Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/9f52d1-c95d-455b-af08-cec0dbc8d246/1/FkWuQgtFTvG2U99urJSNKZJDqN8.roa
File: FkWuQgtFTvG2U99urJSNKZJDqN8.roa (raw, json)
Hash identifier: 7ABCe7gunZNeeEfEwcUJR3Dl7Iu8T+KempoSKst3Kyk=
Subject key identifier: 16:45:AE:42:0B:45:4E:F1:B6:53:DF:6E:AC:94:8D:29:92:43:A8:DF
Certificate issuer: /CN=2988a3c688e8eb1fef06c374a7aa5cf8fd778e0f
Certificate serial: 018DD55892E17F6978C2206F1EB8C73CA3AF
Authority key identifier: 29:88:A3:C6:88:E8:EB:1F:EF:06:C3:74:A7:AA:5C:F8:FD:77:8E:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYijxojo6x_vBsN0p6pc-P13jg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/9f52d1-c95d-455b-af08-cec0dbc8d246/1/FkWuQgtFTvG2U99urJSNKZJDqN8.roa
Signing time: Fri 23 Feb 2024 09:42:48 +0000
ROA not before: Fri 23 Feb 2024 09:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25106
IP address blocks: 46.56.40.0/21 maxlen: 21
46.56.40.0/24 maxlen: 24
46.56.41.0/24 maxlen: 24
46.56.42.0/24 maxlen: 24
46.56.56.0/22 maxlen: 24
46.56.60.0/23 maxlen: 24
46.56.60.0/24 maxlen: 24
46.56.62.0/23 maxlen: 23
46.56.64.0/19 maxlen: 24
46.56.96.0/19 maxlen: 24
46.56.114.0/23 maxlen: 23
46.56.125.0/24 maxlen: 24
46.216.0.0/17 maxlen: 24
46.216.128.0/18 maxlen: 24
46.216.144.0/21 maxlen: 21
46.216.152.0/21 maxlen: 21
46.216.184.0/21 maxlen: 21
46.216.192.0/18 maxlen: 24
46.216.192.0/21 maxlen: 21
46.216.246.0/24 maxlen: 24
134.17.0.0/20 maxlen: 24
134.17.0.0/23 maxlen: 23
134.17.16.0/21 maxlen: 21
134.17.17.0/24 maxlen: 24
134.17.24.0/21 maxlen: 21
134.17.24.0/22 maxlen: 22
134.17.28.0/24 maxlen: 24
134.17.32.0/19 maxlen: 19
134.17.32.0/22 maxlen: 22
134.17.64.0/20 maxlen: 20
134.17.79.0/24 maxlen: 24
134.17.80.0/21 maxlen: 21
134.17.80.0/22 maxlen: 22
134.17.88.0/21 maxlen: 24
134.17.89.0/24 maxlen: 24
134.17.96.0/19 maxlen: 19
134.17.124.0/24 maxlen: 24
134.17.128.0/19 maxlen: 19
134.17.128.0/21 maxlen: 21
134.17.136.0/21 maxlen: 21
134.17.144.0/20 maxlen: 20
134.17.160.0/19 maxlen: 19
134.17.208.0/20 maxlen: 24
134.17.208.0/22 maxlen: 24
134.17.224.0/20 maxlen: 24
176.60.0.0/18 maxlen: 24
176.60.4.0/22 maxlen: 22
176.60.40.0/22 maxlen: 22
176.60.44.0/22 maxlen: 22
176.60.64.0/18 maxlen: 24
176.60.80.0/23 maxlen: 23
176.60.128.0/18 maxlen: 24
176.60.132.0/22 maxlen: 22
176.60.176.0/23 maxlen: 23
176.60.184.0/22 maxlen: 24
176.60.192.0/18 maxlen: 24
176.60.192.0/20 maxlen: 20
176.60.208.0/23 maxlen: 23
178.168.128.0/18 maxlen: 24
178.168.144.0/23 maxlen: 23
178.168.160.0/21 maxlen: 21
178.168.168.0/21 maxlen: 24
178.168.180.0/22 maxlen: 22
178.168.192.0/19 maxlen: 24
178.168.220.0/22 maxlen: 22
178.168.224.0/19 maxlen: 24
178.168.242.0/23 maxlen: 23
178.168.253.0/24 maxlen: 24
185.20.112.0/23 maxlen: 23
185.20.114.0/23 maxlen: 23
2a02:bf0::/32 maxlen: 32
2a02:bf0::/48 maxlen: 48
2a02:bf0:1::/48 maxlen: 48
2a02:bf0:2::/48 maxlen: 48
2a02:bf0:3::/48 maxlen: 48
2a02:bf0:6::/48 maxlen: 48
2a02:bf0:7::/48 maxlen: 48
2a02:bf0:10::/44 maxlen: 44
2a02:bf0:25::/48 maxlen: 48
2a02:bf0:26::/48 maxlen: 48
2a02:bf0:27::/48 maxlen: 48
2a02:bf0:28::/48 maxlen: 48
2a02:bf0:29::/48 maxlen: 48
2a02:bf0:1000::/36 maxlen: 36
2a02:bf0:1002::/48 maxlen: 48
2a02:bf0:1003::/48 maxlen: 48
2a02:bf0:3000::/36 maxlen: 44
2a02:bf0:4000::/36 maxlen: 44
2a02:bf0:5000::/36 maxlen: 44
2a02:bf0:6000::/36 maxlen: 44
2a02:bf0:7000::/36 maxlen: 44
Validation: Failed, certificate revoked on Thu 06 Jun 2024 12:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:58:92:e1:7f:69:78:c2:20:6f:1e:b8:c7:3c:a3:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2988a3c688e8eb1fef06c374a7aa5cf8fd778e0f
Validity
Not Before: Feb 23 09:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1645ae420b454ef1b653df6eac948d299243a8df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:7c:af:ff:da:23:01:18:7f:42:c2:62:4b:
2c:1b:41:3d:11:fc:4b:34:e7:fe:c8:24:37:5b:91:
91:ce:b7:e5:d9:d4:c2:6a:48:c9:61:0a:5a:a2:7f:
18:bf:4d:b7:a6:26:93:79:e1:a9:a2:ce:4b:79:d4:
ba:93:73:95:65:9b:2d:9a:2c:73:c1:84:b2:de:4b:
9e:61:a6:3c:7a:64:9f:cc:4c:e2:b1:c1:a6:00:bf:
6d:f5:82:7c:c5:a3:77:4d:5d:60:2d:a8:cb:fd:8c:
fd:c5:5a:36:73:0b:e3:06:1c:0c:6a:43:59:aa:4b:
08:4b:1d:f8:48:24:b0:e2:35:52:24:02:8d:d7:28:
65:20:39:b6:04:6b:e3:c9:56:5f:0f:07:6e:db:90:
e8:ee:af:31:5e:58:4d:ad:68:22:3e:ad:04:8a:c2:
5a:47:94:2e:a5:ac:7d:99:62:c5:c4:e6:d3:2b:ab:
e1:28:f4:75:53:86:14:7f:c4:1f:ec:39:82:a9:d7:
93:45:3d:2f:3d:a1:db:6d:a1:7b:3e:0c:c3:e6:c2:
89:8a:61:05:4f:ef:26:8d:79:cb:73:7f:5e:2a:23:
e2:4d:c5:1b:a7:eb:6c:52:69:6c:4c:a0:63:48:5a:
97:d2:38:8c:2c:f0:25:17:68:b7:63:9b:f5:51:08:
ec:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:45:AE:42:0B:45:4E:F1:B6:53:DF:6E:AC:94:8D:29:92:43:A8:DF
X509v3 Authority Key Identifier:
keyid:29:88:A3:C6:88:E8:EB:1F:EF:06:C3:74:A7:AA:5C:F8:FD:77:8E:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYijxojo6x_vBsN0p6pc-P13jg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/9f52d1-c95d-455b-af08-cec0dbc8d246/1/FkWuQgtFTvG2U99urJSNKZJDqN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/9f52d1-c95d-455b-af08-cec0dbc8d246/1/KYijxojo6x_vBsN0p6pc-P13jg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.56.40.0/21
46.56.56.0-46.56.127.255
46.216.0.0/16
134.17.0.0-134.17.191.255
134.17.208.0-134.17.239.255
176.60.0.0/16
178.168.128.0/17
185.20.112.0/22
IPv6:
2a02:bf0::/32
Signature Algorithm: sha256WithRSAEncryption
47:ad:78:d4:b8:40:30:fb:45:38:84:07:ef:00:3b:54:de:be:
ef:80:eb:67:10:13:4f:a8:b5:16:55:10:41:17:b0:14:3e:af:
ec:2f:d5:5a:ef:3b:a6:42:0c:c1:c2:b3:0f:1e:23:a0:8e:34:
92:6c:fe:00:76:d2:97:5f:99:72:73:29:b5:15:51:c2:4d:8a:
ea:16:7b:5d:1a:c9:21:6e:ac:90:6d:7f:db:12:f4:bb:4b:ae:
21:b0:e2:92:bb:65:71:27:43:2b:44:ee:47:07:29:51:76:9c:
cf:af:f8:6a:94:01:7c:ba:85:cf:e1:24:a1:a2:95:10:e5:99:
65:7f:3d:17:ba:31:f2:df:53:14:ae:32:90:f1:f1:1e:ed:c8:
89:d5:94:64:4c:1f:31:cd:43:4e:d2:fe:29:c9:66:f2:d9:7f:
40:ed:18:5f:0b:67:93:42:32:cc:55:43:1e:78:69:0a:d3:a0:
2d:3c:3a:a9:70:d8:89:40:ed:d4:57:4b:5d:69:69:b8:65:5e:
0c:c6:f0:5a:e2:67:97:94:e3:ec:6a:37:07:24:6f:85:41:24:
e0:ff:d5:5a:60:e9:4a:40:2e:b8:eb:59:cd:48:64:80:8b:35:
08:2d:bc:bd:ea:39:e5:1a:73:df:17:2c:b3:3e:5d:4b:f5:97:
28:36:2d:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 14:41:43 2024 by rpki-client on console.sobornost.net