Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/M-B_7H6gGaWMLZ90da7wMvMawmM.roa
File: M-B_7H6gGaWMLZ90da7wMvMawmM.roa (raw, json)
Hash identifier: PzOaNg8dbSDm20yk6ScP2/FXxq6wO0ao78lNY0idAmQ=
Subject key identifier: 33:E0:7F:EC:7E:A0:19:A5:8C:2D:9F:74:75:AE:F0:32:F3:1A:C2:63
Certificate issuer: /CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Certificate serial: 018BCD41673D15191390D2FDB0E2A7D38029
Authority key identifier: 4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/M-B_7H6gGaWMLZ90da7wMvMawmM.roa
Signing time: Tue 14 Nov 2023 09:54:57 +0000
ROA not before: Tue 14 Nov 2023 09:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57752
IP address blocks: 185.54.36.0/22 maxlen: 22
185.167.220.0/22 maxlen: 22
45.89.152.0/22 maxlen: 22
185.17.56.0/24 maxlen: 24
185.17.56.0/22 maxlen: 22
185.17.57.0/24 maxlen: 24
45.130.236.0/22 maxlen: 22
45.130.236.0/24 maxlen: 24
45.130.238.0/24 maxlen: 24
45.130.237.0/24 maxlen: 24
45.130.239.0/24 maxlen: 24
45.10.45.0/24 maxlen: 24
45.10.46.0/23 maxlen: 23
185.234.48.0/22 maxlen: 22
83.136.148.0/23 maxlen: 23
83.136.150.0/23 maxlen: 23
176.118.172.0/22 maxlen: 22
45.91.144.0/22 maxlen: 22
109.205.64.0/21 maxlen: 21
2a03:dc00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:41:67:3d:15:19:13:90:d2:fd:b0:e2:a7:d3:80:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Validity
Not Before: Nov 14 09:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33e07fec7ea019a58c2d9f7475aef032f31ac263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:62:da:d0:63:d9:23:3d:73:55:5b:02:0e:8c:
a5:80:9c:da:3e:1f:5a:6e:8f:a5:5b:75:97:30:33:
45:a5:43:aa:8c:bd:db:fd:e5:1f:1c:87:4f:4b:9b:
02:16:7c:a5:7e:46:a0:f6:8e:b8:41:38:c9:aa:a5:
2a:88:b2:58:a6:cf:4f:de:d5:ac:36:96:b3:0b:9a:
9f:13:87:5a:8a:a7:58:9a:14:bb:bb:05:28:ca:8a:
88:38:29:22:7a:43:7c:9b:ca:bd:51:1d:1b:a7:1a:
c7:9e:73:95:ae:c9:bd:ab:c7:df:db:38:45:62:4c:
30:48:3c:ea:34:4c:43:a6:d6:15:b2:63:74:cc:46:
85:8e:78:e0:fa:ce:7c:eb:16:1d:d9:c8:60:f1:b7:
71:7d:6b:27:4b:5a:bc:9c:05:bb:05:d2:47:c8:77:
07:86:4a:b9:5b:b6:d2:89:15:8b:e9:55:ea:ca:3f:
21:21:3c:92:ee:dd:16:01:d6:d7:8b:89:48:52:f4:
1d:a4:32:59:87:f7:89:f1:64:5e:1a:76:30:4d:ef:
3e:4c:58:3a:b0:39:25:5f:67:3e:1a:f2:8b:b3:58:
31:11:45:79:cb:65:d1:36:fa:4e:e1:48:6c:86:bd:
4a:7f:17:61:2c:fa:e6:0b:49:ee:bb:78:50:ce:74:
dc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E0:7F:EC:7E:A0:19:A5:8C:2D:9F:74:75:AE:F0:32:F3:1A:C2:63
X509v3 Authority Key Identifier:
keyid:4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/M-B_7H6gGaWMLZ90da7wMvMawmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/T5nk6uSKAceB-q0R9tgakeozvf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.45.0-45.10.47.255
45.89.152.0/22
45.91.144.0/22
45.130.236.0/22
83.136.148.0/22
109.205.64.0/21
176.118.172.0/22
185.17.56.0/22
185.54.36.0/22
185.167.220.0/22
185.234.48.0/22
IPv6:
2a03:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
9d:98:c1:13:9a:b1:f3:fc:5c:4e:1b:c7:94:f2:59:58:27:71:
4b:9a:58:6a:c6:26:3a:79:24:c1:81:5c:d9:9e:61:7b:48:48:
a3:8c:5c:d1:d7:72:e2:52:50:78:93:a1:80:02:a8:ed:fe:11:
ba:4d:5a:a8:2d:15:ee:44:83:44:45:53:2c:db:3d:1c:8c:59:
b1:1a:81:0a:26:4d:4c:57:86:d8:45:51:ce:0e:66:17:9a:7b:
9f:9f:32:35:8e:1d:4c:5e:f5:4b:a1:bd:0e:9c:eb:82:5a:88:
17:c3:ca:8c:26:f0:0b:e8:fb:82:c5:24:b6:46:04:4f:19:3b:
46:b2:b0:cb:a8:8a:d8:b5:e9:d9:0c:5c:b4:60:5e:1d:e5:ec:
df:10:48:11:11:c8:6d:40:92:24:1a:8d:5e:90:bb:f6:8b:b1:
2b:ea:02:82:a0:a6:15:29:99:7e:88:9b:e1:0c:d1:98:b3:ad:
d4:5b:6b:bd:4e:d8:6a:3e:2d:84:4f:e6:16:30:1c:95:18:49:
04:7b:87:b8:05:e5:87:cb:35:01:8c:c6:01:68:3f:a7:64:bf:
3b:2f:83:ab:d0:fe:c5:aa:a8:8b:98:9f:31:69:8b:96:fd:2e:
2b:fa:b4:a1:4a:ff:e7:3a:bd:36:ac:a8:ca:c4:ee:95:ce:f8:
a3:c2:56:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:34 2024 by rpki-client on console.sobornost.net