Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/1oVXymWqZlvPQtqrvxS7vDE59rM.roa
File: 1oVXymWqZlvPQtqrvxS7vDE59rM.roa (raw, json)
Hash identifier: 7X1zO4bpMvVgqKQlAlHjI19vjudnIl3jWQo4J2UH3lQ=
Subject key identifier: D6:85:57:CA:65:AA:66:5B:CF:42:DA:AB:BF:14:BB:BC:31:39:F6:B3
Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Certificate serial: 0186DA1DD3DDE59B19D3FD661087859C3FE3
Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/1oVXymWqZlvPQtqrvxS7vDE59rM.roa
Signing time: Mon 13 Mar 2023 08:37:13 +0000
ROA not before: Mon 13 Mar 2023 08:37:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16333
IP address blocks: 185.2.188.0/22 maxlen: 22
217.16.64.0/19 maxlen: 19
217.16.64.0/20 maxlen: 20
217.16.80.0/20 maxlen: 20
217.16.88.0/22 maxlen: 22
217.16.87.0/24 maxlen: 24
212.110.80.0/21 maxlen: 21
212.110.88.0/22 maxlen: 22
146.255.69.0/24 maxlen: 24
146.255.86.0/24 maxlen: 24
185.80.164.0/22 maxlen: 22
185.100.244.0/22 maxlen: 22
85.30.64.0/19 maxlen: 19
85.30.64.0/21 maxlen: 21
85.30.64.0/18 maxlen: 18
85.30.72.0/22 maxlen: 22
78.157.4.0/24 maxlen: 24
78.157.3.0/24 maxlen: 24
78.157.2.0/24 maxlen: 24
78.157.1.0/24 maxlen: 24
78.157.0.0/24 maxlen: 24
78.157.10.0/24 maxlen: 24
78.157.9.0/24 maxlen: 24
78.157.8.0/24 maxlen: 24
78.157.7.0/24 maxlen: 24
78.157.6.0/24 maxlen: 24
78.157.5.0/24 maxlen: 24
109.69.40.0/21 maxlen: 21
79.126.128.0/18 maxlen: 18
79.126.128.0/17 maxlen: 17
5.32.178.0/23 maxlen: 23
185.89.244.0/22 maxlen: 22
5.32.180.0/24 maxlen: 24
5.32.182.0/24 maxlen: 24
212.110.64.0/23 maxlen: 23
79.126.192.0/18 maxlen: 18
78.157.24.0/24 maxlen: 24
78.157.23.0/24 maxlen: 24
78.157.22.0/24 maxlen: 24
78.157.21.0/24 maxlen: 24
78.157.20.0/24 maxlen: 24
78.157.31.0/24 maxlen: 24
78.157.30.0/24 maxlen: 24
78.157.29.0/24 maxlen: 24
78.157.28.0/24 maxlen: 24
78.157.27.0/24 maxlen: 24
78.157.26.0/24 maxlen: 24
78.157.25.0/24 maxlen: 24
31.11.68.0/22 maxlen: 22
31.11.64.0/18 maxlen: 19
31.11.72.0/21 maxlen: 21
31.11.80.0/21 maxlen: 21
31.11.88.0/21 maxlen: 21
185.5.4.0/22 maxlen: 22
89.31.152.0/21 maxlen: 21
31.11.96.0/21 maxlen: 21
31.11.104.0/21 maxlen: 21
31.11.112.0/21 maxlen: 21
217.196.192.0/20 maxlen: 20
31.11.120.0/21 maxlen: 21
212.158.176.0/20 maxlen: 24
85.30.80.0/22 maxlen: 22
85.30.92.0/22 maxlen: 22
85.30.96.0/19 maxlen: 19
85.30.96.0/22 maxlen: 22
85.30.101.0/24 maxlen: 24
85.30.104.0/22 maxlen: 22
85.30.112.0/24 maxlen: 24
85.30.110.0/24 maxlen: 24
85.30.120.0/21 maxlen: 21
85.30.119.0/24 maxlen: 24
95.128.186.0/24 maxlen: 24
2a01:5b8::/29 maxlen: 29
2a01:5b8::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:1d:d3:dd:e5:9b:19:d3:fd:66:10:87:85:9c:3f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Validity
Not Before: Mar 13 08:37:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d68557ca65aa665bcf42daabbf14bbbc3139f6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:a8:8f:fb:90:32:97:d5:25:62:aa:52:ac:
40:ab:2f:18:83:16:94:af:59:56:40:bb:eb:35:07:
f5:8d:0d:c6:72:77:db:b3:c4:e7:68:da:1e:92:51:
a5:57:7b:85:3f:52:63:c5:bf:8c:5d:55:35:f7:5d:
8d:b8:24:32:6f:72:7c:45:ea:bc:0e:31:ca:26:35:
84:46:f4:d2:63:a2:ae:bd:33:68:91:89:05:48:c6:
4c:2a:10:eb:55:ac:41:86:e9:96:9c:dd:b3:a2:88:
91:7f:5d:1b:a3:52:76:0a:39:8d:ad:11:47:69:ae:
2b:11:34:62:11:93:a9:60:ff:72:69:a5:ef:ac:9f:
7a:51:49:f7:37:bb:f0:2c:49:53:53:00:33:5a:28:
cf:cd:a1:db:2d:11:5f:25:e3:85:e8:31:d7:57:10:
41:89:fa:8b:56:d7:58:80:ae:e5:67:b9:27:6f:3d:
12:7d:17:8c:84:f7:ce:57:33:9e:76:cd:b4:7e:0c:
13:39:0a:82:b5:c0:a8:b5:8b:70:66:bb:34:0b:dc:
a1:b5:9f:c5:b4:4a:41:52:a6:a1:7f:04:ca:28:a3:
74:26:d7:f7:a3:3f:12:99:7d:03:45:29:13:22:b6:
02:68:6a:70:06:99:fd:11:10:77:e2:ad:bb:e2:92:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:85:57:CA:65:AA:66:5B:CF:42:DA:AB:BF:14:BB:BC:31:39:F6:B3
X509v3 Authority Key Identifier:
keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/1oVXymWqZlvPQtqrvxS7vDE59rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.32.178.0-5.32.180.255
5.32.182.0/24
31.11.64.0/18
78.157.0.0-78.157.10.255
78.157.20.0-78.157.31.255
79.126.128.0/17
85.30.64.0/18
89.31.152.0/21
95.128.186.0/24
109.69.40.0/21
146.255.69.0/24
146.255.86.0/24
185.2.188.0/22
185.5.4.0/22
185.80.164.0/22
185.89.244.0/22
185.100.244.0/22
212.110.64.0/23
212.110.80.0-212.110.91.255
212.158.176.0/20
217.16.64.0/19
217.196.192.0/20
IPv6:
2a01:5b8::/29
Signature Algorithm: sha256WithRSAEncryption
96:0f:f4:24:73:10:0c:65:f2:f4:44:bb:92:eb:b6:45:ae:93:
8d:26:64:11:e6:d0:26:c1:28:d4:3a:33:80:9f:a0:9b:92:d8:
32:e3:25:ab:53:0e:ed:1f:eb:1c:49:0b:cf:48:7d:9d:07:7d:
51:66:f7:a8:30:8c:20:d8:a6:3c:1a:0a:66:ef:82:ce:ca:9a:
3a:78:fb:2a:aa:81:90:aa:bf:27:3b:a4:41:fe:56:e5:e3:57:
de:2e:87:ac:4d:b2:ff:b0:1e:21:50:1f:89:cc:7a:63:c8:e5:
2b:47:85:fa:60:6d:84:06:a6:40:0d:c8:1e:ef:1a:9e:6d:f5:
d4:d1:0c:99:4b:95:80:31:40:45:a9:64:82:9d:57:d4:fd:fc:
bb:cf:a0:97:b8:0a:42:86:5a:2c:b5:04:a6:07:d4:c3:98:4a:
ec:60:8c:fa:f1:b1:4b:42:6b:f6:bb:5a:77:06:06:69:36:49:
96:16:3e:0d:d3:59:58:c8:e9:16:4c:df:e7:92:6c:2c:ab:49:
bf:3e:02:86:be:74:27:9b:13:4f:f1:c5:a0:c9:03:3e:bf:2c:
92:13:2c:ea:19:92:ce:9c:9f:5e:b2:1f:28:c7:61:dc:55:c1:
0c:b7:c1:5c:57:7d:45:22:b8:25:c0:6f:1f:4d:f3:ec:2c:ef:
54:87:86:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:51 2024 by rpki-client on console.sobornost.net