Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/rMhwMKUH_9VCnEmJm5VON6cyRlo.roa
File: rMhwMKUH_9VCnEmJm5VON6cyRlo.roa (raw, json)
Hash identifier: M3exxvMHT/Urh5BmpnpeM10WfT3KUn5bM0kMW/oJ95k=
Subject key identifier: AC:C8:70:30:A5:07:FF:D5:42:9C:49:89:9B:95:4E:37:A7:32:46:5A
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 018A21D45C4F0D2BFFB573E15436C29B3289
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/rMhwMKUH_9VCnEmJm5VON6cyRlo.roa
Signing time: Wed 23 Aug 2023 09:57:59 +0000
ROA not before: Wed 23 Aug 2023 09:57:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32787
IP address blocks: 95.100.157.0/24 maxlen: 24
95.100.215.0/24 maxlen: 24
95.100.214.0/24 maxlen: 24
95.100.253.0/24 maxlen: 24
93.191.172.0/24 maxlen: 24
93.191.168.0/24 maxlen: 24
93.191.169.0/24 maxlen: 24
95.100.180.0/24 maxlen: 24
93.191.170.0/24 maxlen: 24
95.100.213.0/24 maxlen: 24
95.100.212.0/24 maxlen: 24
2.18.212.0/22 maxlen: 22
2.19.4.0/22 maxlen: 22
2.21.112.0/24 maxlen: 24
2.21.118.0/24 maxlen: 24
2.21.114.0/24 maxlen: 24
2.17.192.0/24 maxlen: 24
2.17.192.0/22 maxlen: 22
2.17.193.0/24 maxlen: 24
2.17.195.0/24 maxlen: 24
2.17.194.0/24 maxlen: 24
2.21.175.0/24 maxlen: 24
92.122.207.0/24 maxlen: 24
2.21.120.0/24 maxlen: 24
2.21.121.0/24 maxlen: 24
92.122.185.0/24 maxlen: 24
92.122.184.0/24 maxlen: 24
95.101.118.0/24 maxlen: 24
95.101.117.0/24 maxlen: 24
95.101.204.0/22 maxlen: 22
2.17.108.0/22 maxlen: 22
2a02:2370:2::/48 maxlen: 48
2a02:2370:102::/48 maxlen: 48
2a02:2370:202::/48 maxlen: 48
2a02:2370:6::/48 maxlen: 48
2a02:2370:106::/48 maxlen: 48
2a02:2370:206::/48 maxlen: 48
2a02:2370:5::/48 maxlen: 48
2a02:2370:105::/48 maxlen: 48
2a02:2370:205::/48 maxlen: 48
2a02:2370:207::/48 maxlen: 48
2a02:2370:1::/48 maxlen: 48
2a02:2370:101::/48 maxlen: 48
2a02:2370:201::/48 maxlen: 48
2a02:2370:204::/48 maxlen: 48
2a02:2370:4::/48 maxlen: 48
2a02:2370:104::/48 maxlen: 48
2a02:2370:103::/48 maxlen: 48
2a02:2370:203::/48 maxlen: 48
2a02:2370:3::/48 maxlen: 48
2a02:2370:200::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:d4:5c:4f:0d:2b:ff:b5:73:e1:54:36:c2:9b:32:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Aug 23 09:57:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acc87030a507ffd5429c49899b954e37a732465a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e9:9b:d4:54:f8:cd:e7:b4:82:41:86:45:69:
b2:ed:ab:f6:1b:76:6f:8a:45:3b:59:b4:8c:91:e5:
63:cd:b5:6b:0b:b2:23:bc:67:b0:9e:c1:33:de:46:
44:a4:7e:c1:28:30:a4:a4:6d:ff:29:18:08:22:3a:
36:af:b2:ee:b8:de:d2:78:25:43:2f:cd:c1:70:b4:
9a:fa:9e:e3:3d:c2:6e:10:17:78:8f:59:ff:4d:20:
dc:a7:f6:70:a9:46:95:80:ac:50:c4:c7:4a:bf:ef:
af:23:37:d5:cd:50:45:eb:01:a9:f7:70:ea:87:a5:
bc:3a:e8:af:90:e0:26:d8:6e:b5:97:f6:35:55:43:
32:d1:46:8d:1b:97:3b:b7:d4:c6:71:44:97:e2:9d:
04:fe:a0:eb:57:ee:d9:fc:56:f4:4b:3d:78:bc:21:
e0:75:f6:e9:b5:c4:b6:df:3d:53:2d:c8:f5:42:8b:
fa:a8:47:66:a1:19:e0:45:fd:56:45:bf:46:78:fa:
ac:5e:68:a7:01:00:54:c8:e8:32:ab:9d:1d:90:7c:
36:79:40:93:fb:55:20:dc:e4:10:49:f1:cf:08:0b:
53:f3:0a:9d:af:97:d0:2e:1d:bc:73:50:16:25:4b:
15:75:b9:c4:2b:ee:c5:df:6d:74:be:98:c7:72:34:
0b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C8:70:30:A5:07:FF:D5:42:9C:49:89:9B:95:4E:37:A7:32:46:5A
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/rMhwMKUH_9VCnEmJm5VON6cyRlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.17.108.0/22
2.17.192.0/22
2.18.212.0/22
2.19.4.0/22
2.21.112.0/24
2.21.114.0/24
2.21.118.0/24
2.21.120.0/23
2.21.175.0/24
92.122.184.0/23
92.122.207.0/24
93.191.168.0-93.191.170.255
93.191.172.0/24
95.100.157.0/24
95.100.180.0/24
95.100.212.0/22
95.100.253.0/24
95.101.117.0-95.101.118.255
95.101.204.0/22
IPv6:
2a02:2370:1::-2a02:2370:6:ffff:ffff:ffff:ffff:ffff
2a02:2370:101::-2a02:2370:106:ffff:ffff:ffff:ffff:ffff
2a02:2370:200::/45
Signature Algorithm: sha256WithRSAEncryption
1d:b6:b2:2c:eb:5a:8b:8f:11:1a:6e:5c:c9:84:5d:99:ac:0c:
d3:4c:45:55:19:a4:3a:d7:c3:fb:2d:bc:81:dd:3b:1e:a0:4d:
05:d8:4b:71:fa:b7:68:43:85:66:c4:22:15:2b:61:b1:04:20:
fd:ff:f3:3c:1c:e5:c2:0f:8d:04:29:24:b8:91:a0:c6:4c:4a:
69:da:36:ec:b8:2e:f4:f5:29:da:ea:9a:1b:51:2e:d7:c5:2a:
e2:e9:9a:e6:0b:41:be:83:65:9e:6d:d6:6a:f5:01:5d:ca:a8:
33:c9:d0:13:cc:f8:7c:4a:cd:6e:d0:29:5f:23:24:40:61:22:
aa:37:86:11:40:b7:6f:11:5a:89:bb:4d:ca:5c:90:0e:77:c0:
a1:01:63:2f:da:c2:23:61:ef:9a:04:61:9d:d7:5f:d8:a4:e1:
88:31:b6:32:b6:ef:94:55:52:ca:83:fc:e9:63:8f:b7:a2:69:
6b:8f:37:65:b4:c6:ba:50:2e:1c:1c:f7:eb:74:55:1f:ff:53:
3c:83:a9:49:56:6d:2f:de:97:9b:74:0c:63:84:ca:d8:3c:c1:
96:aa:e1:3c:66:9d:16:04:ec:cb:b0:22:65:f3:fd:bb:f6:0f:
9b:38:90:18:ca:64:35:02:5c:2d:b2:fe:16:3d:d9:6e:37:9f:
38:18:6f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net