Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/_vqCVYxn5SghNf-vrEDbFhEtDyc.roa
File: _vqCVYxn5SghNf-vrEDbFhEtDyc.roa (raw, json)
Hash identifier: gsO3G95grGdYJHx079E/D3Houn9jfi7Iv4wPH++IyE0=
Subject key identifier: FE:FA:82:55:8C:67:E5:28:21:35:FF:AF:AC:40:DB:16:11:2D:0F:27
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018ADDB103290F89A57B0BF9A63F42D5FC68
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/_vqCVYxn5SghNf-vrEDbFhEtDyc.roa
Signing time: Thu 28 Sep 2023 21:27:59 +0000
ROA not before: Thu 28 Sep 2023 21:27:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201106
IP address blocks: 194.124.218.0/23 maxlen: 32
178.22.30.0/24 maxlen: 32
194.124.224.0/23 maxlen: 32
45.142.156.0/24 maxlen: 32
45.142.157.0/24 maxlen: 32
45.142.158.0/23 maxlen: 32
194.147.98.0/23 maxlen: 32
194.147.100.0/23 maxlen: 32
188.93.139.0/24 maxlen: 32
45.150.226.0/23 maxlen: 32
193.218.200.0/23 maxlen: 32
45.154.212.0/22 maxlen: 32
45.150.164.0/22 maxlen: 32
193.221.94.0/23 maxlen: 32
45.151.132.0/22 maxlen: 32
45.145.74.0/23 maxlen: 32
45.145.72.0/23 maxlen: 32
2a0e:da40:4000::/34 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:dd:b1:03:29:0f:89:a5:7b:0b:f9:a6:3f:42:d5:fc:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Sep 28 21:27:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fefa82558c67e5282135ffafac40db16112d0f27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b8:1d:57:ac:74:69:8b:a8:02:2f:ae:b4:42:
2b:d3:45:2f:6e:f9:cf:f4:f5:ef:fb:25:84:8a:a5:
50:e2:4c:aa:46:8c:bf:3f:ea:01:4b:36:a5:27:e8:
62:f2:c3:76:82:03:c5:00:34:d6:2a:da:d8:c4:80:
33:35:99:56:fa:cc:24:76:fe:7d:02:db:0f:4e:8e:
b3:73:c9:ba:80:4e:62:96:11:48:b3:15:bf:25:c1:
5e:b1:e3:c9:8b:78:c0:34:f6:e5:f4:0b:d1:89:47:
77:d9:82:0d:e5:aa:4e:a9:f4:b5:5d:78:e7:52:76:
4c:c2:14:cc:6a:95:ea:9e:1c:3c:e0:ba:a5:8d:58:
fa:db:41:24:c5:b6:81:6e:50:04:cf:08:83:0e:91:
63:7e:3b:c4:ab:17:f6:f3:73:d9:cb:d9:3e:32:49:
2a:cb:bb:13:d3:a5:55:0e:00:51:47:63:ea:8c:23:
f3:3f:0a:a5:1b:0e:d7:95:6c:6c:4c:a5:50:cc:d6:
56:e1:67:c2:25:ec:17:2d:08:0c:59:29:20:fc:f6:
12:4b:8c:01:77:29:b8:a3:fa:0d:70:fd:65:5c:7b:
ea:f7:4e:6a:4c:ed:a5:ba:0f:f0:bd:3a:5d:c3:6e:
d3:88:22:88:6e:00:b9:77:de:48:bf:c5:d4:20:e4:
24:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:FA:82:55:8C:67:E5:28:21:35:FF:AF:AC:40:DB:16:11:2D:0F:27
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/_vqCVYxn5SghNf-vrEDbFhEtDyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.156.0/22
45.145.72.0/22
45.150.164.0/22
45.150.226.0/23
45.151.132.0/22
45.154.212.0/22
178.22.30.0/24
188.93.139.0/24
193.218.200.0/23
193.221.94.0/23
194.124.218.0/23
194.124.224.0/23
194.147.98.0-194.147.101.255
IPv6:
2a0e:da40:4000::/34
Signature Algorithm: sha256WithRSAEncryption
8f:9c:06:8c:b6:21:09:ab:94:78:86:b1:4a:35:d4:fd:55:0f:
40:d6:ef:b0:3c:d7:4e:7c:ad:4d:bd:28:50:05:ef:79:bf:2d:
38:95:33:d5:91:5c:ce:a1:c1:6a:64:b7:9e:e1:a6:95:0a:16:
35:b0:cb:3e:e9:f2:c7:69:cc:71:63:37:2c:e7:ac:8b:76:65:
06:df:b9:b8:c9:b8:8e:51:14:f0:f8:4c:ab:ac:cb:4a:27:97:
4b:1d:eb:78:2a:d3:16:32:b6:02:4b:3d:a9:9f:2a:6d:e7:ee:
c2:d4:fe:40:95:01:5f:9c:82:ae:d9:80:49:22:f5:11:a8:a2:
cd:10:2e:6a:99:f5:91:57:86:e8:ec:fb:8e:26:1c:a3:73:19:
a5:69:14:e3:02:11:96:69:5b:b0:e8:39:da:f9:f6:a8:4c:b8:
82:ff:4d:6d:29:58:31:e1:03:28:be:0b:b4:81:80:84:f8:76:
dd:09:7f:ad:b1:58:51:c8:20:68:3f:bf:d3:82:cc:92:53:df:
59:cf:96:15:37:28:94:6f:58:de:ae:a6:79:19:07:81:1f:67:
6f:25:e2:2f:39:83:e7:99:34:9a:60:27:44:a5:c2:1e:c4:4c:
1a:91:e4:2a:47:92:75:c6:36:df:4e:ec:2e:11:03:eb:2f:b0:
49:9b:a9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net