Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/Lik3HanswC4oQwgIthfwoYuVvXs.roa
File: Lik3HanswC4oQwgIthfwoYuVvXs.roa (raw, json)
Hash identifier: 78k9gqgLowDpSZKhW8OrLZ/Oe/A/JZJEXPUevN/UuHE=
Subject key identifier: 2E:29:37:1D:A9:EC:C0:2E:28:43:08:08:B6:17:F0:A1:8B:95:BD:7B
Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Certificate serial: 01866DE25EDCA8F592A86EF2E121E342C789
Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/Lik3HanswC4oQwgIthfwoYuVvXs.roa
Signing time: Mon 20 Feb 2023 08:13:17 +0000
ROA not before: Mon 20 Feb 2023 08:13:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50710
IP address blocks: 109.224.52.0/22 maxlen: 22
109.224.56.0/22 maxlen: 22
109.224.56.0/21 maxlen: 21
109.224.60.0/22 maxlen: 22
109.224.1.0/24 maxlen: 24
109.224.0.0/21 maxlen: 21
109.224.2.0/23 maxlen: 23
109.224.0.0/18 maxlen: 18
109.224.4.0/22 maxlen: 22
109.224.8.0/21 maxlen: 21
109.224.8.0/22 maxlen: 22
109.224.13.0/24 maxlen: 24
109.224.12.0/23 maxlen: 23
109.224.12.0/24 maxlen: 24
109.224.14.0/24 maxlen: 24
109.224.14.0/23 maxlen: 23
109.224.15.0/24 maxlen: 24
109.224.16.0/22 maxlen: 22
109.224.24.0/22 maxlen: 22
109.224.20.0/22 maxlen: 22
109.224.28.0/24 maxlen: 24
109.224.30.0/23 maxlen: 23
109.224.29.0/24 maxlen: 24
109.224.32.0/22 maxlen: 22
109.224.36.0/22 maxlen: 22
109.224.41.0/24 maxlen: 24
109.224.40.0/21 maxlen: 21
109.224.40.0/24 maxlen: 24
109.224.42.0/23 maxlen: 23
109.224.42.0/24 maxlen: 24
109.224.44.0/22 maxlen: 22
109.224.48.0/21 maxlen: 21
109.224.48.0/22 maxlen: 22
185.118.96.0/22 maxlen: 22
185.118.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6d:e2:5e:dc:a8:f5:92:a8:6e:f2:e1:21:e3:42:c7:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae
Validity
Not Before: Feb 20 08:13:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e29371da9ecc02e28430808b617f0a18b95bd7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e2:08:a7:6c:1b:fb:60:e7:6c:6e:89:12:4a:
28:ea:a1:e5:29:13:71:ab:4b:40:2f:77:f9:fa:69:
2f:e1:e6:3c:c1:37:ec:ad:73:63:bb:0e:81:b0:63:
0c:25:0b:a7:1f:cd:85:3e:9a:7e:20:a6:5a:46:91:
78:d4:91:31:c1:96:2b:91:9e:00:96:83:95:62:9d:
3d:45:bc:4a:f4:23:82:16:6f:17:8f:14:68:0e:f0:
af:50:c1:8a:f7:ec:f6:58:27:e7:09:e7:b8:eb:c4:
a7:2a:93:fc:ca:ae:62:6d:ea:72:cb:6c:65:68:8b:
66:6f:37:73:03:a8:85:42:76:c2:ce:22:9e:af:0c:
93:0b:c2:d7:83:f6:21:e9:73:5a:39:67:d6:ea:3d:
4b:9c:53:ab:d3:ca:b7:61:32:2c:b2:17:a2:c0:1a:
60:71:e3:f1:50:a6:23:d0:12:96:ab:50:b4:05:7a:
a3:46:f7:e7:45:98:07:c3:be:f9:79:02:24:19:d9:
99:cc:6a:ef:aa:cb:0e:f9:bf:24:b0:40:8e:ee:32:
dd:50:66:84:cf:d1:fd:31:d7:56:8a:10:ee:32:af:
b5:09:ee:00:53:f2:92:49:cd:c0:77:de:50:48:01:
f9:62:cc:ff:c0:6d:bc:60:f4:5f:a5:cd:35:2d:aa:
f8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:29:37:1D:A9:EC:C0:2E:28:43:08:08:B6:17:F0:A1:8B:95:BD:7B
X509v3 Authority Key Identifier:
keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/Lik3HanswC4oQwgIthfwoYuVvXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.0.0/18
185.118.96.0/22
Signature Algorithm: sha256WithRSAEncryption
58:bd:d4:83:be:4c:2c:7a:37:74:64:00:57:14:0f:ef:5c:83:
07:ad:54:1f:e3:89:5f:8a:0b:fe:2f:62:65:5e:fe:97:e6:fc:
e5:99:44:1b:bd:14:9f:86:1a:cc:d3:be:43:74:66:2c:a4:12:
ba:15:0c:69:9b:9e:d5:6b:b8:d2:ef:6e:76:c6:6c:23:13:f6:
d0:85:26:95:ae:eb:4c:c0:1b:2c:a6:8c:12:04:43:f8:23:b4:
60:0f:8a:e3:d3:86:0b:8f:22:db:4f:20:1a:67:7d:9e:30:0b:
f9:d6:ed:1a:ed:e4:3a:c8:cf:53:cb:bc:bc:55:e2:c4:a2:20:
c8:e6:eb:90:42:de:5d:e0:a8:e7:1e:9c:8e:a1:87:cd:fc:23:
c2:60:a5:0a:4e:30:f4:b0:0c:b2:8f:70:56:89:93:fd:fd:e9:
af:f6:c2:74:83:f6:28:9d:76:32:d2:0a:2a:de:39:20:ba:c6:
74:38:3a:99:b9:76:43:f6:b4:41:21:0b:d4:ea:79:d0:96:f3:
76:6b:bb:53:8c:3f:fc:14:d5:b9:70:24:31:bb:f7:cb:1e:96:
75:84:57:29:2d:48:c7:f1:f3:1b:69:50:b6:83:14:a9:c9:96:
db:f4:85:50:2d:5b:d5:b8:3b:f0:9c:f8:b5:d1:8f:24:90:f8:
60:3d:6e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:28 2023 by rpki-client on console.sobornost.net