Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/lt2uYXZxVVWrwu5u5_tLDn9lGMI.roa
File: lt2uYXZxVVWrwu5u5_tLDn9lGMI.roa (raw, json)
Hash identifier: sxSMR70nJk4T0uy9P4Vk9ccLdBoNTD/yz+tOb74iN/4=
Subject key identifier: 96:DD:AE:61:76:71:55:55:AB:C2:EE:6E:E7:FB:4B:0E:7F:65:18:C2
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 01856E41CE84C65CE41EC30B346424C0D6A6
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/lt2uYXZxVVWrwu5u5_tLDn9lGMI.roa
Signing time: Sun 01 Jan 2023 16:54:44 +0000
ROA not before: Sun 01 Jan 2023 16:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31362
IP address blocks: 89.33.45.0/24 maxlen: 24
89.36.148.0/23 maxlen: 23
84.247.29.0/24 maxlen: 24
86.105.169.0/24 maxlen: 24
86.105.170.0/24 maxlen: 24
188.241.184.0/23 maxlen: 23
31.14.100.0/23 maxlen: 23
86.107.31.0/24 maxlen: 24
89.38.138.0/23 maxlen: 23
89.40.77.0/24 maxlen: 24
185.99.91.0/24 maxlen: 24
84.247.55.0/24 maxlen: 24
84.247.56.0/24 maxlen: 24
94.176.128.0/24 maxlen: 24
89.36.196.0/24 maxlen: 24
89.33.238.0/23 maxlen: 23
37.156.245.0/24 maxlen: 24
89.35.117.0/24 maxlen: 24
89.40.136.0/23 maxlen: 23
89.37.41.0/24 maxlen: 24
31.14.43.0/24 maxlen: 24
31.14.53.0/24 maxlen: 24
31.14.54.0/24 maxlen: 24
217.19.9.0/24 maxlen: 24
86.106.156.0/24 maxlen: 24
188.241.104.0/24 maxlen: 24
188.241.105.0/24 maxlen: 24
89.37.159.0/24 maxlen: 24
188.211.31.0/24 maxlen: 24
188.211.27.0/24 maxlen: 24
188.211.30.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:ce:84:c6:5c:e4:1e:c3:0b:34:64:24:c0:d6:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96ddae6176715555abc2ee6ee7fb4b0e7f6518c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1d:93:01:38:a2:2e:79:85:e8:ee:fd:f4:bf:
49:13:b3:ac:3e:c4:f1:9f:3b:a3:67:dc:32:5e:c9:
9a:07:27:7b:0e:2b:4f:e9:cb:41:34:ef:04:a2:d7:
9b:6d:08:fb:7c:61:8f:d8:9d:cc:ee:55:ef:60:1a:
e4:3f:51:ac:44:af:9a:df:91:1c:82:3c:33:bd:5b:
13:e7:ac:bb:93:4e:6b:79:f5:88:0c:a8:f9:52:7b:
c3:8d:89:d0:b0:de:04:ed:ff:f3:52:1d:3c:32:b3:
c9:97:0a:ff:88:59:c9:6f:bd:5f:c4:fa:f2:90:4e:
24:e6:b9:3b:26:74:73:6f:17:f3:7b:28:70:d3:e2:
1f:49:12:ca:d6:32:b2:35:6c:10:7a:63:fc:3f:d5:
4b:86:67:0a:2d:17:6c:63:84:34:3c:72:0a:9c:37:
9b:33:a7:3a:09:ee:a2:86:c3:74:1c:ba:31:87:a8:
33:4f:49:2b:36:a0:7e:c0:fd:2b:b2:70:b2:44:ec:
89:25:ba:7a:1f:0a:50:10:9d:58:d1:40:db:5d:9b:
80:d0:01:e3:94:d9:4a:9f:bc:01:05:2a:3a:8e:1a:
54:1f:4b:6c:f3:6e:7b:11:b6:62:59:79:7e:16:41:
91:45:7e:d8:65:ad:0a:86:00:04:a6:3e:e6:ac:1a:
85:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DD:AE:61:76:71:55:55:AB:C2:EE:6E:E7:FB:4B:0E:7F:65:18:C2
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/lt2uYXZxVVWrwu5u5_tLDn9lGMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.43.0/24
31.14.53.0-31.14.54.255
31.14.100.0/23
37.156.245.0/24
84.247.29.0/24
84.247.55.0-84.247.56.255
86.105.169.0-86.105.170.255
86.106.156.0/24
86.107.31.0/24
89.33.45.0/24
89.33.238.0/23
89.35.117.0/24
89.36.148.0/23
89.36.196.0/24
89.37.41.0/24
89.37.159.0/24
89.38.138.0/23
89.40.77.0/24
89.40.136.0/23
94.176.128.0/24
185.99.91.0/24
188.211.27.0/24
188.211.30.0/23
188.241.104.0/23
188.241.184.0/23
217.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ed:c7:e6:81:a6:a5:f7:af:2c:2e:bb:03:59:ca:cc:48:a9:
aa:18:c2:7e:4a:32:ed:02:4d:ad:a4:c8:5e:69:b3:34:b4:5b:
50:48:6b:ac:44:55:d7:91:e3:30:67:3c:8b:bb:f5:ee:fc:eb:
ff:c1:40:ac:28:2c:f8:f4:bb:bb:b1:19:8e:58:a9:c2:53:21:
6f:5c:e0:b6:be:68:9c:3f:cc:89:8a:f7:97:37:0f:3d:7e:f4:
90:fa:38:88:c8:9b:e1:9a:fc:7a:8b:dc:26:12:af:86:72:23:
dc:d0:a7:6e:02:3b:1f:a4:6c:b4:84:8a:9c:47:48:42:02:f2:
a1:79:9e:7b:cf:af:1b:49:13:fb:b3:e6:88:33:9b:7f:72:1b:
90:98:08:62:51:c2:dd:c7:5c:bc:f8:79:35:09:e7:30:37:85:
0b:21:19:9e:d5:ac:29:6a:ac:d6:97:42:be:a8:b5:81:c3:af:
95:3e:17:05:b1:b9:c7:96:9a:c0:ea:46:b5:a1:9d:36:b2:02:
c6:30:2b:a0:ed:a0:c8:88:60:f5:e2:5e:d2:b6:42:5c:16:3b:
ce:4a:d5:11:1b:9c:b7:bc:2d:ec:1f:fa:89:a3:cf:74:ad:5a:
4a:8a:55:e2:ae:14:5b:7f:91:69:af:58:06:63:d7:cf:2e:1d:
e2:3e:bb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net