Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DiGsiwd-9RSapwVVJnvX08OsKUU.roa
File: DiGsiwd-9RSapwVVJnvX08OsKUU.roa (raw, json)
Hash identifier: 8drnWx7vcDjwI1/701Kib99neBaSQYIilfJJIi35YJI=
Subject key identifier: 0E:21:AC:8B:07:7E:F5:14:9A:A7:05:55:26:7B:D7:D3:C3:AC:29:45
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189002C17251A869D53C1658512CF82A3E2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DiGsiwd-9RSapwVVJnvX08OsKUU.roa
Signing time: Wed 28 Jun 2023 04:03:56 +0000
ROA not before: Wed 28 Jun 2023 04:03:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 37.153.158.0/24 maxlen: 24
89.47.55.0/24 maxlen: 24
89.35.130.0/23 maxlen: 23
89.35.131.0/24 maxlen: 24
89.45.162.0/24 maxlen: 24
93.90.74.0/24 maxlen: 24
188.241.137.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
188.213.216.0/24 maxlen: 24
89.47.36.0/24 maxlen: 24
77.81.65.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
92.114.32.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
45.88.13.0/24 maxlen: 24
45.88.14.0/23 maxlen: 23
77.81.88.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:00:2c:17:25:1a:86:9d:53:c1:65:85:12:cf:82:a3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 28 04:03:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e21ac8b077ef5149aa70555267bd7d3c3ac2945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ed:d6:f7:8d:1c:16:1f:6d:a1:6c:9d:df:bb:
9c:81:d4:f5:90:89:7b:8b:cc:99:bc:b8:42:c6:63:
f2:1b:6e:2d:0a:e3:af:55:38:fb:b0:ea:0c:f4:a4:
37:63:00:b6:7b:05:a3:08:16:99:7d:6d:9b:f4:ff:
66:30:79:61:6a:6a:98:a3:be:96:44:17:00:01:d5:
92:b5:21:30:8a:93:f2:07:58:96:13:fb:20:6d:12:
20:dc:18:67:f4:c4:81:ca:cf:81:bd:97:70:46:11:
fc:86:03:1e:36:1d:c9:46:9c:d1:63:e9:8c:8f:49:
ee:5a:9e:0f:cd:fc:b4:16:41:b2:29:c5:38:80:8f:
b6:95:73:24:10:82:47:4e:05:86:fd:cf:60:fe:95:
91:33:47:c2:89:4f:2a:e4:1d:20:b4:c2:c7:6f:e1:
96:11:52:c4:dd:9b:18:d3:2a:4f:d8:64:83:2f:0c:
17:84:4a:5b:26:58:77:88:3c:0d:32:ae:d4:55:a9:
c3:62:44:bd:38:03:00:b0:86:51:b5:59:0f:38:d8:
7b:65:38:a7:f3:3a:e5:0c:a5:e5:e3:97:20:39:02:
db:d4:23:ee:d7:7d:e3:37:1d:ac:37:e9:9b:ce:78:
98:39:73:28:f6:e6:a9:3a:04:eb:e8:e8:60:35:4f:
1c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:21:AC:8B:07:7E:F5:14:9A:A7:05:55:26:7B:D7:D3:C3:AC:29:45
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DiGsiwd-9RSapwVVJnvX08OsKUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.153.158.0/24
45.88.13.0-45.88.15.255
77.81.65.0/24
77.81.88.0/24
86.107.100.0/24
89.34.106.0/24
89.35.130.0/23
89.40.215.0/24
89.45.162.0/24
89.47.36.0/24
89.47.55.0/24
92.114.32.0/24
93.90.74.0/24
188.213.216.0/24
188.214.107.0/24
188.241.137.0/24
Signature Algorithm: sha256WithRSAEncryption
22:21:42:05:56:18:5f:a6:3b:33:48:dd:de:76:01:d0:24:d5:
15:75:e0:89:23:32:38:dc:82:0b:56:35:48:6c:cf:06:16:45:
52:88:ce:69:1b:ed:4c:52:89:cc:a7:f3:2f:99:3a:31:38:0a:
03:7f:67:37:cc:94:a6:a9:6f:e6:ad:3b:43:4e:7f:54:39:11:
82:da:2b:54:16:80:67:14:ca:7a:f9:2a:e2:38:38:06:82:fc:
97:41:91:f4:49:24:e2:d9:29:25:5d:c5:b2:69:e9:15:57:6e:
bc:0a:3d:f0:e1:36:f0:94:ce:68:6c:a5:99:d7:76:02:d4:b6:
e9:c9:6c:4f:54:54:82:b3:07:26:d6:56:7e:9e:d9:28:37:c8:
78:7b:a4:d5:31:4e:c4:a9:5c:ec:1c:f6:6f:a0:37:c7:97:ce:
8e:0f:8c:79:89:9d:54:38:97:4f:61:0c:92:e2:fb:97:6c:69:
4f:57:da:49:1b:5d:aa:bf:c2:70:e4:ab:cb:9f:5c:ec:44:f2:
b1:69:17:89:84:40:b7:1f:2b:e7:7f:52:89:a5:f7:8a:49:ef:
0d:37:35:6b:5c:fc:02:cc:89:28:97:54:60:a7:26:fe:e2:25:
d3:f9:54:33:d7:aa:50:a4:7d:63:92:f8:20:52:cd:c2:9b:f1:
77:b9:ef:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net