Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/2wFLRvQctcaKDAd-U1cgyf4V36o.roa
File: 2wFLRvQctcaKDAd-U1cgyf4V36o.roa (raw, json)
Hash identifier: EPuzqhDFGG3w6nLJyCx495RfeXL9Kn769RiQO4YwdpI=
Subject key identifier: DB:01:4B:46:F4:1C:B5:C6:8A:0C:07:7E:53:57:20:C9:FE:15:DF:AA
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 01890D8E4F4C2C4CAF9C3875207E4B95400A
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/2wFLRvQctcaKDAd-U1cgyf4V36o.roa
Signing time: Fri 30 Jun 2023 18:26:17 +0000
ROA not before: Fri 30 Jun 2023 18:26:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31362
IP address blocks: 89.33.45.0/24 maxlen: 24
89.36.148.0/23 maxlen: 23
84.247.29.0/24 maxlen: 24
86.105.169.0/24 maxlen: 24
86.105.170.0/24 maxlen: 24
188.241.184.0/23 maxlen: 23
31.14.100.0/23 maxlen: 23
86.107.31.0/24 maxlen: 24
89.38.138.0/23 maxlen: 23
89.40.77.0/24 maxlen: 24
89.42.14.0/24 maxlen: 24
185.99.91.0/24 maxlen: 24
84.247.55.0/24 maxlen: 24
84.247.56.0/24 maxlen: 24
94.176.128.0/24 maxlen: 24
89.36.196.0/24 maxlen: 24
89.33.238.0/23 maxlen: 23
37.156.245.0/24 maxlen: 24
89.35.117.0/24 maxlen: 24
89.40.136.0/23 maxlen: 23
89.37.41.0/24 maxlen: 24
31.14.43.0/24 maxlen: 24
31.14.53.0/24 maxlen: 24
31.14.54.0/24 maxlen: 24
217.19.9.0/24 maxlen: 24
86.106.156.0/24 maxlen: 24
188.241.104.0/24 maxlen: 24
188.241.105.0/24 maxlen: 24
89.37.159.0/24 maxlen: 24
188.211.31.0/24 maxlen: 24
188.211.27.0/24 maxlen: 24
188.211.30.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0d:8e:4f:4c:2c:4c:af:9c:38:75:20:7e:4b:95:40:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jun 30 18:26:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db014b46f41cb5c68a0c077e535720c9fe15dfaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f1:63:2c:61:4c:6b:fd:12:28:ea:06:c2:a3:
48:e9:c8:a9:53:79:09:ec:73:f2:2e:d4:34:5c:7e:
20:f7:7e:c3:d5:ff:a2:b8:f5:d9:bd:92:d3:84:2c:
07:f6:c9:06:08:61:42:d0:76:b0:9b:07:96:0a:93:
e7:39:f2:fa:b9:7b:ee:32:32:eb:30:cd:18:0e:5d:
94:22:a9:25:89:d4:36:6d:b0:e2:fb:21:87:c9:ee:
38:05:17:dd:bc:02:b9:1e:68:23:8f:b4:3f:27:7d:
7e:21:a8:45:13:e8:7e:32:29:c2:31:25:6f:b5:e5:
52:dc:80:cc:1f:cf:fa:eb:8d:3a:9c:64:5c:f9:82:
a6:59:0a:a0:58:89:94:6e:67:d6:6c:92:89:7b:1b:
70:02:cb:62:bd:a2:88:0e:23:15:b5:59:15:66:78:
95:b7:bd:5e:4e:8d:6b:aa:ef:11:78:bb:b7:b2:06:
f8:11:db:9a:ea:b9:ce:fb:eb:80:d6:92:99:d9:04:
1f:96:02:ac:ac:7e:0b:19:85:db:1b:6a:c8:04:20:
dc:b5:39:b3:f5:56:39:c5:b6:6f:b3:d8:e5:77:6d:
23:97:5c:65:ad:60:6a:e7:30:8c:1d:01:7b:17:0c:
38:b7:db:5a:c7:56:5e:e4:a3:46:c7:bd:34:12:d2:
d0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:01:4B:46:F4:1C:B5:C6:8A:0C:07:7E:53:57:20:C9:FE:15:DF:AA
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/2wFLRvQctcaKDAd-U1cgyf4V36o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.43.0/24
31.14.53.0-31.14.54.255
31.14.100.0/23
37.156.245.0/24
84.247.29.0/24
84.247.55.0-84.247.56.255
86.105.169.0-86.105.170.255
86.106.156.0/24
86.107.31.0/24
89.33.45.0/24
89.33.238.0/23
89.35.117.0/24
89.36.148.0/23
89.36.196.0/24
89.37.41.0/24
89.37.159.0/24
89.38.138.0/23
89.40.77.0/24
89.40.136.0/23
89.42.14.0/24
94.176.128.0/24
185.99.91.0/24
188.211.27.0/24
188.211.30.0/23
188.241.104.0/23
188.241.184.0/23
217.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:81:c8:d5:89:62:0c:04:99:e8:27:49:41:95:ba:d7:f3:81:
7f:ee:18:de:e9:1b:c2:2f:33:88:fa:7a:77:2a:af:68:94:ba:
ec:93:cc:51:b1:1f:ec:fb:04:f8:64:d4:b5:43:91:f6:17:94:
92:94:ed:64:cb:21:da:15:ee:2d:f9:1f:e4:b7:76:23:3b:4f:
0a:5d:b4:b1:3f:d4:39:6d:57:bf:7b:f2:59:aa:94:4e:dd:76:
41:1a:cd:46:44:31:fb:f0:6d:1f:29:97:d0:ac:e8:05:24:16:
0f:2f:70:a1:f0:09:6a:3c:40:22:23:f5:35:fc:09:c2:37:39:
8b:78:5f:59:4d:ff:2b:12:c6:fc:1b:22:fa:66:39:ea:a6:18:
de:19:92:d2:dc:6d:e0:de:6a:f7:e4:f2:cb:ba:9e:7f:a3:c6:
04:c4:84:54:0f:df:e3:c0:c1:d3:3a:cc:9a:eb:24:ad:bc:b0:
a6:70:e1:ee:9f:4a:22:2a:fc:e8:90:25:fe:06:27:5d:3f:2d:
02:1f:f7:ee:ec:ca:40:4f:48:f7:f2:8c:cf:6f:e6:2a:cc:32:
a9:68:7e:82:9a:48:da:01:09:5c:4b:5e:2a:41:93:57:4d:c3:
92:4d:9b:44:f1:9b:bf:aa:6e:a6:91:8d:29:2f:48:20:af:0a:
a5:d9:4e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net