Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4yAkxd04B6H8isdhLYlEGZulfTY.roa
File: 4yAkxd04B6H8isdhLYlEGZulfTY.roa (raw, json)
Hash identifier: GEf6nNxB6vmQuvo/vx1bM5X0wZ3lVQvd4zKds4f5El4=
Subject key identifier: E3:20:24:C5:DD:38:07:A1:FC:8A:C7:61:2D:89:44:19:9B:A5:7D:36
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0188FDBACBB3330B1875FF275CA0A0BC7448
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4yAkxd04B6H8isdhLYlEGZulfTY.roa
Signing time: Tue 27 Jun 2023 16:40:57 +0000
ROA not before: Tue 27 Jun 2023 16:40:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 194.50.94.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
193.163.85.0/24 maxlen: 24
193.163.86.0/24 maxlen: 24
45.148.116.0/22 maxlen: 24
45.131.184.0/22 maxlen: 24
77.81.50.0/23 maxlen: 24
185.232.117.0/24 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a04:ccc6::/32 maxlen: 48
2a0e:97c3:110::/44 maxlen: 48
2a10:ccc0:420::/44 maxlen: 48
2a0c:3b80::/32 maxlen: 48
2a04:ccc7::/32 maxlen: 48
2a04:ccc4::/32 maxlen: 48
2a0c:3b86::/32 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a0c:3b85::/32 maxlen: 48
2a0c:3b82::/32 maxlen: 48
2a10:2f00:193::/48 maxlen: 48
2a04:ccc5::/32 maxlen: 48
2a0e:b107:21c0::/45 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc45:130::/44 maxlen: 44
2a0c:3b83::/32 maxlen: 48
2a0e:97c0:1d0::/44 maxlen: 44
2a0e:b107:1165::/48 maxlen: 48
2a10:2f00:18d::/48 maxlen: 48
2a04:ccc1::/32 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:b107:9f2::/48 maxlen: 48
2a0c:3b81::/32 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a0c:3b84::/32 maxlen: 48
2a04:ccc3::/32 maxlen: 48
2a0e:b107:1786::/48 maxlen: 48
2a0e:97c4:120::/44 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fd:ba:cb:b3:33:0b:18:75:ff:27:5c:a0:a0:bc:74:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 27 16:40:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e32024c5dd3807a1fc8ac7612d8944199ba57d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a6:f4:84:7d:34:17:56:6d:6d:78:a2:ee:ec:
d0:3b:a6:98:70:2f:df:9a:48:2d:91:2e:e9:0e:99:
d6:6b:e6:de:e8:ee:81:23:52:3b:6b:69:9f:d3:14:
26:8e:23:54:36:1b:a1:9c:6a:9b:76:13:1f:84:51:
17:11:4c:78:d3:48:41:e1:63:46:4a:af:9b:ff:6b:
b3:09:da:aa:05:cd:ae:52:77:5a:3e:3c:4f:31:5b:
99:52:35:78:45:4d:04:3e:6b:23:e4:c7:c8:88:3c:
4a:44:6a:28:53:85:91:c8:e8:2b:4a:cb:9e:e9:17:
e7:fe:24:9f:27:07:b0:63:80:5a:07:2c:22:43:9b:
42:df:e4:66:88:0c:c7:14:66:f6:64:2a:33:e9:ef:
cd:ab:ed:9b:ca:2f:6e:72:e2:e1:14:c5:61:6d:60:
da:6f:0a:fc:63:40:6e:2d:98:8c:d9:0b:b4:7b:f0:
7b:eb:e4:f5:5e:67:89:ef:9d:7d:2d:cd:34:fe:6e:
23:b2:8f:3d:72:11:84:59:70:73:02:4b:cc:52:ca:
d5:db:42:2b:b5:c5:91:83:38:f2:16:2e:2a:10:db:
88:34:8e:25:36:2e:6b:fb:2f:b6:b7:36:fc:67:59:
e2:17:3b:d7:8f:46:a7:e0:c3:49:3b:44:da:90:1e:
45:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:20:24:C5:DD:38:07:A1:FC:8A:C7:61:2D:89:44:19:9B:A5:7D:36
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4yAkxd04B6H8isdhLYlEGZulfTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.131.184.0/22
45.136.136.0/22
45.148.116.0/22
77.81.50.0/23
85.202.203.0/24
94.177.122.0/24
185.232.117.0/24
193.163.85.0-193.163.86.255
194.50.92.0/24
194.50.94.0/24
IPv6:
2a04:ccc1::/32
2a04:ccc3::-2a04:ccc7:ffff:ffff:ffff:ffff:ffff:ffff
2a09:4c0::/29
2a0c:3b80::-2a0c:3b86:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:170::/48
2a0e:97c0:1d0::/44
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c3:110::/44
2a0e:97c4:100::/44
2a0e:97c4:120::/44
2a0e:b107:9f2::/48
2a0e:b107:1165::/48
2a0e:b107:1786::/48
2a0e:b107:21c0::/45
2a0f:e404:102::/48
2a10:2f00:18d::/48
2a10:2f00:18f::/48
2a10:2f00:193::/48
2a10:cc40:250::/44
2a10:cc45:130::/44
2a10:ccc0:420::/44
Signature Algorithm: sha256WithRSAEncryption
ab:11:ac:88:01:a3:bc:14:02:55:de:4a:af:42:44:34:f7:ae:
6c:41:ae:07:b1:88:d6:d1:1c:b7:d9:78:27:19:12:e2:9a:60:
b5:15:a6:f0:a8:bf:cb:db:21:12:0f:09:51:a5:cc:96:e2:56:
37:be:89:c8:87:e7:23:54:e3:11:35:ab:30:f1:d7:be:e1:a6:
65:76:da:e1:74:42:ab:39:58:d6:60:56:71:1d:28:f0:59:78:
41:5b:43:fd:38:6c:e5:99:8d:02:5b:8f:8c:62:1f:44:8d:93:
21:13:f5:1d:74:19:53:b1:c8:2a:4e:2c:f4:03:f2:e7:84:26:
db:f1:76:07:65:15:53:50:48:85:cb:f4:c9:8a:46:59:98:b5:
77:fa:51:ed:37:1f:4c:a1:c7:18:25:e3:5e:ba:6f:cc:a4:fc:
11:30:e8:e1:7b:57:3a:39:0b:4a:85:b7:67:36:e9:86:45:6e:
45:48:2d:4e:2e:8c:3b:68:8a:33:78:e1:00:dd:98:a6:31:2b:
93:90:ff:a8:50:37:15:a3:be:37:bb:d9:91:3c:5d:01:fd:43:
ae:5a:24:a8:7f:9b:78:8b:cb:75:7b:70:06:2a:ed:54:a1:74:
f3:8f:ac:5e:8f:db:4a:ef:3d:e2:ac:15:c7:d0:9c:2d:2c:81:
a2:3e:b4:2e
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgISAYj9usuzMwsYdf8nXKCgvHRIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNjI3MTY0MDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzIwMjRjNWRkMzgwN2ExZmM4YWM3NjEyZDg5NDQxOTliYTU3ZDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkKb0hH00F1ZtbXii7uzQO6aYcC/f
mkgtkS7pDpnWa+be6O6BI1I7a2mf0xQmjiNUNhuhnGqbdhMfhFEXEUx400hB4WNG
Sq+b/2uzCdqqBc2uUndaPjxPMVuZUjV4RU0EPmsj5MfIiDxKRGooU4WRyOgrSsue
6Rfn/iSfJwewY4BaBywiQ5tC3+RmiAzHFGb2ZCoz6e/Nq+2byi9ucuLhFMVhbWDa
bwr8Y0BuLZiM2Qu0e/B76+T1XmeJ7519Lc00/m4jso89chGEWXBzAkvMUsrV20Ir
tcWRgzjyFi4qENuINI4lNi5r+y+2tzb8Z1niFzvXj0an4MNJO0TakB5FJQIDAQAB
o4IDLDCCAygwHQYDVR0OBBYEFOMgJMXdOAeh/IrHYS2JRBmbpX02MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNHlBa3hkMDRCNkg4aXNkaExZbEVHWnVsZlRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBQAYIKwYBBQUHAQcBAf8EggEvMIIBKzBQBAIAATBKAwQA
Hyq3AwQCLYO4AwQCLYiIAwQCLZR0AwQBTVEyAwQAVcrLAwQAXrF6AwQAueh1MAwD
BADBo1UDBADBo1YDBADCMlwDBADCMl4wgdYEAgACMIHPAwUAKgTMwTAOAwUAKgTM
wwMFAyoEzMADBQMqCQTAMA4DBQcqDDuAAwUAKgw7hgMHACoOl8ABcAMHBCoOl8AB
0AMHBCoOl8ACYAMGACoOl8ECAwcEKg6XwwEQAwcEKg6XxAEAAwcEKg6XxAEgAwcA
Kg6xBwnyAwcAKg6xBxFlAwcAKg6xBxeGAwcDKg6xByHAAwcAKg/kBAECAwcAKhAv
AAGNAwcAKhAvAAGPAwcAKhAvAAGTAwcEKhDMQAJQAwcEKhDMRQEwAwcEKhDMwAQg
MA0GCSqGSIb3DQEBCwUAA4IBAQCrEayIAaO8FAJV3kqvQkQ0965sQa4HsYjW0Ry3
2XgnGRLimmC1FabwqL/L2yESDwlRpcyW4lY3vonIh+cjVOMRNasw8de+4aZldtrh
dEKrOVjWYFZxHSjwWXhBW0P9OGzlmY0CW4+MYh9EjZMhE/UddBlTscgqTiz0A/Ln
hCbb8XYHZRVTUEiFy/TJikZZmLV3+lHtNx9MoccYJeNeum/MpPwRMOjhe1c6OQtK
hbdnNumGRW5FSC1OLow7aIozeOEA3ZimMSuTkP+oUDcVo743u9mRPF0B/UOuWiSo
f5t4i8t1e3AGKu1UoXTzj6xej9tK7z3irBXH0JwtLIGiPrQu
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:12 2023 by rpki-client on console.sobornost.net