Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/GI9ftRv8TqqznpEwCW5CpAC5CP0.roa
File: GI9ftRv8TqqznpEwCW5CpAC5CP0.roa (raw, json)
Hash identifier: ky6BBlbDcmrcWppdkL/5gwPF9GI2E2HTgUYf4JqGdKA=
Subject key identifier: 18:8F:5F:B5:1B:FC:4E:AA:B3:9E:91:30:09:6E:42:A4:00:B9:08:FD
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 01866DE2600ABD72E8FB9865F78F768DCF72
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/GI9ftRv8TqqznpEwCW5CpAC5CP0.roa
Signing time: Mon 20 Feb 2023 08:13:17 +0000
ROA not before: Mon 20 Feb 2023 08:13:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203214
IP address blocks: 109.224.52.0/22 maxlen: 22
109.224.56.0/22 maxlen: 22
109.224.56.0/21 maxlen: 21
109.224.60.0/22 maxlen: 22
109.224.0.0/18 maxlen: 18
109.224.2.0/23 maxlen: 23
109.224.1.0/24 maxlen: 24
109.224.0.0/21 maxlen: 21
109.224.4.0/22 maxlen: 22
109.224.8.0/21 maxlen: 21
109.224.8.0/22 maxlen: 22
109.224.16.0/22 maxlen: 22
109.224.15.0/24 maxlen: 24
109.224.14.0/24 maxlen: 24
109.224.14.0/23 maxlen: 23
109.224.13.0/24 maxlen: 24
109.224.12.0/23 maxlen: 23
109.224.12.0/24 maxlen: 24
109.224.24.0/22 maxlen: 22
109.224.20.0/22 maxlen: 22
109.224.30.0/23 maxlen: 23
109.224.29.0/24 maxlen: 24
109.224.28.0/24 maxlen: 24
109.224.36.0/22 maxlen: 22
109.224.32.0/22 maxlen: 22
109.224.44.0/22 maxlen: 22
109.224.42.0/23 maxlen: 23
109.224.42.0/24 maxlen: 24
109.224.41.0/24 maxlen: 24
109.224.40.0/21 maxlen: 21
109.224.40.0/24 maxlen: 24
109.224.48.0/21 maxlen: 21
109.224.48.0/22 maxlen: 22
185.118.96.0/24 maxlen: 24
185.118.96.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6d:e2:60:0a:bd:72:e8:fb:98:65:f7:8f:76:8d:cf:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: Feb 20 08:13:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=188f5fb51bfc4eaab39e9130096e42a400b908fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:68:1d:97:c6:9f:5a:1a:fe:f7:f8:86:47:f2:
3e:f5:cf:bf:15:33:c8:4c:cd:43:0e:e4:97:11:c5:
9e:a9:6c:85:f5:46:15:77:c9:d0:95:c1:2a:80:1f:
51:c4:c8:7f:2d:d9:16:e1:85:1b:6b:e9:6e:44:cd:
60:6a:03:93:6f:f9:7e:f7:4a:49:bc:d7:a8:50:eb:
ed:9e:f2:cb:94:29:92:fe:77:d3:c1:e7:7d:a3:aa:
a8:f8:99:04:15:6e:ce:a3:51:93:c3:ad:c6:f8:86:
89:0b:d1:2a:be:ed:75:cd:40:3a:cc:0e:cc:3b:4d:
3d:31:66:4c:b2:04:c1:1c:c2:25:57:be:ea:d8:eb:
f5:a6:14:62:d8:4d:56:c0:b7:03:fd:82:04:35:e9:
f6:7b:fe:b8:c0:6f:27:ef:56:c2:7e:13:e6:66:cc:
c7:a1:34:84:98:52:df:be:0a:a3:fd:bb:0a:b0:78:
72:e4:cc:bc:1b:a3:61:8d:e6:04:7f:ce:ed:89:3b:
a1:d3:f6:0c:78:02:13:1e:1e:2e:2f:a3:11:e5:64:
71:7a:0d:62:5f:2d:62:32:b0:77:5b:a8:fc:7a:36:
f2:d7:18:4a:e2:5a:26:25:5b:23:5d:9c:07:c3:29:
9a:7e:ca:c1:ff:c5:a2:07:fb:4d:ce:45:e1:bd:3c:
f7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8F:5F:B5:1B:FC:4E:AA:B3:9E:91:30:09:6E:42:A4:00:B9:08:FD
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/GI9ftRv8TqqznpEwCW5CpAC5CP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.0.0/18
185.118.96.0/22
Signature Algorithm: sha256WithRSAEncryption
68:4c:ca:18:f5:0f:d6:dd:3d:5f:58:35:53:31:2c:11:df:74:
2e:d9:d1:45:8f:1f:ce:1b:6e:66:63:56:92:98:ec:0f:47:27:
2f:8f:3c:07:3b:b1:15:fd:eb:da:20:c8:30:74:9b:35:c3:12:
7c:32:b8:86:f1:ec:9f:b5:e4:01:f1:5b:c5:18:1e:f5:b8:5f:
c1:9e:ce:3a:6e:75:db:77:55:46:73:00:d8:8d:9d:0e:9a:e7:
24:4b:60:ff:e6:07:af:62:5f:a5:98:f7:92:33:e7:7d:fc:e0:
a3:9c:fa:6b:d0:f1:59:8e:c8:af:2f:1a:e1:10:23:6a:c6:ea:
f2:bc:c1:5c:ed:f9:0d:6e:df:67:35:60:41:e9:01:6a:55:72:
47:12:fd:d3:a8:8a:f8:a6:43:e6:e0:40:18:0c:40:80:40:e6:
54:7b:31:93:29:bf:bc:6d:fb:50:ab:f8:82:3b:1f:2d:b6:a3:
4b:6b:0e:35:cb:9f:ff:0d:f6:c7:8d:1b:ef:ae:67:68:38:2b:
fc:88:21:84:8b:90:a3:12:80:da:5b:29:48:de:07:3a:94:19:
b7:a7:06:00:94:c4:88:6b:dc:af:01:96:2d:12:63:07:52:86:
a9:41:2d:b7:2f:78:ae:fc:e7:91:88:37:5f:c7:9d:56:d8:06:
ea:37:bb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:28 2023 by rpki-client on console.sobornost.net