Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/VcfpbHInC07LEwsR2zFoUXx5uHE.roa
File: VcfpbHInC07LEwsR2zFoUXx5uHE.roa (raw, json)
Hash identifier: IbxqriJ/w2qK7r/WPpo/zGRcE0kPj3EikK60jI7Y/0w=
Subject key identifier: 55:C7:E9:6C:72:27:0B:4E:CB:13:0B:11:DB:31:68:51:7C:79:B8:71
Certificate issuer: /CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Certificate serial: 018731A4AF7B068E5001E55AF5F5FB63C2F4
Authority key identifier: AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/VcfpbHInC07LEwsR2zFoUXx5uHE.roa
Signing time: Thu 30 Mar 2023 08:31:29 +0000
ROA not before: Thu 30 Mar 2023 08:31:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39251
IP address blocks: 193.37.238.0/24 maxlen: 24
185.229.252.0/22 maxlen: 24
91.223.66.0/24 maxlen: 24
185.163.140.0/22 maxlen: 24
194.169.230.0/24 maxlen: 24
194.169.237.0/24 maxlen: 24
91.245.192.0/24 maxlen: 24
194.169.242.0/24 maxlen: 24
85.217.252.0/22 maxlen: 24
213.232.88.0/22 maxlen: 24
185.225.84.0/22 maxlen: 24
91.92.72.0/21 maxlen: 24
91.92.80.0/20 maxlen: 24
91.92.96.0/21 maxlen: 24
194.169.223.0/24 maxlen: 24
2a0b:f800::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:a4:af:7b:06:8e:50:01:e5:5a:f5:f5:fb:63:c2:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1f721b7b7e6d049fbfe520e1ca89c1ca256813
Validity
Not Before: Mar 30 08:31:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55c7e96c72270b4ecb130b11db3168517c79b871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4d:f8:3a:f4:c2:7a:e4:33:ac:3e:26:f2:a4:
97:b1:06:e1:28:31:d2:37:7d:5e:d6:a1:47:22:5e:
68:11:82:9c:d7:53:0e:82:48:37:25:a7:07:12:13:
9f:c6:bc:e8:6f:b0:2d:33:1a:f8:98:bd:fb:0e:7e:
ce:05:32:4b:50:72:bf:f4:74:0f:53:e9:36:62:74:
86:68:a1:dc:c8:9b:fb:db:c2:78:a8:a2:99:c3:63:
ff:03:29:ed:fd:be:30:43:1c:cb:23:8e:f0:41:b2:
22:86:eb:41:07:6c:69:8c:53:07:32:cf:b1:87:1f:
fb:b8:0d:12:13:bc:75:3d:e5:41:01:e1:36:76:e5:
d8:b7:4b:28:db:39:3a:75:87:cf:61:6b:e0:18:54:
6e:11:c8:d8:f6:2f:73:50:fb:cb:2b:68:fd:0f:8e:
cc:ac:7c:c7:44:84:02:2b:9e:b9:a9:03:bd:02:49:
2d:d9:cb:55:06:0b:42:03:c0:9b:90:98:63:83:fb:
5c:1b:9f:05:11:6d:24:1e:33:59:78:e9:9f:49:fe:
d1:fb:55:dc:c7:6c:ab:a6:a5:1b:52:44:08:bd:1c:
74:2d:4d:ce:be:03:0e:0a:be:24:77:6e:a0:e3:ba:
9d:8f:cb:60:6a:d0:dd:e1:18:c8:e2:a4:d0:05:fa:
57:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C7:E9:6C:72:27:0B:4E:CB:13:0B:11:DB:31:68:51:7C:79:B8:71
X509v3 Authority Key Identifier:
keyid:AC:1F:72:1B:7B:7E:6D:04:9F:BF:E5:20:E1:CA:89:C1:CA:25:68:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rB9yG3t-bQSfv-Ug4cqJwcolaBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/VcfpbHInC07LEwsR2zFoUXx5uHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/56d267-1c43-47c8-afb2-64d29c86bf3e/1/rB9yG3t-bQSfv-Ug4cqJwcolaBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.252.0/22
91.92.72.0-91.92.103.255
91.223.66.0/24
91.245.192.0/24
185.163.140.0/22
185.225.84.0/22
185.229.252.0/22
193.37.238.0/24
194.169.223.0/24
194.169.230.0/24
194.169.237.0/24
194.169.242.0/24
213.232.88.0/22
IPv6:
2a0b:f800::/32
Signature Algorithm: sha256WithRSAEncryption
4e:70:84:c1:bc:99:26:3f:d2:d9:ba:ce:4d:a5:c6:2a:3f:3d:
1a:fb:3c:11:4f:3d:1e:fc:0f:8a:3e:7b:5e:de:93:73:16:86:
34:8a:3f:36:69:b1:5e:e3:fb:0f:e6:3a:d3:6e:73:91:9e:73:
ce:b1:f1:10:f1:bc:17:6e:e7:eb:2a:d5:4c:69:dd:8d:2d:b9:
84:df:7d:7b:2d:c4:7e:ea:47:45:5e:0e:44:f6:22:01:f6:62:
d2:54:43:82:1a:0d:f7:80:9e:f0:a2:74:11:2f:12:57:bd:3a:
41:70:a0:b9:e3:e1:22:88:ca:c5:c5:60:b7:0d:e0:89:7e:73:
cd:19:1d:6e:f8:c2:a7:cd:0d:f5:93:b1:52:78:52:85:95:14:
8a:24:8f:03:ec:4a:69:60:a9:99:93:85:9c:9d:40:9f:47:74:
07:89:f1:67:18:f3:de:96:c7:18:5c:cf:25:bb:3d:b5:ad:43:
3c:59:30:f1:b6:b3:1b:85:e2:e5:f6:7d:3b:20:09:c8:b0:75:
94:50:26:b1:65:4e:29:e8:ba:ff:24:e4:f8:26:84:97:fb:f7:
9d:42:06:5a:40:90:93:f4:c7:0c:c6:65:c1:26:d4:cf:38:ac:
74:ba:b8:31:05:f1:0c:93:e6:08:1f:22:ab:01:a8:be:c5:c0:
92:b4:b6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:38 2024 by rpki-client on console.sobornost.net