Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/WqgFzLcavWtxjGlxRHvlE2mKAsY.roa
File: WqgFzLcavWtxjGlxRHvlE2mKAsY.roa (raw, json)
Hash identifier: 9nV4ogK8gXy9alSFzMoqwGpbK7Ty/pRIPREdKxVTDuA=
Subject key identifier: 5A:A8:05:CC:B7:1A:BD:6B:71:8C:69:71:44:7B:E5:13:69:8A:02:C6
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018A9835FFA871E80C4F443D1BF1FF3EE5E1
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/WqgFzLcavWtxjGlxRHvlE2mKAsY.roa
Signing time: Fri 15 Sep 2023 09:39:50 +0000
ROA not before: Fri 15 Sep 2023 09:39:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5518
IP address blocks: 80.233.128.0/17 maxlen: 17
80.233.136.0/24 maxlen: 24
80.233.140.0/24 maxlen: 24
80.233.146.0/24 maxlen: 24
62.63.128.0/21 maxlen: 21
62.63.136.0/22 maxlen: 22
80.233.168.0/24 maxlen: 24
62.63.144.0/20 maxlen: 20
78.154.128.0/19 maxlen: 19
80.233.232.0/24 maxlen: 24
80.233.244.0/24 maxlen: 24
62.63.159.0/24 maxlen: 24
62.63.160.0/19 maxlen: 19
194.19.224.0/24 maxlen: 24
194.19.224.0/19 maxlen: 19
80.233.200.0/21 maxlen: 21
62.63.191.0/24 maxlen: 24
62.63.190.0/24 maxlen: 24
194.19.246.0/24 maxlen: 24
185.87.204.0/24 maxlen: 24
185.87.204.0/22 maxlen: 22
78.28.223.0/24 maxlen: 24
78.28.229.0/24 maxlen: 24
78.28.228.0/24 maxlen: 24
78.28.240.0/24 maxlen: 24
213.175.117.0/24 maxlen: 24
78.28.234.0/24 maxlen: 24
78.28.244.0/24 maxlen: 24
78.28.252.0/24 maxlen: 24
78.28.250.0/24 maxlen: 24
213.175.64.0/18 maxlen: 18
78.28.197.0/24 maxlen: 24
78.28.195.0/24 maxlen: 24
78.28.192.0/18 maxlen: 18
213.175.75.0/24 maxlen: 24
78.28.211.0/24 maxlen: 24
78.28.212.0/24 maxlen: 24
2a02:16d8:104::/48 maxlen: 48
2a02:16d8:107::/48 maxlen: 48
2a02:16d8:102::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:35:ff:a8:71:e8:0c:4f:44:3d:1b:f1:ff:3e:e5:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Sep 15 09:39:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5aa805ccb71abd6b718c6971447be513698a02c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c8:8a:c6:b3:6c:1f:a9:29:12:9b:27:6b:e7:
ef:6b:25:f8:dd:70:94:f4:5e:24:c4:f6:77:46:c1:
f5:e8:62:98:b8:ba:a6:11:6a:06:44:4d:be:3a:d1:
90:e4:a8:16:65:7c:8c:9b:d3:03:64:98:1a:cb:bb:
c2:67:4b:4d:06:d9:e5:06:6d:69:1d:1b:3e:f7:4b:
28:97:09:af:04:07:a2:2a:5e:5b:44:ce:ff:f2:54:
04:d6:aa:e1:2c:57:86:dd:92:64:83:f1:ba:b1:07:
24:93:45:d6:aa:9c:5f:4a:ef:83:13:4e:0a:9b:e3:
68:7b:9c:e2:f5:1d:cd:b5:2b:9d:4b:76:38:a4:79:
2f:4a:ce:99:2f:1c:34:b6:63:95:a3:4e:d8:2e:a9:
72:dd:81:2e:a4:98:0c:e6:2c:45:cf:1f:44:f9:f7:
66:cf:d4:e6:80:a0:49:9b:8c:01:ba:9c:4a:72:c7:
20:2a:46:3e:86:fc:e0:85:8f:cc:4c:43:e8:59:7b:
69:5d:cb:b0:69:83:60:50:b4:bf:73:27:34:b7:a3:
c4:ff:14:8a:38:6d:e9:fa:50:7c:1b:e1:ae:69:52:
ab:a9:49:b8:75:e6:d9:8e:6e:d2:7d:2d:77:c3:a9:
db:14:a3:8e:83:d6:8d:07:51:26:02:e2:6e:87:02:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A8:05:CC:B7:1A:BD:6B:71:8C:69:71:44:7B:E5:13:69:8A:02:C6
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/WqgFzLcavWtxjGlxRHvlE2mKAsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.63.128.0-62.63.139.255
62.63.144.0-62.63.191.255
78.28.192.0/18
78.154.128.0/19
80.233.128.0/17
185.87.204.0/22
194.19.224.0/19
213.175.64.0/18
IPv6:
2a02:16d8:102::/48
2a02:16d8:104::/48
2a02:16d8:107::/48
Signature Algorithm: sha256WithRSAEncryption
35:a7:b4:f9:2a:7e:ca:c1:d1:4d:1b:74:5a:bc:53:d3:33:dc:
be:28:fd:ad:cc:f5:21:2b:32:ad:0a:67:2a:37:25:76:0c:66:
62:e5:da:09:e9:c0:5e:8c:75:10:12:a2:4a:1b:aa:72:1b:3a:
a0:bc:4d:15:70:05:8c:c3:07:af:c2:67:2a:46:64:91:bb:32:
7a:15:29:be:48:2d:49:79:d5:5d:77:5d:ee:d6:a5:35:8a:6c:
12:4b:2f:f2:50:57:6f:6b:19:5f:7f:d7:60:fb:07:fe:32:04:
0e:ae:07:79:77:93:ae:5c:22:20:92:b1:32:47:f2:13:ec:48:
01:66:10:22:e6:a9:41:0c:9c:29:5d:f8:13:49:80:cb:c3:46:
a3:31:15:fb:92:cc:2d:7c:7c:1d:00:04:ad:93:ba:2a:c5:fc:
62:01:0c:ea:45:a0:f1:f9:a0:69:2d:bb:c7:a0:b3:0e:b7:f7:
0f:05:0b:6e:bf:40:3b:7b:10:09:f0:d4:3e:a1:f9:76:a7:c9:
8d:10:5d:8e:7b:2c:46:a4:e3:c0:77:47:ef:35:bc:7a:ff:43:
ce:e7:da:c6:61:df:15:26:52:c4:24:e6:5c:02:a1:9d:7f:8e:
00:06:b6:1e:6a:90:83:09:aa:88:9d:a4:dc:60:76:5b:9f:af:
36:a4:7a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:07 2023 by rpki-client on console.sobornost.net