Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/bb6f38-2369-446f-88f2-0b4575b69c57/1/s6-YLX0X6O5vVk8KwRtf_jv8oAY.roa
File: s6-YLX0X6O5vVk8KwRtf_jv8oAY.roa (raw, json)
Hash identifier: X6HgLXQkEmUtepRczasWcrMz+0rwo29pO0kgo8wWAx0=
Subject key identifier: B3:AF:98:2D:7D:17:E8:EE:6F:56:4F:0A:C1:1B:5F:FE:3B:FC:A0:06
Certificate issuer: /CN=614c9585889f98e0c77f9b6cd80361aa02bdd68e
Certificate serial: 01856EA6AD4F67578FC2A22264BCCB474189
Authority key identifier: 61:4C:95:85:88:9F:98:E0:C7:7F:9B:6C:D8:03:61:AA:02:BD:D6:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUyVhYifmODHf5ts2ANhqgK91o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/bb6f38-2369-446f-88f2-0b4575b69c57/1/s6-YLX0X6O5vVk8KwRtf_jv8oAY.roa
Signing time: Sun 01 Jan 2023 18:44:55 +0000
ROA not before: Sun 01 Jan 2023 18:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51790
IP address blocks: 185.92.228.0/24 maxlen: 24
185.57.145.0/24 maxlen: 24
185.57.144.0/23 maxlen: 23
185.57.146.0/24 maxlen: 24
185.97.52.0/22 maxlen: 24
217.61.252.0/24 maxlen: 24
46.19.10.0/23 maxlen: 24
46.19.8.0/23 maxlen: 24
46.19.14.0/23 maxlen: 24
46.19.12.0/23 maxlen: 24
209.16.152.0/22 maxlen: 23
2a02:28b0::/32 maxlen: 32
2a02:28b2::/32 maxlen: 32
2a02:28b1::/32 maxlen: 32
2a02:28b7::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:ad:4f:67:57:8f:c2:a2:22:64:bc:cb:47:41:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614c9585889f98e0c77f9b6cd80361aa02bdd68e
Validity
Not Before: Jan 1 18:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3af982d7d17e8ee6f564f0ac11b5ffe3bfca006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:87:47:c3:d9:67:70:ac:5d:a2:0c:94:8e:13:
e0:7f:4c:f3:9f:cb:bb:9e:a3:3d:39:9f:ba:0c:8c:
4b:06:dd:a5:e0:87:15:1d:9f:fa:a9:a8:f7:28:fc:
ac:3f:39:19:3e:5a:68:c1:88:f2:41:38:de:d5:e7:
ae:6d:ac:e1:b7:e5:51:02:b6:35:33:c8:ba:01:31:
2d:47:28:b1:04:62:d8:00:d1:31:4d:00:c7:46:ea:
69:34:5a:a3:38:01:03:8e:eb:8a:09:fa:32:2f:4c:
13:48:b3:8e:7b:36:0f:0a:59:f2:ef:ef:48:b0:16:
09:0b:80:35:a7:78:68:25:34:d5:bf:fc:9c:41:dc:
05:14:ca:85:77:33:ed:fd:76:0a:11:53:e9:92:da:
86:6d:b3:b9:d8:ac:45:fe:62:b1:e1:5d:9f:2d:50:
fc:84:38:cb:60:bb:be:6b:95:20:7d:40:20:3a:bd:
37:4b:d1:d4:17:e5:20:cf:5b:35:ba:bd:b8:ac:e7:
b8:56:de:02:c4:4c:99:ce:0b:67:c4:4b:9d:ab:9b:
57:87:91:0f:b2:80:9e:98:32:de:69:9a:e1:96:b6:
eb:5c:a7:06:b6:5a:14:6b:80:a4:22:83:bb:c4:c6:
ff:dc:ba:c7:f2:db:ad:e3:43:0f:73:b7:cc:8c:0c:
9d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AF:98:2D:7D:17:E8:EE:6F:56:4F:0A:C1:1B:5F:FE:3B:FC:A0:06
X509v3 Authority Key Identifier:
keyid:61:4C:95:85:88:9F:98:E0:C7:7F:9B:6C:D8:03:61:AA:02:BD:D6:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUyVhYifmODHf5ts2ANhqgK91o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/bb6f38-2369-446f-88f2-0b4575b69c57/1/s6-YLX0X6O5vVk8KwRtf_jv8oAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/bb6f38-2369-446f-88f2-0b4575b69c57/1/YUyVhYifmODHf5ts2ANhqgK91o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.8.0/21
185.57.144.0-185.57.146.255
185.92.228.0/24
185.97.52.0/22
209.16.152.0/22
217.61.252.0/24
IPv6:
2a02:28b0::-2a02:28b2:ffff:ffff:ffff:ffff:ffff:ffff
2a02:28b7::/32
Signature Algorithm: sha256WithRSAEncryption
5e:fc:c4:a0:be:d1:e0:5b:c5:d3:8b:b9:78:27:2a:02:65:22:
9c:12:9b:ef:f2:c9:f2:4e:89:62:68:a8:8a:ae:75:e8:32:8b:
8e:32:22:8a:26:c1:32:dc:2a:02:bd:6b:db:75:7d:ca:4b:81:
fb:a8:31:f1:62:a7:f9:4d:39:87:65:6c:90:8c:03:94:fa:a2:
ae:31:6b:84:a6:0e:c9:20:0a:a1:16:66:a3:e6:b7:ab:7e:83:
de:10:0b:da:d2:b3:90:54:1f:45:3c:1c:bd:f5:6b:d4:3c:a5:
9e:d1:e0:30:c9:79:db:55:dc:80:c2:6c:76:c1:ea:9c:40:e4:
85:63:fc:61:e0:47:b3:c4:7b:0f:a7:45:c0:ce:0d:1a:65:6b:
aa:84:49:f3:9f:c2:88:8e:dd:b0:65:da:31:9f:c5:4e:6c:66:
51:cc:1a:f8:dc:67:57:b5:21:01:0f:77:4a:6a:4b:e9:1f:30:
2f:ad:60:f7:37:ce:9f:d1:d8:f4:4c:68:0b:c3:44:ed:aa:f5:
0a:14:34:33:bb:01:4c:1b:ad:49:55:21:c4:87:96:08:37:3b:
2a:08:df:76:e6:20:24:d5:39:1d:cc:98:31:5e:2f:e3:49:38:
29:fd:ce:8e:d6:5a:22:d3:d8:dd:12:b6:dc:fe:ee:ce:3a:3e:
8a:a7:41:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:50 2024 by rpki-client on console.sobornost.net