Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/e57503-f658-43e2-93a9-2af067a130aa/1/vElBn9yjWTY2dsVhknLBohpp6rc.roa
File: vElBn9yjWTY2dsVhknLBohpp6rc.roa (raw, json)
Hash identifier: jtdS5QIY0gTTqgcRaQkKx7/u9T23lj09M+V5BBQg9U8=
Subject key identifier: BC:49:41:9F:DC:A3:59:36:36:76:C5:61:92:72:C1:A2:1A:69:EA:B7
Certificate issuer: /CN=0ab36668893a8244d553efca4688d0f1019e4e25
Certificate serial: 01856E266DD8686544D0D809AE4139BFC8EB
Authority key identifier: 0A:B3:66:68:89:3A:82:44:D5:53:EF:CA:46:88:D0:F1:01:9E:4E:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CrNmaIk6gkTVU-_KRojQ8QGeTiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/e57503-f658-43e2-93a9-2af067a130aa/1/vElBn9yjWTY2dsVhknLBohpp6rc.roa
Signing time: Sun 01 Jan 2023 16:24:50 +0000
ROA not before: Sun 01 Jan 2023 16:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24921
IP address blocks: 212.93.120.0/23 maxlen: 23
212.93.122.0/23 maxlen: 23
212.93.127.0/24 maxlen: 24
185.65.160.0/23 maxlen: 23
185.65.162.0/23 maxlen: 23
193.108.29.0/24 maxlen: 24
212.3.192.0/23 maxlen: 23
212.3.192.0/19 maxlen: 19
212.3.192.0/21 maxlen: 21
212.3.194.0/23 maxlen: 23
212.3.196.0/23 maxlen: 23
212.3.198.0/23 maxlen: 23
80.89.76.0/22 maxlen: 22
80.89.72.0/22 maxlen: 22
80.89.72.0/21 maxlen: 21
185.147.56.0/24 maxlen: 24
185.147.57.0/24 maxlen: 24
185.147.56.0/22 maxlen: 22
185.147.58.0/24 maxlen: 24
185.147.59.0/24 maxlen: 24
212.93.97.0/24 maxlen: 24
212.93.100.0/22 maxlen: 22
212.93.104.0/23 maxlen: 23
212.93.110.0/23 maxlen: 23
212.93.112.0/24 maxlen: 24
212.93.106.0/24 maxlen: 24
212.93.108.0/23 maxlen: 23
212.93.107.0/24 maxlen: 24
212.93.116.0/23 maxlen: 23
212.93.118.0/23 maxlen: 23
212.93.115.0/24 maxlen: 24
212.93.113.0/24 maxlen: 24
212.93.114.0/24 maxlen: 24
212.3.201.0/24 maxlen: 24
212.3.204.0/22 maxlen: 22
212.3.208.0/23 maxlen: 23
212.3.210.0/23 maxlen: 23
212.3.221.0/24 maxlen: 24
2a03:ec00:b008::/48 maxlen: 48
2a03:ec00:b180::/42 maxlen: 42
2a03:ec00:b140::/42 maxlen: 42
2a03:ec00:b100::/42 maxlen: 42
2a03:ec00:b100::/40 maxlen: 40
2a03:ec00:b300::/40 maxlen: 40
2a03:ec00:b900::/40 maxlen: 40
2a03:ec00:b400::/40 maxlen: 40
2a03:ec00:b000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:6d:d8:68:65:44:d0:d8:09:ae:41:39:bf:c8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ab36668893a8244d553efca4688d0f1019e4e25
Validity
Not Before: Jan 1 16:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc49419fdca359363676c5619272c1a21a69eab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9e:76:4a:b1:3b:80:8f:10:22:e9:6c:5f:a7:
60:91:20:04:4a:4e:04:75:35:b2:1f:54:4d:d4:1e:
49:54:9d:0e:6d:71:98:b0:2f:56:58:09:7c:ca:0a:
8e:94:be:1f:02:2d:76:20:e1:1d:4c:cc:cc:65:81:
11:79:4d:f9:25:68:85:5e:53:3a:8c:47:7a:7f:99:
d0:97:81:2f:8f:7d:05:0b:0a:cd:86:7b:d0:e7:a9:
d4:cd:07:63:b3:4b:ad:68:07:3d:c8:06:f6:fe:31:
ca:e8:6b:48:78:09:99:72:4b:7d:f6:ab:02:20:ef:
82:9e:32:27:f9:65:37:cc:69:e1:03:e5:e4:81:62:
ed:8f:72:53:25:6e:84:eb:cd:92:6d:9c:8a:86:ce:
64:4e:92:a6:17:7c:b5:41:82:48:11:a7:f9:36:0a:
6c:69:64:10:77:77:1c:cd:00:f4:27:86:9f:9f:6d:
b0:6f:13:67:40:8f:2b:e3:4b:7c:9a:50:4d:f1:fc:
d3:4f:58:51:95:90:b4:ed:4f:38:c2:e5:b5:3e:75:
40:4b:d4:0a:f6:95:cd:14:16:57:c6:fe:34:c8:65:
65:98:16:67:66:41:33:96:05:da:dd:8f:0f:96:d1:
99:ad:f9:05:b7:39:b1:05:37:d3:1c:f3:3c:78:97:
a4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:49:41:9F:DC:A3:59:36:36:76:C5:61:92:72:C1:A2:1A:69:EA:B7
X509v3 Authority Key Identifier:
keyid:0A:B3:66:68:89:3A:82:44:D5:53:EF:CA:46:88:D0:F1:01:9E:4E:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CrNmaIk6gkTVU-_KRojQ8QGeTiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/e57503-f658-43e2-93a9-2af067a130aa/1/vElBn9yjWTY2dsVhknLBohpp6rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/e57503-f658-43e2-93a9-2af067a130aa/1/CrNmaIk6gkTVU-_KRojQ8QGeTiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.72.0/21
185.65.160.0/22
185.147.56.0/22
193.108.29.0/24
212.3.192.0/19
212.93.97.0/24
212.93.100.0-212.93.123.255
212.93.127.0/24
IPv6:
2a03:ec00:b000::/48
2a03:ec00:b008::/48
2a03:ec00:b100::/40
2a03:ec00:b300::-2a03:ec00:b4ff:ffff:ffff:ffff:ffff:ffff
2a03:ec00:b900::/40
Signature Algorithm: sha256WithRSAEncryption
6e:3a:c6:95:49:c7:d9:d5:83:f1:ae:e7:8d:28:b2:bd:ff:50:
0c:9c:cb:72:b3:ce:9a:11:df:21:82:6e:01:41:68:0c:e9:79:
2b:46:74:0d:98:6e:ed:9b:bf:14:57:08:8e:10:2a:55:0a:0e:
b8:70:77:76:c4:27:16:20:a2:33:02:47:96:3e:58:ad:fd:d9:
23:18:8a:3d:88:3a:5b:2a:cd:4d:36:56:b5:79:99:7b:51:53:
d6:de:3e:36:3d:16:50:84:c0:b8:60:0e:b8:fc:0e:2f:23:05:
80:89:57:a1:48:33:84:00:f0:77:85:70:6c:26:27:97:da:22:
12:bb:ec:70:16:1f:1d:3a:4f:da:ad:d7:bf:d4:30:78:a7:86:
16:60:97:56:b2:f8:f8:d2:93:09:85:31:d4:e0:ff:7e:55:29:
24:16:67:08:98:e2:6d:24:ee:68:1a:9e:f2:8e:32:c2:15:1b:
0f:3c:8c:27:96:4d:61:7c:eb:6a:de:22:bb:5d:00:92:db:62:
aa:5d:9f:47:6a:a5:7a:d7:ab:3c:70:e0:f7:64:b4:13:7e:dd:
11:b0:36:93:0f:4b:01:b2:68:f1:f2:d2:09:ca:e2:bb:f2:c3:
06:e4:65:99:05:84:58:b5:18:1c:fb:44:1e:00:fc:04:23:01:
67:ed:71:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:35 2024 by rpki-client on console.sobornost.net