Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/ggxVy8lThvLDle7TR2HU4aA_OTY.roa
File: ggxVy8lThvLDle7TR2HU4aA_OTY.roa (raw, json)
Hash identifier: ES3m4UdFAXdb2s1lw0KfmyMHCU238mWUI4RIgzayTa8=
Subject key identifier: 82:0C:55:CB:C9:53:86:F2:C3:95:EE:D3:47:61:D4:E1:A0:3F:39:36
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01863672A5C33AC41DA983CE0E6E41B7E74F
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/ggxVy8lThvLDle7TR2HU4aA_OTY.roa
Signing time: Thu 09 Feb 2023 13:52:08 +0000
ROA not before: Thu 09 Feb 2023 13:52:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204384
IP address blocks: 193.46.210.0/24 maxlen: 24
5.180.176.0/24 maxlen: 24
5.105.130.0/24 maxlen: 24
5.105.127.0/24 maxlen: 24
5.105.139.0/24 maxlen: 24
5.105.138.0/24 maxlen: 24
5.105.143.0/24 maxlen: 24
5.105.142.0/24 maxlen: 24
5.105.156.0/24 maxlen: 24
5.105.165.0/24 maxlen: 24
5.105.162.0/24 maxlen: 24
5.105.168.0/24 maxlen: 24
5.105.172.0/24 maxlen: 24
5.105.69.0/24 maxlen: 24
5.105.68.0/24 maxlen: 24
5.105.74.0/24 maxlen: 24
5.105.82.0/24 maxlen: 24
5.105.81.0/24 maxlen: 24
5.105.79.0/24 maxlen: 24
5.105.95.0/24 maxlen: 24
5.105.103.0/24 maxlen: 24
5.105.112.0/24 maxlen: 24
5.105.108.0/24 maxlen: 24
5.105.106.0/24 maxlen: 24
5.105.115.0/24 maxlen: 24
5.105.114.0/24 maxlen: 24
5.105.113.0/24 maxlen: 24
5.105.240.0/24 maxlen: 24
5.105.239.0/24 maxlen: 24
5.105.244.0/24 maxlen: 24
5.105.245.0/24 maxlen: 24
5.105.249.0/24 maxlen: 24
5.105.252.0/24 maxlen: 24
5.105.248.0/24 maxlen: 24
5.105.186.0/24 maxlen: 24
5.105.187.0/24 maxlen: 24
5.105.195.0/24 maxlen: 24
5.105.199.0/24 maxlen: 24
5.105.198.0/24 maxlen: 24
5.105.197.0/24 maxlen: 24
5.105.202.0/24 maxlen: 24
5.105.206.0/24 maxlen: 24
5.105.204.0/24 maxlen: 24
5.105.203.0/24 maxlen: 24
5.105.207.0/24 maxlen: 24
5.105.216.0/24 maxlen: 24
5.105.12.0/24 maxlen: 24
5.105.38.0/24 maxlen: 24
5.105.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:72:a5:c3:3a:c4:1d:a9:83:ce:0e:6e:41:b7:e7:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Feb 9 13:52:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=820c55cbc95386f2c395eed34761d4e1a03f3936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:90:33:a3:75:4f:66:c3:1c:56:2a:70:5e:
73:04:bb:0a:52:69:b5:f9:5c:0a:33:ea:75:73:c8:
f1:b4:5b:0f:d4:42:c2:db:b3:4f:92:fd:3f:5a:28:
a2:56:38:12:54:33:fe:78:e0:6e:f5:a1:5d:72:b2:
21:08:e0:25:2c:f9:9e:3e:0e:86:15:98:1c:a7:65:
0b:1e:b0:3a:da:01:6f:2f:60:cb:b9:bb:c1:19:95:
a1:a8:67:ad:67:95:81:2e:df:f6:38:5b:d4:37:6c:
95:70:15:cc:de:94:a0:97:ab:6c:aa:15:28:8a:dc:
ec:6f:67:98:9d:ec:19:59:db:4f:28:ab:bd:c2:7d:
2c:36:d4:f0:33:00:e3:97:1c:4c:99:aa:ae:e8:4e:
7a:dc:fd:76:2d:7c:21:b6:34:77:be:d7:0f:66:34:
42:2a:55:84:44:43:57:cd:d2:a3:d6:60:d4:3d:52:
92:c0:5c:4c:03:fb:51:c4:16:af:d2:42:bc:a2:ed:
5b:75:c5:19:54:5d:a4:d9:e1:c5:88:57:95:a5:23:
02:c7:7e:29:ae:25:18:8a:f4:e4:8c:a5:4c:44:9a:
11:a1:5a:60:2a:e0:f6:1b:db:82:83:2b:45:05:18:
7b:7a:83:84:91:14:32:97:20:cb:45:ec:11:95:f3:
bd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0C:55:CB:C9:53:86:F2:C3:95:EE:D3:47:61:D4:E1:A0:3F:39:36
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/ggxVy8lThvLDle7TR2HU4aA_OTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.12.0/24
5.105.38.0/23
5.105.68.0/23
5.105.74.0/24
5.105.79.0/24
5.105.81.0-5.105.82.255
5.105.95.0/24
5.105.103.0/24
5.105.106.0/24
5.105.108.0/24
5.105.112.0/22
5.105.127.0/24
5.105.130.0/24
5.105.138.0/23
5.105.142.0/23
5.105.156.0/24
5.105.162.0/24
5.105.165.0/24
5.105.168.0/24
5.105.172.0/24
5.105.186.0/23
5.105.195.0/24
5.105.197.0-5.105.199.255
5.105.202.0-5.105.204.255
5.105.206.0/23
5.105.216.0/24
5.105.239.0-5.105.240.255
5.105.244.0/23
5.105.248.0/23
5.105.252.0/24
5.180.176.0/24
193.46.210.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e0:25:14:ab:04:2a:d7:af:ee:bc:9a:4d:cf:d0:0c:63:14:
4a:fc:d3:77:ce:7d:66:3d:f4:79:ed:05:1d:45:0e:be:66:bb:
ed:04:7e:53:1b:7d:aa:e3:4f:3b:d2:0c:60:1a:b1:6b:c4:5e:
b7:38:df:fb:d7:eb:2a:e6:28:55:0f:67:63:41:b8:26:63:9e:
c3:ec:96:9f:a3:22:23:be:b1:78:3c:11:5c:3a:04:d6:e6:fc:
3f:01:40:39:16:e7:12:52:17:a8:81:01:b8:76:39:1e:4d:f5:
5a:f5:1b:12:47:f4:62:bc:43:a1:d9:05:3e:e1:f2:9a:96:19:
98:fd:56:b3:05:36:52:4e:35:08:94:86:1f:7e:8c:b0:68:69:
8c:72:b1:69:44:dc:9b:8e:7e:5c:2d:58:68:63:ff:c4:46:c1:
6f:41:59:f0:09:17:32:31:62:70:13:70:89:d6:b8:b5:82:f2:
b5:7e:c0:17:e2:a0:77:4b:66:c3:9b:8e:22:0c:7c:cc:d9:44:
9c:e7:07:2f:da:c4:06:22:00:ba:62:dc:b9:9a:f8:a9:b1:8c:
21:fd:ac:dc:33:c9:53:cc:e7:14:5d:0e:9c:33:9e:23:63:7f:
76:ed:73:58:6a:09:20:a9:aa:33:ce:9e:ee:57:99:e8:ce:06:
1f:30:08:74
-----BEGIN CERTIFICATE-----
MIIF3DCCBMSgAwIBAgISAYY2cqXDOsQdqYPODm5Bt+dPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwMjA5MTM1MjA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjBjNTVjYmM5NTM4NmYyYzM5NWVlZDM0NzYxZDRlMWEwM2YzOTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCyQM6N1T2bDHFYqcF5zBLsKUmm1
+VwKM+p1c8jxtFsP1ELC27NPkv0/WiiiVjgSVDP+eOBu9aFdcrIhCOAlLPmePg6G
FZgcp2ULHrA62gFvL2DLubvBGZWhqGetZ5WBLt/2OFvUN2yVcBXM3pSgl6tsqhUo
itzsb2eYnewZWdtPKKu9wn0sNtTwMwDjlxxMmaqu6E563P12LXwhtjR3vtcPZjRC
KlWERENXzdKj1mDUPVKSwFxMA/tRxBav0kK8ou1bdcUZVF2k2eHFiFeVpSMCx34p
riUYivTkjKVMRJoRoVpgKuD2G9uCgytFBRh7eoOEkRQylyDLRewRlfO9ZQIDAQAB
o4IC6DCCAuQwHQYDVR0OBBYEFIIMVcvJU4byw5Xu00dh1OGgPzk2MB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvZ2d4Vnk4bFRodkxEbGU3VFIySFU0YUFfT1RZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIH9BggrBgEFBQcBBwEB/wSB7TCB6jCB5wQCAAEwgeADBAAF
aQwDBAEFaSYDBAEFaUQDBAAFaUoDBAAFaU8wDAMEAAVpUQMEAAVpUgMEAAVpXwME
AAVpZwMEAAVpagMEAAVpbAMEAgVpcAMEAAVpfwMEAAVpggMEAQVpigMEAQVpjgME
AAVpnAMEAAVpogMEAAVppQMEAAVpqAMEAAVprAMEAQVpugMEAAVpwzAMAwQABWnF
AwQDBWnAMAwDBAEFacoDBAAFacwDBAEFac4DBAAFadgwDAMEAAVp7wMEAAVp8AME
AQVp9AMEAQVp+AMEAAVp/AMEAAW0sAMEAMEu0jANBgkqhkiG9w0BAQsFAAOCAQEA
MeAlFKsEKtev7ryaTc/QDGMUSvzTd859Zj30ee0FHUUOvma77QR+Uxt9quNPO9IM
YBqxa8Retzjf+9frKuYoVQ9nY0G4JmOew+yWn6MiI76xeDwRXDoE1ub8PwFAORbn
ElIXqIEBuHY5Hk31WvUbEkf0YrxDodkFPuHympYZmP1WswU2Uk41CJSGH36MsGhp
jHKxaUTcm45+XC1YaGP/xEbBb0FZ8AkXMjFicBNwida4tYLytX7AF+Kgd0tmw5uO
Igx8zNlEnOcHL9rEBiIAumLcuZr4qbGMIf2s3DPJU8znFF0OnDOeI2N/du1zWGoJ
IKmqM86e7leZ6M4GHzAIdA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net