Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/Vuz8Pv0rXCiEYtUW7FfKmDjyRV8.roa
File: Vuz8Pv0rXCiEYtUW7FfKmDjyRV8.roa (raw, json)
Hash identifier: kOQ8Sj8bSELDHjyolgsmwy5nqPqgWEt6HZ1Wcg/ugk4=
Subject key identifier: 56:EC:FC:3E:FD:2B:5C:28:84:62:D5:16:EC:57:CA:98:38:F2:45:5F
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018C349C1B09EB5F0DE7070B72139EFD0109
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/Vuz8Pv0rXCiEYtUW7FfKmDjyRV8.roa
Signing time: Mon 04 Dec 2023 11:34:54 +0000
ROA not before: Mon 04 Dec 2023 11:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49037
IP address blocks: 95.174.98.0/24 maxlen: 24
95.174.96.0/23 maxlen: 23
95.174.102.0/24 maxlen: 24
95.174.101.0/24 maxlen: 24
95.174.100.0/24 maxlen: 24
95.174.99.0/24 maxlen: 24
95.174.105.0/24 maxlen: 24
95.174.104.0/24 maxlen: 24
95.174.103.0/24 maxlen: 24
95.174.112.0/24 maxlen: 24
95.174.111.0/24 maxlen: 24
95.174.110.0/24 maxlen: 24
95.174.109.0/24 maxlen: 24
95.174.108.0/24 maxlen: 24
95.174.107.0/24 maxlen: 24
95.174.106.0/24 maxlen: 24
95.174.116.0/24 maxlen: 24
95.174.115.0/24 maxlen: 24
95.174.114.0/24 maxlen: 24
95.174.113.0/24 maxlen: 24
95.174.118.0/24 maxlen: 24
95.174.117.0/24 maxlen: 24
95.174.125.0/24 maxlen: 24
95.174.124.0/24 maxlen: 24
95.174.123.0/24 maxlen: 24
95.174.120.0/24 maxlen: 24
95.174.119.0/24 maxlen: 24
95.174.127.0/24 maxlen: 24
95.174.126.0/24 maxlen: 24
185.9.186.0/24 maxlen: 24
185.9.184.0/24 maxlen: 24
185.9.187.0/24 maxlen: 24
185.230.242.0/24 maxlen: 24
185.230.241.0/24 maxlen: 24
185.230.240.0/24 maxlen: 24
80.72.16.0/23 maxlen: 23
80.72.24.0/24 maxlen: 24
80.72.20.0/23 maxlen: 32
80.72.25.0/24 maxlen: 24
80.72.26.0/23 maxlen: 23
92.118.73.0/24 maxlen: 24
92.118.72.0/24 maxlen: 24
2a00:8740:25::/48 maxlen: 48
2a00:8740:100::/48 maxlen: 48
2a00:8740:ff00::/48 maxlen: 48
2a00:8740:1b::/48 maxlen: 48
2a00:8740:36::/48 maxlen: 48
2a00:8740:2f::/48 maxlen: 48
2a00:8740:18::/48 maxlen: 48
2a00:8740:33::/48 maxlen: 48
2a00:8740:11::/48 maxlen: 48
2a00:8740:111::/48 maxlen: 48
2a00:8740:2c::/48 maxlen: 48
2a00:8740:15::/48 maxlen: 48
2a00:8740:30::/48 maxlen: 48
2a00:8740:26::/48 maxlen: 48
2a00:8740:29::/48 maxlen: 48
2a00:8740:1f::/48 maxlen: 48
2a00:8740:2d::/48 maxlen: 48
2a00:8740:23::/48 maxlen: 48
2a00:8740:1c::/48 maxlen: 48
2a00:8740:112::/48 maxlen: 48
2a00:8740:500::/40 maxlen: 40
2a00:8740:20::/48 maxlen: 48
2a00:8740::/47 maxlen: 47
2a00:8740:16::/48 maxlen: 48
2a00:8740:34::/48 maxlen: 48
2a00:8740:1d::/48 maxlen: 48
2a00:8740:2e::/48 maxlen: 48
2a00:8740:27::/48 maxlen: 48
2a00:8740:2::/48 maxlen: 48
2a00:8740:35::/48 maxlen: 48
2a00:8740:10::/48 maxlen: 48
2a00:8740:110::/48 maxlen: 48
2a00:8740:2b::/48 maxlen: 48
2a00:8740:24::/48 maxlen: 48
2a00:8740:1a::/48 maxlen: 48
2a00:8740:28::/48 maxlen: 48
2a00:8740:1e::/48 maxlen: 48
2a00:8740:21::/48 maxlen: 48
2a00:8740:17::/48 maxlen: 48
2a00:8740:32::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:34:9c:1b:09:eb:5f:0d:e7:07:0b:72:13:9e:fd:01:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Dec 4 11:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56ecfc3efd2b5c288462d516ec57ca9838f2455f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5a:03:36:86:1f:f2:7e:ca:4c:18:c5:26:06:
24:2e:f4:64:8e:b0:ec:e7:3d:e0:b7:2d:c7:89:5f:
74:5e:72:e5:3c:28:45:44:c7:c7:03:8c:e3:83:0a:
23:88:cf:be:b4:3b:b9:9c:d8:b2:ec:4b:86:9a:ec:
1c:4e:ff:1e:fc:ce:27:ab:52:3e:3d:2a:cb:90:91:
0b:5d:ed:7a:24:8b:49:be:50:30:19:fe:c0:33:bf:
02:a3:60:fd:68:3c:bc:0b:3a:7e:64:67:9a:58:5e:
36:91:e6:4c:11:bd:5e:41:ac:62:b7:09:14:95:06:
1a:72:7e:b6:47:0c:37:9f:ff:12:ad:d7:9e:03:28:
5c:a2:c0:72:27:f9:75:64:9b:da:3d:36:67:96:e7:
fd:ba:f3:2b:c9:db:5f:02:3c:82:90:85:4f:7b:99:
50:1b:c7:4c:19:16:2a:38:8c:d8:09:44:98:3c:b9:
61:24:15:9e:c2:88:9b:3a:f8:83:ba:48:3a:49:64:
83:cd:b9:ef:d2:dd:44:dc:79:10:41:c8:2b:1d:6b:
e3:cd:78:e6:39:c8:c9:40:77:45:a8:99:e5:fb:7d:
71:a7:de:fd:e5:a1:f8:89:f4:dd:b2:34:af:24:24:
0a:76:d3:46:81:7e:86:2b:29:2d:0d:d1:3c:10:d5:
5e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:EC:FC:3E:FD:2B:5C:28:84:62:D5:16:EC:57:CA:98:38:F2:45:5F
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/Vuz8Pv0rXCiEYtUW7FfKmDjyRV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.16.0/23
80.72.20.0/23
80.72.24.0/22
92.118.72.0/23
95.174.96.0-95.174.120.255
95.174.123.0-95.174.127.255
185.9.184.0/24
185.9.186.0/23
185.230.240.0-185.230.242.255
IPv6:
2a00:8740::-2a00:8740:2:ffff:ffff:ffff:ffff:ffff
2a00:8740:10::/47
2a00:8740:15::-2a00:8740:18:ffff:ffff:ffff:ffff:ffff
2a00:8740:1a::-2a00:8740:21:ffff:ffff:ffff:ffff:ffff
2a00:8740:23::-2a00:8740:29:ffff:ffff:ffff:ffff:ffff
2a00:8740:2b::-2a00:8740:30:ffff:ffff:ffff:ffff:ffff
2a00:8740:32::-2a00:8740:36:ffff:ffff:ffff:ffff:ffff
2a00:8740:100::/48
2a00:8740:110::-2a00:8740:112:ffff:ffff:ffff:ffff:ffff
2a00:8740:500::/40
2a00:8740:ff00::/48
Signature Algorithm: sha256WithRSAEncryption
55:2c:ec:6a:9e:0f:5e:11:86:59:0e:35:3b:cc:6d:2a:ca:06:
8e:ed:80:fd:b3:8a:70:71:dd:c0:86:5a:dd:58:8f:c6:37:54:
c0:34:29:05:a8:9d:a9:b2:be:63:bb:5c:9e:b5:a4:c1:79:ef:
e9:b2:98:34:ca:1c:96:db:82:01:2a:90:6c:57:14:2d:58:f6:
8e:8b:48:7e:2f:d4:b8:3e:95:88:ca:4e:1e:fa:39:09:13:2c:
fc:b8:ff:13:c6:90:d4:91:ab:cc:08:61:ac:88:cb:94:4b:5f:
50:26:c7:19:29:26:58:79:6f:2b:1a:ef:d8:c7:12:21:78:60:
2f:2f:86:0a:cf:08:0f:4e:7f:36:33:09:17:9f:0f:de:6e:ee:
06:a9:ab:0b:eb:11:e3:dd:b3:4b:5a:88:01:ac:ac:c8:a0:15:
80:a7:30:75:48:93:3d:57:d9:b2:52:e4:d0:8a:64:7a:b4:e2:
b3:10:37:50:34:66:f7:8d:34:55:96:3d:95:b4:d2:b8:6a:61:
4c:db:ae:0c:6b:cd:06:d7:f9:52:9c:32:57:ca:4d:1a:bc:61:
dd:d9:c4:76:c0:29:74:f5:dc:2f:12:d2:c4:2b:cc:b4:23:c6:
3a:2c:31:f7:72:ea:4d:51:a6:8a:7c:cd:5d:46:87:85:5a:75:
e3:66:c9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:32 2023 by rpki-client on console.sobornost.net