Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/QaSXyNrdX7WRIh1Z4fiRNaDCHpk.roa
File: QaSXyNrdX7WRIh1Z4fiRNaDCHpk.roa (raw, json)
Hash identifier: m/J4DbwpUQRQyaACL6d0ak9FmY6t8SsU71PM8jF2B+E=
Subject key identifier: 41:A4:97:C8:DA:DD:5F:B5:91:22:1D:59:E1:F8:91:35:A0:C2:1E:99
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A5F27E57D86758B5225B957291D595EB6
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/QaSXyNrdX7WRIh1Z4fiRNaDCHpk.roa
Signing time: Mon 04 Sep 2023 07:46:04 +0000
ROA not before: Mon 04 Sep 2023 07:46:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 45.83.148.0/22 maxlen: 24
2.56.172.0/22 maxlen: 24
95.214.248.0/22 maxlen: 24
2.56.176.0/22 maxlen: 24
194.33.36.0/22 maxlen: 24
2.56.116.0/22 maxlen: 24
2.56.124.0/22 maxlen: 24
2.56.120.0/22 maxlen: 24
45.83.116.0/22 maxlen: 24
45.83.128.0/22 maxlen: 24
45.83.140.0/22 maxlen: 24
185.161.70.0/23 maxlen: 24
185.161.69.0/24 maxlen: 24
185.106.96.0/22 maxlen: 24
139.28.232.0/22 maxlen: 24
45.15.124.0/22 maxlen: 24
45.86.64.0/22 maxlen: 24
45.86.60.0/22 maxlen: 24
45.15.128.0/22 maxlen: 24
45.86.68.0/22 maxlen: 24
45.15.144.0/22 maxlen: 24
45.15.140.0/22 maxlen: 24
45.86.76.0/22 maxlen: 24
45.86.72.0/22 maxlen: 24
45.92.160.0/22 maxlen: 24
45.92.164.0/22 maxlen: 24
45.92.192.0/22 maxlen: 24
45.89.96.0/22 maxlen: 24
45.89.104.0/22 maxlen: 24
45.89.100.0/22 maxlen: 24
45.89.108.0/22 maxlen: 24
45.9.12.0/22 maxlen: 24
171.22.136.0/22 maxlen: 24
45.9.16.0/22 maxlen: 24
45.12.112.0/22 maxlen: 24
45.12.108.0/22 maxlen: 24
45.12.128.0/22 maxlen: 24
45.12.132.0/22 maxlen: 24
194.76.136.0/22 maxlen: 24
45.12.136.0/22 maxlen: 24
45.12.140.0/22 maxlen: 24
45.12.144.0/22 maxlen: 24
45.83.84.0/22 maxlen: 24
45.12.148.0/22 maxlen: 24
45.15.152.0/22 maxlen: 24
45.82.252.0/22 maxlen: 24
185.153.180.0/22 maxlen: 24
45.15.164.0/22 maxlen: 24
45.15.160.0/22 maxlen: 24
45.15.168.0/22 maxlen: 24
45.89.196.0/22 maxlen: 24
171.22.112.0/22 maxlen: 24
171.22.108.0/22 maxlen: 24
45.83.24.0/22 maxlen: 24
45.83.20.0/22 maxlen: 24
171.22.116.0/22 maxlen: 24
31.12.92.0/22 maxlen: 24
171.22.124.0/22 maxlen: 24
171.22.120.0/22 maxlen: 24
171.22.132.0/22 maxlen: 24
171.22.128.0/22 maxlen: 24
45.88.160.0/22 maxlen: 24
45.88.168.0/22 maxlen: 24
45.88.176.0/22 maxlen: 24
45.88.180.0/22 maxlen: 24
185.149.20.0/22 maxlen: 24
185.203.4.0/22 maxlen: 24
141.98.164.0/22 maxlen: 24
141.98.160.0/22 maxlen: 24
92.118.228.0/22 maxlen: 24
92.118.232.0/22 maxlen: 24
92.118.236.0/22 maxlen: 24
185.156.108.0/22 maxlen: 24
185.166.152.0/22 maxlen: 24
45.92.124.0/22 maxlen: 24
185.166.160.0/22 maxlen: 24
45.92.140.0/22 maxlen: 24
92.119.40.0/22 maxlen: 24
45.128.56.0/22 maxlen: 24
45.128.52.0/22 maxlen: 24
45.128.72.0/22 maxlen: 24
45.128.48.0/22 maxlen: 24
141.98.132.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:27:e5:7d:86:75:8b:52:25:b9:57:29:1d:59:5e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 4 07:46:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41a497c8dadd5fb591221d59e1f89135a0c21e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1b:0a:cd:4a:ac:f5:e4:23:87:85:0f:43:0d:
99:ac:88:3c:c9:b8:b2:2c:80:70:2d:e9:08:16:ae:
ad:31:29:d6:8d:fe:11:05:f9:32:b4:15:4d:5b:86:
d6:a7:f5:7a:6b:3f:f9:a9:eb:7e:9c:dc:73:ca:fd:
95:43:ad:d0:d6:c9:0e:df:0a:49:5b:6f:45:88:ec:
0f:02:b2:c1:31:99:30:bc:f7:d1:8a:ec:b5:05:7a:
2b:71:69:a5:77:50:e4:ed:f0:4d:49:8d:b2:e6:86:
0f:7f:74:c0:6e:f8:16:bd:9f:38:99:10:7e:ba:f6:
3a:e8:d2:a8:44:f1:c7:b3:fe:6e:d9:78:68:79:9f:
67:49:e6:ab:a8:7e:5a:fc:14:6d:09:d3:ad:eb:c1:
60:30:de:d9:78:16:d8:20:ed:f4:44:bb:9e:6e:5a:
cb:3b:34:17:e7:80:78:65:d8:b3:c4:e2:de:6f:89:
24:97:4e:e3:e0:64:17:60:35:34:cc:ef:3b:d7:db:
10:9b:e7:8b:30:b1:b5:1b:75:81:de:a1:ef:c3:d1:
f1:dc:b8:03:ef:12:e0:99:fd:6d:c0:2d:d9:01:84:
3a:7a:c0:0b:29:92:34:bd:3c:b5:f9:55:3f:42:70:
e1:fb:76:dd:1b:88:fd:d4:8e:32:d7:eb:a6:5e:24:
f8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A4:97:C8:DA:DD:5F:B5:91:22:1D:59:E1:F8:91:35:A0:C2:1E:99
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/QaSXyNrdX7WRIh1Z4fiRNaDCHpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.116.0-2.56.127.255
2.56.172.0-2.56.179.255
31.12.92.0/22
45.9.12.0-45.9.19.255
45.12.108.0-45.12.115.255
45.12.128.0-45.12.151.255
45.15.124.0-45.15.131.255
45.15.140.0-45.15.147.255
45.15.152.0/22
45.15.160.0-45.15.171.255
45.82.252.0/22
45.83.20.0-45.83.27.255
45.83.84.0/22
45.83.116.0/22
45.83.128.0/22
45.83.140.0/22
45.83.148.0/22
45.86.60.0-45.86.79.255
45.88.160.0/22
45.88.168.0/22
45.88.176.0/21
45.89.96.0/20
45.89.196.0/22
45.92.124.0/22
45.92.140.0/22
45.92.160.0/21
45.92.192.0/22
45.128.48.0-45.128.59.255
45.128.72.0/22
92.118.228.0-92.118.239.255
92.119.40.0/22
95.214.248.0/22
139.28.232.0/22
141.98.132.0/22
141.98.160.0/21
171.22.108.0-171.22.139.255
185.106.96.0/22
185.149.20.0/22
185.153.180.0/22
185.156.108.0/22
185.161.69.0-185.161.71.255
185.166.152.0/22
185.166.160.0/22
185.203.4.0/22
194.33.36.0/22
194.76.136.0/22
Signature Algorithm: sha256WithRSAEncryption
64:0c:fc:ff:de:20:7d:fc:4a:ea:fc:65:7a:ec:29:0c:08:fb:
2a:fb:48:4f:54:5e:fe:22:b1:f0:c0:64:0a:89:93:7e:ff:43:
54:3d:7a:6e:95:16:17:e5:c5:a6:dc:ad:3d:ae:76:e4:3b:16:
7b:05:51:58:a1:62:b4:98:8e:b2:e7:8f:82:2b:62:a9:a0:3d:
58:32:b8:90:e2:9f:60:9d:70:49:0f:f3:d2:1c:e9:2f:d5:ab:
38:7b:f7:8a:a4:35:1f:45:b7:7e:3f:92:f9:42:97:c5:b5:08:
5e:82:42:01:45:bb:6f:47:f5:70:e1:18:22:ce:79:1b:a8:cf:
23:d2:b8:e5:0f:da:8d:0a:49:59:4b:1e:8e:4f:b6:68:cc:b3:
55:24:46:7c:50:1b:69:48:03:3f:27:0d:b1:9c:c2:be:d2:7b:
d7:49:61:00:14:3e:a4:fe:b1:82:e6:9c:4d:e1:a1:2b:9e:82:
63:d1:9a:c6:45:79:47:97:92:32:15:a7:7e:d1:24:61:d5:9a:
ee:18:be:18:63:6c:23:60:86:b9:e8:42:29:2f:1a:36:df:ce:
b5:51:32:66:a0:c0:44:06:e9:c7:85:61:b9:9d:5b:56:fb:f4:
80:f3:7c:c1:70:6c:a3:ac:ec:e6:0b:2c:d6:80:93:03:a4:b4:
41:cf:6e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net