Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/Ha9GQpIsVIBXunO-fCv_6_qbpVc.roa
File: Ha9GQpIsVIBXunO-fCv_6_qbpVc.roa (raw, json)
Hash identifier: xmz/OmAkS8UvcF2Bf3RK45gVIey78lKUBmKx1KGVKuQ=
Subject key identifier: 1D:AF:46:42:92:2C:54:80:57:BA:73:BE:7C:2B:FF:EB:FA:9B:A5:57
Certificate issuer: /CN=48171672d53fdf8b2537764f537e365a5927bdaf
Certificate serial: 018FC8F8EC36C62E3AA27B88F6553DFBC40D
Authority key identifier: 48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/Ha9GQpIsVIBXunO-fCv_6_qbpVc.roa
Signing time: Thu 30 May 2024 10:08:27 +0000
ROA not before: Thu 30 May 2024 10:08:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21056
IP address blocks: 45.84.140.0/22 maxlen: 32
45.143.36.0/22 maxlen: 32
45.151.12.0/22 maxlen: 32
45.151.64.0/22 maxlen: 32
46.44.192.0/18 maxlen: 32
78.152.96.0/19 maxlen: 32
79.135.32.0/19 maxlen: 32
80.93.128.0/20 maxlen: 32
83.137.56.0/21 maxlen: 24
87.247.232.0/21 maxlen: 32
91.143.192.0/20 maxlen: 32
94.138.160.0/19 maxlen: 32
103.26.124.0/22 maxlen: 22
103.43.232.0/22 maxlen: 22
103.61.184.0/22 maxlen: 22
103.248.184.0/22 maxlen: 24
103.248.186.0/24 maxlen: 24
144.48.192.0/22 maxlen: 32
185.125.64.0/22 maxlen: 22
185.158.116.0/22 maxlen: 32
185.170.36.0/22 maxlen: 32
185.224.60.0/22 maxlen: 32
185.224.104.0/22 maxlen: 32
185.230.92.0/22 maxlen: 32
185.230.192.0/22 maxlen: 32
185.230.232.0/22 maxlen: 32
185.231.160.0/22 maxlen: 32
185.234.164.0/22 maxlen: 32
185.241.20.0/22 maxlen: 32
188.240.32.0/22 maxlen: 22
193.124.240.0/22 maxlen: 22
194.58.216.0/22 maxlen: 22
213.182.64.0/19 maxlen: 32
2a00:14f8::/32 maxlen: 64
Validation: Failed, certificate revoked on Mon 02 Sep 2024 14:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:f8:ec:36:c6:2e:3a:a2:7b:88:f6:55:3d:fb:c4:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48171672d53fdf8b2537764f537e365a5927bdaf
Validity
Not Before: May 30 10:08:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1daf4642922c548057ba73be7c2bffebfa9ba557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:90:74:fc:22:49:d7:e9:6e:21:b3:7d:7b:f1:
a0:82:6a:8b:bc:f2:df:6c:92:f3:37:d7:90:e8:fc:
46:3c:61:5f:39:f8:79:a4:26:65:ac:27:84:21:3a:
22:b8:f1:d0:5d:7e:0b:c1:d7:75:2d:c9:c7:87:4c:
aa:5b:33:83:f5:3d:28:0a:f8:29:d6:29:21:28:d4:
28:17:53:6c:4a:ec:2e:ca:99:95:a4:b0:f7:df:db:
f2:33:7d:d3:8d:ad:b3:b7:f4:2e:17:33:e0:13:b5:
b2:09:ac:c8:67:3d:c5:38:81:57:e8:7d:65:07:6d:
fb:7d:6e:40:e0:80:cb:b0:1e:58:83:66:34:e0:09:
be:b0:e8:0c:bd:19:ee:33:ac:18:04:dc:3e:d4:0f:
88:68:10:a8:b9:bb:e1:e2:c2:42:d5:aa:5b:b5:f3:
6c:2b:94:f6:03:e2:7b:84:ff:a4:e0:d2:04:69:18:
77:39:e4:28:d8:15:ff:06:5f:f3:92:a9:37:4e:1b:
68:2a:3d:e4:a5:43:eb:9d:1c:c2:e8:57:e1:1c:1d:
65:3a:83:3a:58:9b:3b:22:77:c9:8a:e2:44:4e:39:
d6:c3:52:8a:d2:6f:45:a3:62:13:ab:61:63:e3:8d:
4b:40:57:dc:df:4b:9b:ed:c9:79:70:7a:e9:6e:05:
b0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AF:46:42:92:2C:54:80:57:BA:73:BE:7C:2B:FF:EB:FA:9B:A5:57
X509v3 Authority Key Identifier:
keyid:48:17:16:72:D5:3F:DF:8B:25:37:76:4F:53:7E:36:5A:59:27:BD:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBcWctU_34slN3ZPU342Wlknva8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/Ha9GQpIsVIBXunO-fCv_6_qbpVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/55e138-56da-4492-a1f2-db04f21390a0/1/SBcWctU_34slN3ZPU342Wlknva8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.140.0/22
45.143.36.0/22
45.151.12.0/22
45.151.64.0/22
46.44.192.0/18
78.152.96.0/19
79.135.32.0/19
80.93.128.0/20
83.137.56.0/21
87.247.232.0/21
91.143.192.0/20
94.138.160.0/19
103.26.124.0/22
103.43.232.0/22
103.61.184.0/22
103.248.184.0/22
144.48.192.0/22
185.125.64.0/22
185.158.116.0/22
185.170.36.0/22
185.224.60.0/22
185.224.104.0/22
185.230.92.0/22
185.230.192.0/22
185.230.232.0/22
185.231.160.0/22
185.234.164.0/22
185.241.20.0/22
188.240.32.0/22
193.124.240.0/22
194.58.216.0/22
213.182.64.0/19
IPv6:
2a00:14f8::/32
Signature Algorithm: sha256WithRSAEncryption
32:6c:ee:7e:be:5c:84:d6:2b:7e:76:ff:2f:63:0d:9f:dd:3e:
11:21:5e:85:4d:4a:fe:1b:b8:2c:16:4e:2b:a1:1a:5a:26:07:
42:87:1f:ce:85:b8:83:91:ca:45:fc:4a:b4:de:6c:62:77:40:
29:9f:1b:f9:98:50:17:67:ed:4c:32:00:5d:d4:bb:a8:68:b4:
cc:10:cf:67:5f:70:7e:42:58:23:2a:d1:b5:ca:db:0a:4e:ba:
50:23:1a:01:01:7b:7f:92:93:f9:ca:4b:ed:1b:2d:6c:c6:08:
9b:e2:aa:35:1d:92:4b:ab:bd:15:3e:5a:4b:d9:68:6c:0d:45:
d1:5f:e2:9e:77:e7:5b:5a:5e:5e:25:10:4a:cf:6e:6f:95:6a:
f6:45:7a:17:07:7b:77:b7:1c:03:62:dc:9d:c3:ef:4e:ce:2d:
d9:a2:fb:a3:23:ce:6b:62:e2:0d:9f:b0:be:f3:b4:9d:23:d9:
c9:f4:ce:bb:53:5d:4b:54:35:91:7d:ed:95:23:9e:fe:97:91:
43:db:81:52:ba:f4:31:af:84:76:2a:79:44:1f:20:aa:0e:52:
b4:25:e4:63:b7:45:cf:6e:ac:73:0e:7f:fa:df:4a:71:9b:23:
14:2a:e8:f6:dd:58:73:d8:75:ea:1b:66:be:75:eb:d6:e1:96:
eb:ac:4f:aa
-----BEGIN CERTIFICATE-----
MIIFyzCCBLOgAwIBAgISAY/I+Ow2xi46onuI9lU9+8QNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MTcxNjcyZDUzZmRmOGIyNTM3NzY0ZjUzN2UzNjVhNTky
N2JkYWYwHhcNMjQwNTMwMTAwODI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGFmNDY0MjkyMmM1NDgwNTdiYTczYmU3YzJiZmZlYmZhOWJhNTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JB0/CJJ1+luIbN9e/GggmqLvPLf
bJLzN9eQ6PxGPGFfOfh5pCZlrCeEIToiuPHQXX4Lwdd1LcnHh0yqWzOD9T0oCvgp
1ikhKNQoF1NsSuwuypmVpLD339vyM33Tja2zt/QuFzPgE7WyCazIZz3FOIFX6H1l
B237fW5A4IDLsB5Yg2Y04Am+sOgMvRnuM6wYBNw+1A+IaBCoubvh4sJC1apbtfNs
K5T2A+J7hP+k4NIEaRh3OeQo2BX/Bl/zkqk3ThtoKj3kpUPrnRzC6FfhHB1lOoM6
WJs7InfJiuJETjnWw1KK0m9Fo2ITq2Fj441LQFfc30ub7cl5cHrpbgWwQQIDAQAB
o4IC1zCCAtMwHQYDVR0OBBYEFB2vRkKSLFSAV7pzvnwr/+v6m6VXMB8GA1UdIwQY
MBaAFEgXFnLVP9+LJTd2T1N+NlpZJ72vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0JjV2N0VV8zNHNsTjNaUFUzNDJXbGtudmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS81NWUxMzgtNTZkYS00NDkyLWExZjIt
ZGIwNGYyMTM5MGEwLzEvSGE5R1FwSXNWSUJYdW5PLWZDdl82X3FicFZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS81NWUxMzgtNTZkYS00NDkyLWExZjItZGIwNGYyMTM5MGEw
LzEvU0JjV2N0VV8zNHNsTjNaUFUzNDJXbGtudmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHsBggrBgEFBQcBBwEB/wSB3DCB2TCBxwQCAAEwgcADBAIt
VIwDBAItjyQDBAItlwwDBAItl0ADBAYuLMADBAVOmGADBAVPhyADBARQXYADBANT
iTgDBANX9+gDBARbj8ADBAVeiqADBAJnGnwDBAJnK+gDBAJnPbgDBAJn+LgDBAKQ
MMADBAK5fUADBAK5nnQDBAK5qiQDBAK54DwDBAK54GgDBAK55lwDBAK55sADBAK5
5ugDBAK556ADBAK56qQDBAK58RQDBAK88CADBALBfPADBALCOtgDBAXVtkAwDQQC
AAIwBwMFACoAFPgwDQYJKoZIhvcNAQELBQADggEBADJs7n6+XITWK352/y9jDZ/d
PhEhXoVNSv4buCwWTiuhGlomB0KHH86FuIORykX8SrTebGJ3QCmfG/mYUBdn7Uwy
AF3Uu6hotMwQz2dfcH5CWCMq0bXK2wpOulAjGgEBe3+Sk/nKS+0bLWzGCJviqjUd
kkurvRU+WkvZaGwNRdFf4p5351taXl4lEErPbm+VavZFehcHe3e3HANi3J3D707O
Ldmi+6Mjzmti4g2fsL7ztJ0j2cn0zrtTXUtUNZF97ZUjnv6XkUPbgVK69DGvhHYq
eUQfIKoOUrQl5GO3Rc9urHMOf/rfSnGbIxQq6PbdWHPYdeobZr5169bhluusT6o=
-----END CERTIFICATE-----
Generated at Mon Sep 2 21:16:48 2024 by rpki-client on console.sobornost.net