Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/73A3c_66sk78YBGeL7vldcEQDVI.roa
File: 73A3c_66sk78YBGeL7vldcEQDVI.roa (raw, json)
Hash identifier: 76v6VmWj7LR/xbRl5A2GcSoMYnYgA5GCsw0NByjdnX8=
Subject key identifier: EF:70:37:73:FE:BA:B2:4E:FC:60:11:9E:2F:BB:E5:75:C1:10:0D:52
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018E144A0E33507267BD2DBF9DE1F3EA9E2B
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/73A3c_66sk78YBGeL7vldcEQDVI.roa
Signing time: Wed 06 Mar 2024 15:03:01 +0000
ROA not before: Wed 06 Mar 2024 15:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34164
IP address blocks: 2.16.49.0/24 maxlen: 24
2.18.25.0/24 maxlen: 24
2.20.48.0/24 maxlen: 24
2.21.236.0/24 maxlen: 24
2.21.237.0/24 maxlen: 24
84.53.176.0/24 maxlen: 24
84.53.186.0/24 maxlen: 24
92.122.120.0/23 maxlen: 23
92.122.152.0/24 maxlen: 24
92.122.191.0/24 maxlen: 24
92.122.204.0/23 maxlen: 23
95.101.12.0/24 maxlen: 24
95.101.121.0/24 maxlen: 24
193.108.152.0/24 maxlen: 24
195.245.126.0/24 maxlen: 24
2a02:26f0:a::/48 maxlen: 48
2a02:26f0:1d::/48 maxlen: 48
2a02:26f0:33::/48 maxlen: 48
2a02:26f0:36::/48 maxlen: 48
2a02:26f0:74::/48 maxlen: 48
2a02:26f0:77::/48 maxlen: 48
2a02:26f0:88::/48 maxlen: 48
2a02:26f0:96::/48 maxlen: 48
2a02:26f0:9c::/48 maxlen: 48
2a02:26f0:9d::/48 maxlen: 48
2a02:26f0:a5::/48 maxlen: 48
2a02:26f0:a6::/48 maxlen: 48
2a02:26f0:a7::/48 maxlen: 48
2a02:26f0:bb::/48 maxlen: 48
2a02:26f0:bc::/48 maxlen: 48
2a02:26f0:bd::/48 maxlen: 48
2a02:26f0:c0::/48 maxlen: 48
2a02:26f0:f9::/48 maxlen: 48
2a02:26f0:5400::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Mar 2024 15:08:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:4a:0e:33:50:72:67:bd:2d:bf:9d:e1:f3:ea:9e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Mar 6 15:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef703773febab24efc60119e2fbbe575c1100d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6b:d5:7c:c0:96:91:4b:2a:da:2b:01:78:dc:
48:ee:a5:2e:4f:6d:c0:20:3a:d6:b2:43:ee:bf:f5:
5a:e4:49:d7:bc:ee:8a:3d:04:f2:94:41:96:4f:ab:
ae:1d:82:1e:c8:f2:9a:7d:27:34:df:35:70:3d:d6:
be:23:e8:ce:0e:cc:44:e0:5b:c0:3e:c0:4e:02:44:
f5:d6:4f:24:f0:46:3d:17:e4:80:81:9b:54:3b:03:
9f:3b:fe:55:1a:ac:10:2d:e2:57:9a:9b:29:b5:b4:
59:b9:bc:14:f5:60:97:37:2a:e5:06:7b:32:93:1b:
58:18:33:34:a0:bc:92:bf:16:2b:b3:e7:6a:92:f6:
82:a2:87:57:8a:ef:54:63:a1:b1:b8:72:52:91:65:
b8:c8:5c:f4:f0:bf:e0:a3:31:a2:b0:d3:0e:a0:1c:
6c:22:51:c2:a4:b6:53:15:f2:4b:79:3d:8f:55:71:
ca:f3:b4:d5:3b:fd:e0:9d:5e:99:9f:7b:fd:c7:7c:
88:d0:05:08:2e:f7:de:dd:f2:15:55:6b:9c:ee:a8:
ab:bc:03:9a:7d:60:41:f3:88:3e:b2:26:da:61:38:
06:57:3b:31:0b:dc:3b:00:ea:c0:78:4b:5a:15:a8:
00:f2:c0:6e:1d:91:6f:56:d7:fd:1c:40:8f:dd:20:
d9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:70:37:73:FE:BA:B2:4E:FC:60:11:9E:2F:BB:E5:75:C1:10:0D:52
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/73A3c_66sk78YBGeL7vldcEQDVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.16.49.0/24
2.18.25.0/24
2.20.48.0/24
2.21.236.0/23
84.53.176.0/24
84.53.186.0/24
92.122.120.0/23
92.122.152.0/24
92.122.191.0/24
92.122.204.0/23
95.101.12.0/24
95.101.121.0/24
193.108.152.0/24
195.245.126.0/24
IPv6:
2a02:26f0:a::/48
2a02:26f0:1d::/48
2a02:26f0:33::/48
2a02:26f0:36::/48
2a02:26f0:74::/48
2a02:26f0:77::/48
2a02:26f0:88::/48
2a02:26f0:96::/48
2a02:26f0:9c::/47
2a02:26f0:a5::-2a02:26f0:a7:ffff:ffff:ffff:ffff:ffff
2a02:26f0:bb::-2a02:26f0:bd:ffff:ffff:ffff:ffff:ffff
2a02:26f0:c0::/48
2a02:26f0:f9::/48
2a02:26f0:5400::/48
Signature Algorithm: sha256WithRSAEncryption
16:6c:72:58:9a:82:46:ad:82:80:41:29:ee:33:c9:9b:e9:4a:
e2:d5:db:ea:12:fa:d4:10:08:cf:71:fd:c7:c0:0b:9f:c9:e4:
a4:df:f1:1b:50:03:76:4c:15:37:a3:b8:c4:18:73:bb:c6:5e:
a5:0a:59:1d:f0:04:36:13:27:ef:f8:d8:bc:21:fc:d8:d0:4b:
be:05:ec:46:40:31:ee:22:e1:89:20:d9:80:02:54:a5:e5:e3:
f3:72:e7:c7:17:90:58:03:f3:5a:fe:ac:24:33:1c:8f:44:d6:
a7:7d:a0:84:2e:d4:15:99:67:f5:43:e5:e9:a1:04:4e:a9:df:
67:86:28:2d:8d:f4:63:39:5a:e2:3b:ac:5b:92:ce:6f:ec:88:
94:50:40:db:5b:de:36:c5:11:cd:ba:09:03:5f:b6:d1:a5:12:
a8:63:a0:e4:29:2b:da:46:75:87:e4:e7:39:55:35:e4:59:69:
cf:3a:0a:3a:07:5a:39:a6:4c:71:88:60:cd:37:1b:27:74:5e:
0b:0e:d6:c0:ed:8b:52:c0:0f:af:53:aa:1f:02:9c:04:d6:96:
95:04:cb:d8:ef:59:9c:e7:04:31:b2:30:a7:73:e1:37:52:0d:
d6:a7:d9:ae:96:8e:f6:29:12:ec:c1:c5:d0:81:16:ca:33:56:
af:80:a8:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 6 21:41:30 2024 by rpki-client on console.sobornost.net