Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/1P35aMuZp5WV-0Xa583-zbgV2-k.roa
File: 1P35aMuZp5WV-0Xa583-zbgV2-k.roa (raw, json)
Hash identifier: hgOo0H4YHHhQKsBhDLcStS6ffhNA1E3OSiZxcSlxLqs=
Subject key identifier: D4:FD:F9:68:CB:99:A7:95:95:FB:45:DA:E7:CD:FE:CD:B8:15:DB:E9
Certificate issuer: /CN=6749aeda8a8ace7ec596fc187a2fe10582a6704d
Certificate serial: 01856D4ABED11056017B296E5C7608456A07
Authority key identifier: 67:49:AE:DA:8A:8A:CE:7E:C5:96:FC:18:7A:2F:E1:05:82:A6:70:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mu2oqKzn7FlvwYei_hBYKmcE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/1P35aMuZp5WV-0Xa583-zbgV2-k.roa
Signing time: Sun 01 Jan 2023 12:24:53 +0000
ROA not before: Sun 01 Jan 2023 12:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6805
IP address blocks: 89.13.0.0/17 maxlen: 17
89.13.0.0/16 maxlen: 16
92.228.72.0/23 maxlen: 23
92.228.74.0/23 maxlen: 23
92.228.76.0/23 maxlen: 23
92.228.78.0/23 maxlen: 23
92.228.80.0/23 maxlen: 23
92.228.82.0/23 maxlen: 23
92.228.84.0/23 maxlen: 23
92.228.86.0/23 maxlen: 23
89.12.192.0/18 maxlen: 18
92.229.0.0/16 maxlen: 16
185.93.236.0/22 maxlen: 22
89.12.0.0/18 maxlen: 18
89.12.0.0/14 maxlen: 14
92.227.194.0/23 maxlen: 23
89.12.128.0/18 maxlen: 18
213.39.128.0/17 maxlen: 17
89.12.64.0/18 maxlen: 18
78.51.96.0/19 maxlen: 19
78.51.64.0/19 maxlen: 19
78.51.0.0/19 maxlen: 19
78.51.32.0/19 maxlen: 19
78.50.0.0/17 maxlen: 17
78.50.0.0/16 maxlen: 16
213.191.64.0/19 maxlen: 19
80.171.0.0/16 maxlen: 16
78.49.192.0/18 maxlen: 18
92.225.0.0/16 maxlen: 16
78.50.128.0/17 maxlen: 17
92.224.0.0/13 maxlen: 13
92.224.0.0/16 maxlen: 16
78.49.0.0/18 maxlen: 18
78.55.192.0/18 maxlen: 18
78.49.128.0/18 maxlen: 18
89.15.232.0/21 maxlen: 21
78.49.64.0/18 maxlen: 18
78.48.0.0/13 maxlen: 13
85.176.0.0/13 maxlen: 13
78.55.0.0/18 maxlen: 18
78.48.64.0/18 maxlen: 18
85.183.16.0/23 maxlen: 23
85.183.18.0/23 maxlen: 23
78.48.0.0/18 maxlen: 18
78.54.192.0/18 maxlen: 18
92.230.20.0/23 maxlen: 23
92.230.22.0/23 maxlen: 23
89.14.128.0/18 maxlen: 18
62.109.64.0/18 maxlen: 18
78.55.128.0/18 maxlen: 18
78.48.192.0/18 maxlen: 18
89.14.192.0/18 maxlen: 18
78.48.128.0/18 maxlen: 18
78.55.64.0/18 maxlen: 18
78.54.64.0/18 maxlen: 18
89.13.128.0/17 maxlen: 17
78.54.0.0/18 maxlen: 18
89.14.64.0/18 maxlen: 18
89.14.0.0/18 maxlen: 18
78.54.128.0/18 maxlen: 18
2a01:c20:7200::/47 maxlen: 47
2a01:c22:8a00::/47 maxlen: 47
2a01:c22:ce00::/47 maxlen: 47
2a01:c22:d200::/47 maxlen: 47
2a01:c22:1c00::/47 maxlen: 47
2a01:c22:7800::/47 maxlen: 47
2a01:c22:6c00::/47 maxlen: 47
2a01:c22:8e00::/47 maxlen: 47
2a01:c22:b600::/47 maxlen: 47
2a01:c22:ca00::/47 maxlen: 47
2a01:c22:ae00::/47 maxlen: 47
2a01:c22:8600::/47 maxlen: 47
2a01:c22:3600::/47 maxlen: 47
2a01:c22:b200::/47 maxlen: 47
2a01:c22:aa00::/47 maxlen: 47
2a01:c22:7400::/47 maxlen: 47
2a01:c22:be00::/47 maxlen: 47
2a01:c22:a600::/47 maxlen: 47
2a01:c22:c200::/47 maxlen: 47
2a01:c22:d600::/47 maxlen: 47
2a01:c22:7000::/47 maxlen: 47
2a01:c22:ba00::/47 maxlen: 47
2a01:c08::/47 maxlen: 47
2a01:c20:7000::/39 maxlen: 39
2a01:c22:7200::/39 maxlen: 39
2a01:c22:8c00::/39 maxlen: 39
2a01:c22:7a00::/39 maxlen: 39
2a01:c22:3400::/39 maxlen: 39
2a01:c22:1e00::/39 maxlen: 39
2a01:c22:8400::/39 maxlen: 39
2a01:c22:7600::/39 maxlen: 39
2a01:c22:8800::/39 maxlen: 39
2a01:c22:6e00::/39 maxlen: 39
2a01:c23:c600::/47 maxlen: 47
2a01:c23:6a00::/47 maxlen: 47
2a01:c23:ba00::/47 maxlen: 47
2a01:c23:6200::/47 maxlen: 47
2a01:c23:7600::/47 maxlen: 47
2a01:c23:8a00::/47 maxlen: 47
2a01:c23:9200::/47 maxlen: 47
2a01:c23:c200::/47 maxlen: 47
2a01:c23:7200::/47 maxlen: 47
2a01:c23:8e00::/47 maxlen: 47
2a01:c23:5e00::/47 maxlen: 47
2a01:c23:6e00::/47 maxlen: 47
2a01:c23:be00::/47 maxlen: 47
2a01:c23:9600::/47 maxlen: 47
2a01:c23:6600::/47 maxlen: 47
2a01:c00::/26 maxlen: 39
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:be:d1:10:56:01:7b:29:6e:5c:76:08:45:6a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6749aeda8a8ace7ec596fc187a2fe10582a6704d
Validity
Not Before: Jan 1 12:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4fdf968cb99a79595fb45dae7cdfecdb815dbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9e:d0:83:8c:1c:a1:12:bc:c0:0c:f2:9f:4b:
0f:3c:1a:00:e4:18:9b:77:5c:12:58:61:43:2f:c4:
fb:d9:e4:67:29:c1:3e:20:b8:b4:f9:93:79:f2:a2:
34:94:95:76:51:0f:a7:92:c0:e6:08:a8:75:96:66:
8c:37:96:55:4b:25:12:86:e6:3e:b4:62:d2:8a:0d:
20:80:05:13:42:ca:5c:9f:cd:f6:31:41:58:64:89:
08:e4:4c:09:3c:fb:b6:b5:ee:dc:29:e5:31:d6:17:
29:09:3c:b4:ad:ef:86:c8:d4:af:3b:df:35:69:a5:
f2:3a:04:ba:fc:f7:2a:9e:d0:50:35:71:c7:bf:85:
70:38:48:67:d2:81:9c:7e:08:ff:13:bf:4b:03:e8:
ad:00:d6:bd:e0:f6:ec:a7:3b:c6:ae:62:f2:81:93:
0f:45:d2:81:db:71:89:90:3a:e5:96:df:cd:15:e5:
e9:dd:1b:03:0f:36:90:ab:e4:62:38:cb:33:04:d3:
be:67:f9:e2:50:d4:d4:81:d8:07:1b:91:4c:41:ec:
fb:79:cc:70:76:03:68:99:60:16:53:ec:f8:f7:36:
dc:fc:15:03:48:2b:28:3b:4b:69:0c:bd:c4:03:40:
f9:76:06:a0:d3:90:1f:74:d2:b7:6e:48:9d:37:bf:
fe:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FD:F9:68:CB:99:A7:95:95:FB:45:DA:E7:CD:FE:CD:B8:15:DB:E9
X509v3 Authority Key Identifier:
keyid:67:49:AE:DA:8A:8A:CE:7E:C5:96:FC:18:7A:2F:E1:05:82:A6:70:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mu2oqKzn7FlvwYei_hBYKmcE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/1P35aMuZp5WV-0Xa583-zbgV2-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2d36ab-dee5-469d-9216-6663faba1dd0/1/Z0mu2oqKzn7FlvwYei_hBYKmcE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.109.64.0/18
78.48.0.0/13
80.171.0.0/16
85.176.0.0/13
89.12.0.0/14
92.224.0.0/13
185.93.236.0/22
213.39.128.0/17
213.191.64.0/19
IPv6:
2a01:c00::/26
Signature Algorithm: sha256WithRSAEncryption
b2:15:1a:1b:99:69:60:c5:b1:78:e1:87:3f:c8:fd:5f:e1:35:
2e:40:02:0a:c7:86:9a:b6:d0:74:e0:8d:20:d6:ab:94:ab:61:
d7:ad:79:b6:39:24:e2:71:6f:58:d8:1a:e7:fd:4d:1f:34:45:
24:d7:c9:50:d9:0d:af:c2:dd:a6:4d:9a:1a:b3:f5:2c:9d:5a:
81:f0:03:cd:68:99:5c:14:b4:dc:cc:6b:cb:41:06:6f:d9:80:
96:4f:80:d0:4b:20:c8:44:d6:89:cf:c6:0d:c8:65:07:c6:4f:
95:20:83:4e:03:ad:4a:f7:05:b8:85:9e:72:5d:d0:80:4a:09:
39:8a:50:72:87:e4:2b:97:ba:7f:67:b1:d6:06:44:18:a6:2a:
17:6a:f6:ad:41:22:a1:78:1e:8c:70:80:42:03:e2:37:5a:2e:
2f:a9:74:b7:a7:c0:80:ed:71:28:2c:f9:eb:ee:02:cd:49:81:
77:5b:55:74:67:0c:4d:db:03:4e:e8:1d:27:f1:5b:e1:50:15:
0f:a5:77:a0:6c:c4:1f:3c:3b:3a:23:a3:e7:94:93:e9:7d:d7:
37:8c:3f:02:3e:5d:a4:9b:6b:a0:f1:6e:ae:fb:d5:c5:1b:32:
85:1f:85:b9:f9:7e:34:2d:27:74:ec:17:c0:3e:59:ad:5c:ab:
4c:10:e8:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:05 2024 by rpki-client on console.sobornost.net