Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/ajJYtchy_FwlBy_QnaZsy9dMBGc.roa
File: ajJYtchy_FwlBy_QnaZsy9dMBGc.roa (raw, json)
Hash identifier: gLlKFXF1cxs9Uu8QQxxEUbxSAfL4xMKLGBRQYaoYsWg=
Subject key identifier: 6A:32:58:B5:C8:72:FC:5C:25:07:2F:D0:9D:A6:6C:CB:D7:4C:04:67
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 018756813CB732259F04763D33026128E355
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/ajJYtchy_FwlBy_QnaZsy9dMBGc.roa
Signing time: Thu 06 Apr 2023 12:18:42 +0000
ROA not before: Thu 06 Apr 2023 12:18:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24685
IP address blocks: 80.92.224.0/24 maxlen: 32
80.92.226.0/24 maxlen: 32
212.110.152.0/23 maxlen: 32
80.92.231.0/24 maxlen: 32
80.92.233.0/24 maxlen: 32
80.92.235.0/24 maxlen: 32
80.92.234.0/24 maxlen: 32
82.117.229.0/24 maxlen: 32
193.111.48.0/23 maxlen: 32
92.60.179.0/24 maxlen: 32
92.60.178.0/23 maxlen: 32
92.60.178.0/24 maxlen: 32
82.117.244.0/24 maxlen: 32
185.38.208.0/24 maxlen: 32
185.38.209.0/24 maxlen: 32
185.39.196.0/24 maxlen: 32
128.0.170.0/24 maxlen: 32
128.0.172.0/24 maxlen: 32
193.111.0.0/24 maxlen: 32
85.90.211.0/24 maxlen: 32
31.172.136.0/23 maxlen: 32
31.172.140.0/23 maxlen: 32
85.90.223.0/24 maxlen: 32
2a01:6b0:7::/48 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:81:3c:b7:32:25:9f:04:76:3d:33:02:61:28:e3:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Apr 6 12:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a3258b5c872fc5c25072fd09da66ccbd74c0467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:09:f7:09:ce:33:2a:73:c9:98:b6:c5:3d:d9:
2b:e2:72:30:26:b1:b7:78:cb:b3:34:7d:bc:39:3f:
48:82:26:ac:b0:9c:ac:90:cc:52:7a:92:81:39:3c:
b1:f5:b7:83:32:42:52:81:e0:a9:82:ec:a8:29:47:
aa:5a:d7:16:fe:b7:6f:bf:f4:bb:af:3b:ed:10:ca:
15:a4:af:7a:9d:1b:54:7b:e9:1a:da:0e:41:a5:be:
1a:2e:0d:f7:0b:2b:03:ae:16:88:98:ad:cb:7e:8e:
a0:9e:66:db:f2:4b:fe:a2:66:e4:b4:3b:15:71:86:
62:ab:39:30:f5:0e:3a:35:1b:9a:9c:63:52:a0:13:
79:1d:45:dc:12:b5:a3:aa:1e:2e:ff:3c:e4:9d:78:
26:1c:70:71:de:5b:05:6b:86:e6:12:3c:e3:62:3d:
3a:62:ab:81:e3:48:a3:35:5b:62:87:18:b4:73:f5:
4e:72:36:6f:d7:d5:a4:99:22:33:9f:d2:72:5e:96:
33:31:38:12:d1:4a:b7:9a:a7:c2:c0:fc:de:6d:d9:
de:29:cd:bb:35:f6:8f:23:7a:b2:4e:3f:96:de:56:
62:18:f4:4d:b6:64:31:38:61:6d:5b:27:3f:90:ac:
4e:32:28:dc:85:20:83:a3:6f:04:ef:65:ff:16:d2:
63:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:32:58:B5:C8:72:FC:5C:25:07:2F:D0:9D:A6:6C:CB:D7:4C:04:67
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/ajJYtchy_FwlBy_QnaZsy9dMBGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.136.0/23
31.172.140.0/23
80.92.224.0/24
80.92.226.0/24
80.92.231.0/24
80.92.233.0-80.92.235.255
82.117.229.0/24
82.117.244.0/24
85.90.211.0/24
85.90.223.0/24
92.60.178.0/23
128.0.170.0/24
128.0.172.0/24
185.38.208.0/23
185.39.196.0/24
193.111.0.0/24
193.111.48.0/23
212.110.152.0/23
IPv6:
2a01:6b0:7::/48
Signature Algorithm: sha256WithRSAEncryption
af:fb:2a:a0:7c:5e:2c:0c:66:3b:5e:4e:23:38:92:82:67:80:
1c:6c:e5:bc:16:c7:47:6c:9e:fb:62:3c:0a:ae:87:30:c6:20:
b8:3c:a8:10:c1:9a:14:33:19:6a:8f:53:f7:66:e4:85:39:96:
d2:cc:e6:49:dc:5f:69:1e:d2:2c:17:ea:e7:48:ae:a5:94:f8:
67:ef:48:4e:a7:73:6b:ab:3f:fc:d6:5d:a9:2a:13:4b:f4:51:
68:4d:f3:06:a6:3c:a4:1d:43:34:f1:9f:84:d7:74:fa:25:d9:
c9:45:00:09:de:fd:e9:1e:a2:67:82:d1:47:37:bb:28:7f:f6:
af:ad:37:21:6f:a3:76:2c:aa:06:41:05:49:91:56:07:37:b2:
ad:9e:d5:2a:57:eb:6a:b6:8d:33:27:b8:7e:e0:cf:dd:cf:c1:
c1:2d:2b:63:14:73:73:6b:f4:6a:bb:dd:65:9b:bd:02:fd:fd:
0a:1f:91:f0:75:3d:57:4e:4e:0b:14:23:2e:47:5b:a2:e0:3f:
5c:a9:1a:d1:1d:55:0f:45:89:f4:77:c2:4c:86:53:ae:e0:ec:
43:b2:8c:5a:4d:7e:ab:5b:b6:55:7f:8a:60:3b:36:9b:15:d5:
68:54:e2:46:8f:5b:d5:39:9b:8f:4d:79:85:c3:56:c1:ff:a0:
fd:df:f5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:57 2024 by rpki-client on console.sobornost.net