Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/umyY-_3cZk9twuyiqHTbYSE3LSQ.roa
File: umyY-_3cZk9twuyiqHTbYSE3LSQ.roa (raw, json)
Hash identifier: X2xUYcIhdmudgcFxGZBHITf2JFY3odCEP9NzKf+LLVA=
Subject key identifier: BA:6C:98:FB:FD:DC:66:4F:6D:C2:EC:A2:A8:74:DB:61:21:37:2D:24
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 01891B6C9D90F3159115CE4BDBF79CD786A0
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/umyY-_3cZk9twuyiqHTbYSE3LSQ.roa
Signing time: Mon 03 Jul 2023 11:04:10 +0000
ROA not before: Mon 03 Jul 2023 11:04:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58305
IP address blocks: 198.105.124.0/23 maxlen: 24
45.43.64.0/19 maxlen: 24
45.43.74.0/23 maxlen: 24
45.43.80.0/22 maxlen: 24
198.105.96.0/19 maxlen: 24
198.105.116.0/23 maxlen: 24
155.254.32.0/22 maxlen: 24
155.254.32.0/19 maxlen: 24
155.254.48.0/23 maxlen: 23
155.254.63.0/24 maxlen: 24
155.254.61.0/24 maxlen: 24
107.161.160.0/24 maxlen: 24
107.161.161.0/24 maxlen: 24
107.161.162.0/24 maxlen: 24
107.161.172.0/24 maxlen: 24
107.161.168.0/24 maxlen: 24
107.161.169.0/24 maxlen: 24
107.161.170.0/24 maxlen: 24
107.161.171.0/24 maxlen: 24
107.181.128.0/19 maxlen: 24
162.220.240.0/24 maxlen: 24
162.220.242.0/24 maxlen: 24
162.220.240.0/21 maxlen: 24
162.220.241.0/24 maxlen: 24
113.20.156.0/22 maxlen: 24
107.161.173.0/24 maxlen: 24
107.161.174.0/23 maxlen: 24
162.217.248.0/24 maxlen: 24
162.217.249.0/24 maxlen: 24
162.217.250.0/24 maxlen: 24
162.217.251.0/24 maxlen: 24
2a05:9f40::/29 maxlen: 48
2a07:9944:20::/48 maxlen: 48
2a07:9942:39d7::/48 maxlen: 48
2a07:9944:2222::/48 maxlen: 48
2a07:9940::/29 maxlen: 48
2a07:9944:10::/48 maxlen: 48
2a07:9944:30::/48 maxlen: 48
2a02:2ca7:2e::/48 maxlen: 48
2a02:2ca0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:6c:9d:90:f3:15:91:15:ce:4b:db:f7:9c:d7:86:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jul 3 11:04:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba6c98fbfddc664f6dc2eca2a874db6121372d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e6:a8:2c:ef:f1:57:64:f3:a5:f7:db:cb:f7:
53:6a:38:d8:74:db:14:00:e7:58:91:3c:aa:d3:53:
37:94:2f:69:a0:7e:29:03:c8:50:31:96:c8:83:ea:
68:8e:4f:06:8c:0b:42:26:da:24:1d:61:91:ba:cb:
f5:aa:9b:68:a5:5c:80:e7:fc:ca:cc:b3:cb:0a:7f:
81:b7:2b:a3:2a:dd:06:6b:bc:a3:45:ca:b5:72:e9:
a6:93:69:ea:66:54:66:2f:1d:07:13:c7:22:16:d8:
ad:8e:d5:cf:b0:37:80:5c:9f:bd:19:bb:c4:8d:20:
d2:3c:bc:f0:b9:db:40:86:13:bc:a7:a2:ac:03:ef:
0e:9c:7c:b0:cc:c4:23:6b:2c:50:8d:52:76:95:12:
03:2a:84:b5:ba:86:26:b2:1d:1c:a8:84:72:90:8f:
5e:af:5c:58:c5:6d:92:85:38:0e:ea:20:0c:a2:0c:
54:c9:0f:5d:88:07:4f:d4:cb:85:f5:27:a9:05:3a:
1f:c0:05:57:e6:a5:64:02:c4:81:72:43:51:e1:1d:
87:cd:5b:a2:4d:f2:8a:fe:22:91:e6:09:cf:83:0a:
92:0f:0b:61:89:f6:4d:f9:53:bf:47:6a:83:11:4e:
a6:d7:89:fa:bf:59:73:c2:05:b4:d7:98:13:78:0a:
b0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6C:98:FB:FD:DC:66:4F:6D:C2:EC:A2:A8:74:DB:61:21:37:2D:24
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/umyY-_3cZk9twuyiqHTbYSE3LSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/19
107.161.160.0-107.161.162.255
107.161.168.0/21
107.181.128.0/19
113.20.156.0/22
155.254.32.0/19
162.217.248.0/22
162.220.240.0/21
198.105.96.0/19
IPv6:
2a02:2ca0::/29
2a05:9f40::/29
2a07:9940::/29
Signature Algorithm: sha256WithRSAEncryption
b5:cd:2f:50:f1:95:36:82:cb:77:db:55:cb:ca:8c:6a:e5:c0:
38:96:73:ba:e8:63:de:7d:05:1f:c7:54:bf:ac:b6:e2:4b:28:
bd:8c:9b:75:a1:70:68:c2:a3:13:76:33:20:d9:31:63:cf:55:
b2:cc:57:4f:95:21:57:90:33:ed:7d:53:4c:d9:b5:44:d9:0b:
ae:06:31:71:4a:77:3c:5f:99:f7:91:f4:40:8e:64:8a:52:d6:
cd:7c:3c:91:fb:e7:a6:78:f7:65:16:82:61:5f:c2:8c:27:3a:
85:d4:2e:94:11:37:33:81:ab:b1:4a:18:ca:9d:bf:54:c0:0d:
19:2e:04:f4:c7:c9:30:26:f9:4c:5b:c0:f9:1b:13:87:11:75:
64:79:ca:19:19:4a:d3:01:7a:f6:e0:31:25:ff:68:9f:f5:22:
32:c2:eb:97:d8:9e:81:14:62:c5:0e:be:ba:ac:4f:b0:0c:e6:
58:a5:72:d2:19:ec:a0:b5:9c:3d:3d:76:e6:b9:44:d6:a5:3e:
28:38:2c:0e:c6:5b:43:83:76:46:61:77:25:8d:87:e6:ad:e8:
be:5c:3d:69:f5:80:ef:7b:2a:84:a7:12:22:b6:78:5e:a5:11:
26:35:ce:5b:a4:f5:fe:80:0b:b0:cc:54:7f:ef:c1:b6:be:b1:
9f:1f:fc:76
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAYkbbJ2Q8xWRFc5L2/ec14agMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NTRjMzQ3ZDY4ZDE1NDkzZGU3MWJiOTYyZjBhNTY3ZTEz
NGQ2MDMwHhcNMjMwNzAzMTEwNDEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTZjOThmYmZkZGM2NjRmNmRjMmVjYTJhODc0ZGI2MTIxMzcyZDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeaoLO/xV2Tzpffby/dTajjYdNsU
AOdYkTyq01M3lC9poH4pA8hQMZbIg+pojk8GjAtCJtokHWGRusv1qptopVyA5/zK
zLPLCn+BtyujKt0Ga7yjRcq1cummk2nqZlRmLx0HE8ciFtitjtXPsDeAXJ+9GbvE
jSDSPLzwudtAhhO8p6KsA+8OnHywzMQjayxQjVJ2lRIDKoS1uoYmsh0cqIRykI9e
r1xYxW2ShTgO6iAMogxUyQ9diAdP1MuF9SepBTofwAVX5qVkAsSBckNR4R2HzVui
TfKK/iKR5gnPgwqSDwthifZN+VO/R2qDEU6m14n6v1lzwgW015gTeAqw0wIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFLpsmPv93GZPbcLsoqh022EhNy0kMB8GA1UdIwQY
MBaAFOdUw0fWjRVJPecbuWLwpWfhNNYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2It
MzdiNjJkMjIzOTI0LzEvdW15WS1fM2Naazl0d3V5aXFIVGJZU0UzTFNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80NmRiM2EtYTU3My00ZjI4LWI0M2ItMzdiNjJkMjIzOTI0
LzEvNTFURFI5YU5GVWs5NXh1NVl2Q2xaLUUwMWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBEBAIAATA+AwQFLStAMAwD
BAVroaADBABroaIDBANroagDBAVrtYADBAJxFJwDBAWb/iADBAKi2fgDBAOi3PAD
BAXGaWAwGwQCAAIwFQMFAyoCLKADBQMqBZ9AAwUDKgeZQDANBgkqhkiG9w0BAQsF
AAOCAQEAtc0vUPGVNoLLd9tVy8qMauXAOJZzuuhj3n0FH8dUv6y24ksovYybdaFw
aMKjE3YzINkxY89VssxXT5UhV5Az7X1TTNm1RNkLrgYxcUp3PF+Z95H0QI5kilLW
zXw8kfvnpnj3ZRaCYV/CjCc6hdQulBE3M4GrsUoYyp2/VMANGS4E9MfJMCb5TFvA
+RsThxF1ZHnKGRlK0wF69uAxJf9on/UiMsLrl9iegRRixQ6+uqxPsAzmWKVy0hns
oLWcPT125rlE1qU+KDgsDsZbQ4N2RmF3JY2H5q3ovlw9afWA73sqhKcSIrZ4XqUR
JjXOW6T1/oALsMxUf+/Btr6xnx/8dg==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:02 2023 by rpki-client on console.sobornost.net