Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/5wv6tffz3DKq750yowVP8v1J6rI.roa
File: 5wv6tffz3DKq750yowVP8v1J6rI.roa (raw, json)
Hash identifier: 55wTWxZJrZRsg1sh3nIRuBDzOEWYms0hFaR/3zkW5gI=
Subject key identifier: E7:0B:FA:B5:F7:F3:DC:32:AA:EF:9D:32:A3:05:4F:F2:FD:49:EA:B2
Certificate issuer: /CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Certificate serial: 0188D8281F045B6D8AE505E763F8735A8ECD
Authority key identifier: AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/5wv6tffz3DKq750yowVP8v1J6rI.roa
Signing time: Tue 20 Jun 2023 09:34:47 +0000
ROA not before: Tue 20 Jun 2023 09:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13287
IP address blocks: 213.162.192.0/24 maxlen: 24
213.162.193.0/24 maxlen: 24
213.162.195.0/24 maxlen: 24
213.162.197.0/24 maxlen: 24
213.162.196.0/22 maxlen: 24
213.162.206.0/24 maxlen: 24
213.162.205.0/24 maxlen: 24
213.162.204.0/24 maxlen: 24
213.162.200.0/22 maxlen: 22
213.162.212.0/24 maxlen: 24
213.162.211.0/24 maxlen: 24
213.162.210.0/24 maxlen: 24
213.162.208.0/23 maxlen: 23
213.162.207.0/24 maxlen: 24
213.162.219.0/24 maxlen: 24
213.162.216.0/22 maxlen: 22
213.162.218.0/24 maxlen: 24
213.162.217.0/24 maxlen: 24
213.162.215.0/24 maxlen: 24
213.162.214.0/24 maxlen: 24
213.162.220.0/24 maxlen: 24
213.162.221.0/24 maxlen: 24
185.33.67.0/24 maxlen: 24
185.33.66.0/24 maxlen: 24
109.234.84.0/24 maxlen: 24
109.234.85.0/24 maxlen: 24
109.234.81.0/24 maxlen: 24
109.234.80.0/24 maxlen: 24
109.234.82.0/24 maxlen: 24
109.234.82.0/23 maxlen: 23
109.234.87.0/24 maxlen: 24
185.19.68.0/22 maxlen: 22
185.111.185.0/24 maxlen: 24
185.111.184.0/24 maxlen: 24
185.111.184.0/22 maxlen: 22
2a02:23a0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:28:1f:04:5b:6d:8a:e5:05:e7:63:f8:73:5a:8e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab54fe831b6a719f42e6c8486fd03b550be761fb
Validity
Not Before: Jun 20 09:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e70bfab5f7f3dc32aaef9d32a3054ff2fd49eab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:28:62:c9:41:48:c3:4c:a5:58:a9:26:38:ee:
bb:82:15:d7:cd:47:99:1a:ea:e5:75:f5:37:25:60:
43:1e:d8:b8:26:5c:e3:25:cf:c1:8d:34:11:6f:5b:
e3:0e:51:36:7b:0f:6f:fc:a6:ab:ad:b2:5a:53:9e:
60:22:36:4a:a2:e0:21:53:a6:78:1e:96:24:be:03:
37:f2:6c:76:95:79:68:c8:d9:50:37:1e:1a:48:73:
3d:b3:cd:64:b9:9b:89:f8:6c:11:0b:8f:6a:2d:29:
8f:cf:0d:80:0b:c8:0c:bc:1e:6b:80:02:b5:4e:4d:
ee:7c:10:0f:99:ca:16:6c:d7:72:0c:00:09:30:70:
b7:bf:20:d1:80:4e:16:42:57:7e:cf:c8:5c:bb:e9:
f6:8b:be:c3:c1:7c:aa:16:49:e7:39:49:c5:ba:b6:
4d:fc:a3:b8:0f:6d:f5:d7:b8:b2:d2:b9:e0:a7:a6:
e2:b6:9d:81:de:7f:0f:fc:33:8d:29:c5:cd:5c:bb:
2c:ac:37:b8:33:a2:0d:96:27:85:69:b3:f2:8c:e9:
96:fb:7a:de:4f:51:0e:d8:d7:fd:da:3d:ab:c5:c7:
0a:8e:d0:c7:d4:f4:24:dd:3e:15:6d:8f:c1:07:f1:
b7:0b:bd:15:fa:00:2b:1a:2d:12:4e:5f:25:87:12:
8e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0B:FA:B5:F7:F3:DC:32:AA:EF:9D:32:A3:05:4F:F2:FD:49:EA:B2
X509v3 Authority Key Identifier:
keyid:AB:54:FE:83:1B:6A:71:9F:42:E6:C8:48:6F:D0:3B:55:0B:E7:61:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q1T-gxtqcZ9C5shIb9A7VQvnYfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/5wv6tffz3DKq750yowVP8v1J6rI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/5eaaa7-3107-4268-aad6-6fd9789205ba/1/q1T-gxtqcZ9C5shIb9A7VQvnYfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.80.0-109.234.85.255
109.234.87.0/24
185.19.68.0/22
185.33.66.0/23
185.111.184.0/22
213.162.192.0/23
213.162.195.0-213.162.212.255
213.162.214.0-213.162.221.255
IPv6:
2a02:23a0::/32
Signature Algorithm: sha256WithRSAEncryption
82:a2:c2:72:cc:9b:0c:55:60:c3:d0:ee:3c:ce:35:06:74:b0:
f0:b6:2d:71:e6:ed:08:83:1d:0a:fc:dd:79:a2:0e:51:11:89:
64:77:49:a6:7d:34:10:a6:9b:60:a6:ab:20:3f:c2:ec:b0:ec:
f4:72:aa:06:87:64:98:fa:b0:04:36:91:20:68:c3:10:8b:9e:
f5:32:31:3f:ce:d3:53:b6:ef:42:c6:f6:cd:54:2d:90:5c:e6:
47:c5:a0:d9:79:86:49:67:24:60:82:53:31:57:29:40:9c:e8:
bd:de:40:18:8d:b5:fb:1b:30:09:82:ad:3f:ce:0c:d2:0e:0d:
37:74:2e:5d:40:b1:84:93:c5:cb:a6:bb:3e:2c:89:35:9a:20:
93:bc:c2:49:2f:c7:52:cf:c9:7a:e8:65:c7:69:54:0a:58:6d:
35:b8:7d:2e:de:40:60:7f:d7:e4:e4:e6:84:3d:4d:63:c1:6a:
e8:e7:6e:ed:94:de:c0:21:aa:09:73:4c:48:c2:ef:76:43:11:
a1:06:64:77:91:a4:f2:9b:bf:ca:a6:4b:17:64:a0:76:d9:b6:
8b:36:ca:a8:8d:a8:25:bb:1d:fe:91:fd:43:af:77:7d:c7:f0:
3c:20:63:0f:93:73:99:fc:17:2f:36:d4:2e:b6:ba:cd:3c:d5:
bc:da:cf:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:00 2024 by rpki-client on console.sobornost.net