:a3:c2:65:22:92:55:8a:33:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce1308ead6adb1d085e7e5910a0cb2de56aa32e
Validity
Not Before: Jan 2 14:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=492878f6f451114fefca53ac081cb1d2bd2e2821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b0:cf:c5:75:12:6f:be:60:1c:a1:29:b0:46:
bc:21:08:75:8a:ed:d9:7f:3b:fc:bd:1c:3a:2a:ad:
07:c8:cc:63:51:e2:25:67:0e:8b:08:98:e6:44:93:
70:cc:42:81:fc:53:c4:cd:08:07:bd:e0:c6:1d:a7:
d2:f1:31:54:4e:73:9f:a8:b5:85:9d:2f:52:71:ac:
c3:5d:f5:4d:3a:3b:04:87:cf:85:a9:0b:3f:df:2a:
0a:c3:a8:fb:26:66:40:50:b7:3a:b0:95:e9:d0:d3:
15:ee:21:f9:94:ac:55:7f:95:3d:b9:60:68:91:93:
d7:2e:0c:4a:38:51:22:56:90:df:1c:c7:ac:ff:5b:
ce:5f:54:05:1b:9f:7e:98:cc:07:40:bc:7a:27:0a:
16:77:e1:49:08:15:7a:b3:de:8b:d7:8d:40:b0:cb:
a4:59:5c:8d:58:bc:75:79:60:3c:97:e1:7b:a8:6e:
f6:e9:4c:51:d9:81:c2:1c:1a:03:2f:25:23:f1:c5:
47:4d:00:0d:38:1e:9b:96:9f:51:d3:50:2a:4c:3f:
73:40:43:65:05:36:fe:37:0d:d9:ce:cf:12:cc:38:
12:d8:4a:03:52:41:2a:44:5e:75:2e:68:e8:af:79:
38:b1:18:b4:27:8d:be:c5:85:dc:17:46:27:83:73:
50:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:28:78:F6:F4:51:11:4F:EF:CA:53:AC:08:1C:B1:D2:BD:2E:28:21
X509v3 Authority Key Identifier:
keyid:0C:E1:30:8E:AD:6A:DB:1D:08:5E:7E:59:10:A0:CB:2D:E5:6A:A3:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/SSh49vRREU_vylOsCByx0r0uKCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/899380-ad27-44eb-8c2e-b0bad18f02d0/1/DOEwjq1q2x0IXn5ZEKDLLeVqoy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.192.0/20
5.172.144.0/21
31.192.192.0/20
37.17.248.0/21
46.236.64.0/18
62.182.0.0/21
77.53.0.0/16
79.138.0.0/17
80.244.64.0/19
82.117.96.0/19
83.209.0.0/16
85.8.0.0/18
85.30.0.0/18
85.235.0.0/19
85.238.192.0/19
87.96.128.0/17
87.236.88.0/21
87.241.64.0/18
87.253.64.0/19
88.83.32.0/19
88.129.0.0/16
89.236.0.0-89.236.9.255
89.236.11.0/24
89.236.15.0/24
89.236.17.0-89.236.26.255
89.236.35.0-89.236.38.255
89.236.47.0-89.236.48.255
89.236.53.0-89.236.59.255
91.232.59.0-91.232.61.255
94.198.64.0/21
94.245.0.0/19
94.245.48.0/20
95.155.192.0/18
109.124.128.0/18
109.225.64.0/18
146.247.80.0/21
178.132.248.0/21
178.251.240.0/21
185.18.164.0/22
185.52.180.0/22
185.58.144.0/22
188.120.160.0/19
188.122.128.0/19
195.78.224.0/22
213.21.64.0/18
213.142.0.0/19
213.185.4.0/24
213.185.6.0-213.185.10.255
213.185.12.0-213.185.17.255
213.185.20.0/23
213.185.24.0/24
213.185.26.0/24
217.72.52.0-217.72.54.255
217.72.56.0-217.72.62.255
IPv6:
2a00:8280::/32
2a01:b700::/32
2a02:7b8::/32
2a02:23c0::/32
Signature Algorithm: sha256WithRSAEncryption
83:53:9c:ca:3e:7f:3f:66:11:fe:83:0d:e4:2c:87:8c:1f:93:
2e:e1:84:d7:10:58:da:23:31:e2:51:74:5b:11:db:f7:a8:84:
4d:29:82:f5:ec:9f:c3:1e:b9:52:2d:bb:d4:fe:c7:db:a3:71:
d1:b8:55:48:bb:4b:6d:8e:c0:66:37:4f:19:88:b3:ee:50:23:
c4:60:b9:ea:d3:e9:ad:24:8f:08:61:a4:b2:cb:80:b2:25:a8:
cb:ac:8d:43:a1:48:9d:88:95:ab:0d:88:f2:71:0b:98:c5:11:
84:ab:42:16:ec:86:fe:b8:2c:31:f3:c9:ac:b3:f2:40:a0:d9:
cd:ec:67:c9:6d:3b:ff:29:b5:15:c5:94:58:08:d5:78:26:48:
de:7e:47:2f:dc:c8:2a:8a:f6:39:2c:3b:fa:9b:2a:cc:69:9a:
7a:7e:2b:8c:db:d4:89:a7:fe:59:12:22:4b:32:50:a3:9e:1c:
7d:3c:1b:e7:01:dc:c8:f9:9a:8a:98:92:6d:a2:10:45:90:80:
29:96:8e:31:24:48:73:19:26:0b:18:68:9d:4d:17:72:dc:40:
31:14:83:57:67:cb:a9:8f:83:0d:ba:6f:82:7c:4c:6b:d3:2e:
40:8c:e3:e1:7e:b4:56:f4:01:a6:78:71:f5:44:cb:5a:e2:0f:
bd:98:75:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net