Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/URsCYM6nSiAhMGG8PpeQmT51n2k.roa
File: URsCYM6nSiAhMGG8PpeQmT51n2k.roa (raw, json)
Hash identifier: CaaCnev2VFtekW63E26/wQM6c/16b9+Qc/OAiITwd4c=
Subject key identifier: 51:1B:02:60:CE:A7:4A:20:21:30:61:BC:3E:97:90:99:3E:75:9F:69
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 01856F42BAD0DDBBFF7079819832B4732BDE
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/URsCYM6nSiAhMGG8PpeQmT51n2k.roa
Signing time: Sun 01 Jan 2023 21:35:22 +0000
ROA not before: Sun 01 Jan 2023 21:35:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43754
IP address blocks: 46.245.64.0/18 maxlen: 32
46.245.68.0/22 maxlen: 32
46.245.72.0/22 maxlen: 32
46.245.76.0/22 maxlen: 32
46.245.80.0/22 maxlen: 32
46.245.84.0/22 maxlen: 32
185.147.160.0/24 maxlen: 32
185.147.161.0/24 maxlen: 32
185.147.162.0/24 maxlen: 32
185.147.163.0/24 maxlen: 32
46.245.88.0/22 maxlen: 32
46.245.92.0/22 maxlen: 32
46.245.96.0/22 maxlen: 32
46.245.100.0/22 maxlen: 32
46.245.104.0/22 maxlen: 32
46.245.108.0/22 maxlen: 32
46.245.112.0/22 maxlen: 32
46.245.116.0/22 maxlen: 32
77.238.104.0/21 maxlen: 32
77.238.104.0/22 maxlen: 32
77.238.110.0/24 maxlen: 24
77.238.111.0/24 maxlen: 24
77.238.108.0/24 maxlen: 24
77.238.109.0/24 maxlen: 24
77.238.120.0/22 maxlen: 32
46.245.64.0/22 maxlen: 32
46.245.120.0/22 maxlen: 32
46.245.124.0/22 maxlen: 32
89.235.96.0/22 maxlen: 32
185.120.220.0/22 maxlen: 32
185.120.248.0/22 maxlen: 32
31.25.128.0/21 maxlen: 32
176.65.240.0/22 maxlen: 32
176.65.252.0/23 maxlen: 32
176.65.254.0/23 maxlen: 32
176.65.255.0/24 maxlen: 32
128.65.176.0/20 maxlen: 32
79.127.0.0/17 maxlen: 32
185.99.212.0/22 maxlen: 32
185.109.244.0/22 maxlen: 32
185.49.84.0/22 maxlen: 32
185.109.248.0/22 maxlen: 32
178.22.120.0/21 maxlen: 32
37.156.8.0/22 maxlen: 32
37.156.8.0/21 maxlen: 32
37.156.15.0/24 maxlen: 24
37.156.13.0/24 maxlen: 24
37.156.14.0/24 maxlen: 24
37.156.12.0/24 maxlen: 24
188.0.240.0/23 maxlen: 32
185.112.32.0/21 maxlen: 32
185.112.32.0/22 maxlen: 32
185.112.36.0/22 maxlen: 32
93.115.144.0/21 maxlen: 32
46.143.0.0/17 maxlen: 32
109.122.224.0/20 maxlen: 32
37.156.144.0/22 maxlen: 32
178.216.251.0/24 maxlen: 32
178.216.248.0/24 maxlen: 32
178.216.248.0/22 maxlen: 32
178.216.249.0/24 maxlen: 32
178.216.250.0/24 maxlen: 32
185.141.212.0/24 maxlen: 32
185.141.213.0/24 maxlen: 32
185.141.214.0/24 maxlen: 32
185.141.215.0/24 maxlen: 32
5.134.192.0/21 maxlen: 32
212.33.192.0/22 maxlen: 32
212.33.196.0/22 maxlen: 32
212.33.204.0/22 maxlen: 32
212.33.200.0/22 maxlen: 32
185.141.168.0/24 maxlen: 32
185.141.169.0/24 maxlen: 32
185.141.170.0/24 maxlen: 32
185.141.171.0/24 maxlen: 32
185.98.112.0/22 maxlen: 32
89.41.40.0/22 maxlen: 32
93.118.180.0/24 maxlen: 24
93.118.180.0/22 maxlen: 32
31.7.64.0/20 maxlen: 32
31.7.64.0/21 maxlen: 32
31.7.72.0/21 maxlen: 32
2a06:5484::/30 maxlen: 128
2a05:1a00::/26 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ba:d0:dd:bb:ff:70:79:81:98:32:b4:73:2b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jan 1 21:35:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=511b0260cea74a20213061bc3e9790993e759f69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:b6:03:3e:f0:6b:ad:1f:09:53:3b:9e:09:
39:32:c5:be:35:79:38:e6:16:52:c1:7e:55:ef:90:
6f:24:ac:f8:fd:67:64:c1:0b:8f:43:98:49:20:11:
86:ba:bc:a5:3f:1d:4e:a9:29:04:ae:9d:b1:31:15:
63:8e:e8:72:14:a6:49:4e:ea:41:65:b2:55:9d:7a:
48:be:78:71:66:fc:95:85:5b:9d:fe:3a:3c:ee:79:
ee:90:58:5d:4d:85:b5:9e:7f:6d:0c:f4:fe:9c:a3:
02:ae:1d:f3:c8:ac:fd:aa:01:8e:95:5d:b7:f5:54:
85:41:32:13:d6:0d:24:18:bb:5f:a2:0c:b2:0a:cb:
22:9e:23:bb:a2:f9:2d:02:7b:19:76:c8:12:29:6a:
ef:10:cc:1c:10:2a:81:a7:89:48:4b:cf:55:0e:31:
3d:56:99:38:e4:3c:a7:a4:af:16:a7:65:a8:60:16:
b9:5d:9f:df:2d:0e:91:70:24:4b:ec:4e:a7:a6:fe:
5c:1f:a1:5c:31:dd:14:06:ae:a1:a3:0c:05:c1:ea:
4a:1b:8a:ab:f6:a9:f4:8e:52:bd:30:29:5c:5f:d5:
be:74:5c:b3:83:ac:4d:fe:cc:7d:ea:7d:9b:88:da:
18:52:13:6a:fa:92:1c:0f:03:a7:02:24:a1:d2:45:
64:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1B:02:60:CE:A7:4A:20:21:30:61:BC:3E:97:90:99:3E:75:9F:69
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/URsCYM6nSiAhMGG8PpeQmT51n2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.192.0/21
31.7.64.0/20
31.25.128.0/21
37.156.8.0/21
37.156.144.0/22
46.143.0.0/17
46.245.64.0/18
77.238.104.0/21
77.238.120.0/22
79.127.0.0/17
89.41.40.0/22
89.235.96.0/22
93.115.144.0/21
93.118.180.0/22
109.122.224.0/20
128.65.176.0/20
176.65.240.0/22
176.65.252.0/22
178.22.120.0/21
178.216.248.0/22
185.49.84.0/22
185.98.112.0/22
185.99.212.0/22
185.109.244.0-185.109.251.255
185.112.32.0/21
185.120.220.0/22
185.120.248.0/22
185.141.168.0/22
185.141.212.0/22
185.147.160.0/22
188.0.240.0/23
212.33.192.0/20
IPv6:
2a05:1a00::/26
2a06:5484::/30
Signature Algorithm: sha256WithRSAEncryption
a7:88:ab:22:34:29:70:7b:18:9b:e2:cf:7b:fb:1e:09:f0:20:
f9:74:08:25:52:96:b7:64:60:cb:87:4e:94:43:77:36:07:13:
0a:b2:1c:4d:01:6d:1a:d3:64:46:65:58:99:a4:cd:80:9f:78:
97:91:9a:b9:d9:e6:74:56:87:bb:df:da:89:d0:23:10:91:75:
61:75:59:c7:7c:97:d8:19:42:9f:0f:f5:67:36:49:30:a2:44:
43:ef:9e:59:5c:ed:90:12:ec:cb:2e:ce:2f:e7:36:76:16:13:
d4:67:7e:9d:b0:93:65:40:21:d0:3b:41:08:e0:cf:51:36:de:
d5:19:b1:25:ee:c3:b5:c7:17:78:d6:84:7b:75:30:ec:b4:60:
87:3d:0b:17:54:3a:1b:1f:f4:66:7d:ba:5f:5c:b8:a7:35:e2:
b8:1d:54:97:db:3f:1a:fe:bf:ec:52:38:0d:8a:b1:f5:85:dd:
5a:4d:ae:93:29:e3:ef:4f:ee:d8:d7:ec:93:82:19:f1:0d:5b:
45:9b:83:f5:8b:22:9b:8c:1e:5b:4e:b0:3e:cc:68:79:52:9a:
84:51:dd:b1:88:f3:13:b5:5b:78:ac:b1:c7:6f:f6:9c:9e:47:
f6:f7:f6:6a:03:e0:7f:2b:45:3d:f8:86:18:4c:53:cb:a5:49:
0c:3c:66:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net