Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/MntlJj6JqkBuLMlE5N7M-dBR2Ok.roa
File: MntlJj6JqkBuLMlE5N7M-dBR2Ok.roa (raw, json)
Hash identifier: I6jpSD30ZMuv6AI8tSGJ/vD0YRjnkhDA52BRS/Bj+aQ=
Subject key identifier: 32:7B:65:26:3E:89:AA:40:6E:2C:C9:44:E4:DE:CC:F9:D0:51:D8:E9
Certificate issuer: /CN=c3e86569b1690c9dff745cbb43805b8582b005ad
Certificate serial: 018572B3F9C9C6F08D4116C7F1C19278B8BC
Authority key identifier: C3:E8:65:69:B1:69:0C:9D:FF:74:5C:BB:43:80:5B:85:82:B0:05:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-hlabFpDJ3_dFy7Q4BbhYKwBa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/MntlJj6JqkBuLMlE5N7M-dBR2Ok.roa
Signing time: Mon 02 Jan 2023 13:37:55 +0000
ROA not before: Mon 02 Jan 2023 13:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47253
IP address blocks: 62.16.64.0/24 maxlen: 24
62.16.64.0/20 maxlen: 20
62.16.65.0/24 maxlen: 24
62.16.67.0/24 maxlen: 24
62.16.66.0/24 maxlen: 24
185.6.58.0/24 maxlen: 24
185.6.57.0/24 maxlen: 24
62.16.79.0/24 maxlen: 24
185.6.56.0/22 maxlen: 24
185.6.56.0/24 maxlen: 24
185.6.59.0/24 maxlen: 24
194.58.242.0/23 maxlen: 23
194.58.244.0/23 maxlen: 23
194.58.247.0/24 maxlen: 24
93.184.1.0/24 maxlen: 24
93.184.0.0/22 maxlen: 22
93.184.0.0/20 maxlen: 20
93.184.0.0/24 maxlen: 24
93.184.3.0/24 maxlen: 24
93.184.2.0/24 maxlen: 24
93.184.4.0/22 maxlen: 22
93.184.4.0/24 maxlen: 24
93.184.11.0/24 maxlen: 24
93.184.5.0/24 maxlen: 24
93.184.6.0/24 maxlen: 24
93.184.8.0/24 maxlen: 24
93.184.7.0/24 maxlen: 24
93.184.8.0/22 maxlen: 22
93.184.10.0/24 maxlen: 24
93.184.9.0/24 maxlen: 24
93.184.12.0/24 maxlen: 24
93.184.13.0/24 maxlen: 24
93.184.12.0/22 maxlen: 22
93.184.15.0/24 maxlen: 24
93.184.14.0/24 maxlen: 24
46.18.17.0/24 maxlen: 24
46.18.16.0/24 maxlen: 24
46.18.16.0/21 maxlen: 21
46.18.18.0/24 maxlen: 24
46.18.19.0/24 maxlen: 24
46.18.21.0/24 maxlen: 24
46.18.20.0/24 maxlen: 24
46.18.23.0/24 maxlen: 24
46.18.22.0/24 maxlen: 24
194.58.72.0/22 maxlen: 22
194.58.76.0/23 maxlen: 23
194.58.220.0/23 maxlen: 23
194.58.240.0/24 maxlen: 24
194.58.152.0/23 maxlen: 23
193.124.248.0/24 maxlen: 24
193.124.248.0/22 maxlen: 22
193.124.250.0/24 maxlen: 24
193.124.249.0/24 maxlen: 24
193.124.251.0/24 maxlen: 24
2a02:26d0::/32 maxlen: 32
2a02:26d0:9::/48 maxlen: 48
2a02:26d0:2::/48 maxlen: 48
2a02:26d0:1::/48 maxlen: 48
2a02:26d0:a::/48 maxlen: 48
2a02:26d0::/48 maxlen: 48
2a02:26d0:4::/48 maxlen: 48
2a02:26d0:10::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b3:f9:c9:c6:f0:8d:41:16:c7:f1:c1:92:78:b8:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3e86569b1690c9dff745cbb43805b8582b005ad
Validity
Not Before: Jan 2 13:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=327b65263e89aa406e2cc944e4deccf9d051d8e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c9:2b:37:41:f2:ee:6c:f7:30:57:b8:7d:2b:
de:37:6b:7b:e0:86:fa:a4:ac:12:0f:1d:c1:1d:49:
81:46:05:ca:9d:a6:11:50:44:e8:ed:a7:81:2f:89:
d8:56:09:83:24:2d:f2:b5:0d:3e:09:e8:47:51:9c:
5e:0b:17:57:b9:bd:48:9d:88:a5:57:0d:1b:a1:a8:
98:5c:94:1f:24:24:0f:3e:87:ce:49:a8:78:00:a7:
d2:5c:31:30:44:6a:e9:8e:c1:c0:0c:dd:7f:a7:19:
84:02:6a:4e:8a:cb:68:07:b7:ea:de:38:64:de:0f:
f7:65:b9:db:a5:ee:6f:f4:f7:3f:e4:0f:51:72:78:
ed:5d:b3:96:19:7e:f9:12:9c:cd:15:f0:50:fa:3e:
a1:77:5e:14:d0:2d:f2:47:44:f9:3e:72:26:41:14:
66:53:b3:ae:f2:47:5e:4c:6a:a6:8a:0c:e3:5c:c4:
23:f1:c7:8a:a1:c3:f7:c5:a2:76:5e:f8:2d:31:6d:
2c:0f:ce:77:16:ab:b2:32:1a:d3:00:12:71:0d:53:
6f:e1:30:2d:6e:54:bd:1f:c5:da:b9:2f:df:24:6f:
61:4d:14:1a:da:d4:ee:70:35:ef:69:7e:2d:38:59:
83:74:c1:94:a0:50:d7:c4:b6:67:a6:33:9f:a1:2f:
09:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7B:65:26:3E:89:AA:40:6E:2C:C9:44:E4:DE:CC:F9:D0:51:D8:E9
X509v3 Authority Key Identifier:
keyid:C3:E8:65:69:B1:69:0C:9D:FF:74:5C:BB:43:80:5B:85:82:B0:05:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-hlabFpDJ3_dFy7Q4BbhYKwBa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/MntlJj6JqkBuLMlE5N7M-dBR2Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c976fc-d7d3-4cba-b02e-dbbb35c9e378/1/w-hlabFpDJ3_dFy7Q4BbhYKwBa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.16.0/21
62.16.64.0/20
93.184.0.0/20
185.6.56.0/22
193.124.248.0/22
194.58.72.0-194.58.77.255
194.58.152.0/23
194.58.220.0/23
194.58.240.0/24
194.58.242.0-194.58.245.255
194.58.247.0/24
IPv6:
2a02:26d0::/32
Signature Algorithm: sha256WithRSAEncryption
76:02:ee:2b:2f:94:8a:81:ff:8b:53:4f:24:9b:47:6b:51:a8:
85:bd:8d:76:bf:9c:b6:5c:cf:6f:cc:56:fb:83:30:3a:c2:01:
87:20:8d:30:7c:c6:61:13:99:b3:9d:f4:d6:45:b6:4d:ce:b2:
cf:41:2d:79:05:1a:11:b9:c8:aa:ae:ce:ba:a4:9d:8a:77:62:
dd:9d:4f:c2:92:36:39:40:04:25:6a:7d:ec:03:ad:9f:47:a4:
08:b3:35:0e:3b:a7:c3:a7:7c:f8:c2:73:51:0d:5c:28:8a:9c:
3c:97:2d:d5:0e:6f:da:0f:2c:ca:7f:6a:a8:28:6f:5d:5b:1a:
d2:9a:cb:62:be:1a:81:04:08:07:13:d9:87:57:ee:3d:c2:7d:
8a:11:97:eb:12:f0:95:87:87:c6:58:da:9f:8d:0e:42:09:a5:
4d:4d:b0:d6:af:99:00:f3:c7:4e:ae:6d:71:8f:27:bc:cd:85:
c3:c7:e9:17:b3:04:56:2e:5b:89:97:9b:e6:48:63:bc:31:6e:
b1:dc:68:c3:d8:b0:fe:e7:5d:a1:6a:5c:71:47:05:b2:a9:b6:
7c:85:07:36:65:66:4b:d3:e2:f0:2c:62:48:13:5c:ab:83:8d:
8f:00:5f:13:c7:25:9d:ee:c9:4d:dc:da:41:b6:a2:4c:28:ba:
85:5c:57:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:58 2023 by rpki-client on console.sobornost.net