Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/ZB6C26iebCnw29AxPbV4x7dX9hM.roa
File: ZB6C26iebCnw29AxPbV4x7dX9hM.roa (raw, json)
Hash identifier: +Ri3WatKLivmlytRwhyh5dzuqBgNwYt4ybhygWIhEIU=
Subject key identifier: 64:1E:82:DB:A8:9E:6C:29:F0:DB:D0:31:3D:B5:78:C7:B7:57:F6:13
Certificate issuer: /CN=bdd244214d76468d3fb72abad1892ef23dede978
Certificate serial: 018B137B378F797AADB76C7BC5049A8F5BC4
Authority key identifier: BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/ZB6C26iebCnw29AxPbV4x7dX9hM.roa
Signing time: Mon 09 Oct 2023 08:08:44 +0000
ROA not before: Mon 09 Oct 2023 08:08:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 84.20.32.0/21 maxlen: 21
84.20.32.0/20 maxlen: 20
84.74.0.0/15 maxlen: 15
84.20.40.0/21 maxlen: 21
84.20.48.0/22 maxlen: 22
84.20.48.0/21 maxlen: 21
217.168.32.0/19 maxlen: 19
217.168.32.0/20 maxlen: 20
217.168.48.0/20 maxlen: 20
46.140.0.0/17 maxlen: 17
46.140.0.0/16 maxlen: 16
62.2.0.0/17 maxlen: 17
62.2.0.0/16 maxlen: 16
194.29.0.0/19 maxlen: 19
194.29.0.0/20 maxlen: 20
46.140.128.0/17 maxlen: 17
46.127.0.0/16 maxlen: 16
80.218.0.0/16 maxlen: 16
80.218.0.0/15 maxlen: 15
62.2.128.0/17 maxlen: 17
194.29.16.0/20 maxlen: 20
77.56.0.0/15 maxlen: 15
178.83.0.0/16 maxlen: 16
77.56.0.0/14 maxlen: 14
81.7.224.0/20 maxlen: 20
81.7.224.0/19 maxlen: 19
178.82.0.0/16 maxlen: 16
178.82.0.0/15 maxlen: 15
81.7.240.0/20 maxlen: 20
213.193.64.0/19 maxlen: 19
213.193.64.0/18 maxlen: 18
84.72.0.0/15 maxlen: 15
213.193.96.0/19 maxlen: 19
84.72.0.0/14 maxlen: 14
46.126.0.0/16 maxlen: 16
46.126.0.0/15 maxlen: 15
217.162.0.0/17 maxlen: 17
217.162.0.0/16 maxlen: 16
31.10.128.0/18 maxlen: 18
31.10.128.0/17 maxlen: 17
84.20.52.0/22 maxlen: 22
80.219.0.0/16 maxlen: 16
195.202.192.0/19 maxlen: 19
195.202.192.0/18 maxlen: 18
31.10.192.0/18 maxlen: 18
195.202.224.0/19 maxlen: 19
77.58.0.0/15 maxlen: 15
217.162.128.0/17 maxlen: 17
212.47.160.0/20 maxlen: 20
212.47.160.0/19 maxlen: 19
212.47.176.0/20 maxlen: 20
2a02:aa00::/27 maxlen: 27
2a02:aa00::/28 maxlen: 28
2a00:e2c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:13:7b:37:8f:79:7a:ad:b7:6c:7b:c5:04:9a:8f:5b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdd244214d76468d3fb72abad1892ef23dede978
Validity
Not Before: Oct 9 08:08:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=641e82dba89e6c29f0dbd0313db578c7b757f613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5d:ea:b2:b8:5a:c5:cc:5f:c7:1f:9c:43:b7:
5c:2e:76:ae:03:0c:d3:13:1a:49:02:c1:02:76:98:
11:93:14:de:eb:22:be:87:3c:fd:ab:96:bb:1c:33:
5b:14:f0:69:07:63:bf:36:8c:3c:4d:c2:1d:14:81:
e8:1a:c0:bf:bd:65:e5:17:e5:9e:1d:60:87:0b:01:
f7:82:0f:bc:3c:47:84:1f:23:28:d9:11:b8:8e:eb:
3f:1e:ba:42:90:33:15:59:06:56:e1:51:52:45:5d:
fe:95:64:6c:38:b2:f2:6f:93:07:ce:b4:3a:fd:5a:
c2:11:1c:12:66:ea:55:86:49:f4:56:53:13:22:dc:
9c:1e:2e:e7:e5:7e:70:c7:8e:d0:d8:69:2c:87:37:
e5:58:0a:61:34:fd:30:7d:f2:ee:80:f3:7d:f1:b5:
8c:7e:13:f5:18:d2:46:bf:20:79:b2:6b:05:ee:de:
fb:ab:f8:ff:06:fd:e6:30:eb:3c:c1:fa:74:cf:b8:
5c:fc:71:44:82:a8:aa:97:2f:f0:32:66:16:00:53:
ee:89:5b:ee:0a:cf:5f:96:27:7f:1b:b0:a4:23:d7:
31:97:56:63:a1:92:24:f2:d7:ef:8a:96:92:d7:07:
8d:91:bb:ee:87:33:ce:c9:fd:9b:f7:47:2b:eb:14:
8b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:1E:82:DB:A8:9E:6C:29:F0:DB:D0:31:3D:B5:78:C7:B7:57:F6:13
X509v3 Authority Key Identifier:
keyid:BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/ZB6C26iebCnw29AxPbV4x7dX9hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.128.0/17
46.126.0.0/15
46.140.0.0/16
62.2.0.0/16
77.56.0.0/14
80.218.0.0/15
81.7.224.0/19
84.20.32.0-84.20.55.255
84.72.0.0/14
178.82.0.0/15
194.29.0.0/19
195.202.192.0/18
212.47.160.0/19
213.193.64.0/18
217.162.0.0/16
217.168.32.0/19
IPv6:
2a00:e2c0::/32
2a02:aa00::/27
Signature Algorithm: sha256WithRSAEncryption
69:96:a4:5a:52:0e:a9:67:7e:ba:a2:19:14:10:42:67:d7:06:
b8:8a:ca:f8:63:a6:66:36:fd:da:27:d8:87:bc:47:06:00:71:
e6:86:4d:a6:81:c2:73:f3:72:93:0e:5c:a6:a2:c1:b7:ed:21:
c0:24:3c:8d:1c:28:dd:65:2f:10:b1:3e:17:a2:9e:15:9d:19:
f4:b8:ac:ed:5d:0f:84:7f:dd:a7:78:2d:19:29:81:7b:a3:1a:
ee:b8:3e:97:03:2e:15:3f:60:3c:2d:c5:62:96:fa:31:6b:0d:
6a:90:38:0b:23:6e:91:39:ff:9e:80:ef:33:79:2d:e8:6e:0f:
2d:a2:05:5f:88:4f:c1:f9:e4:9a:62:79:44:03:f6:87:dd:bc:
ea:be:e7:06:27:3f:8a:77:97:f5:6d:33:20:d9:22:24:ee:a1:
88:cd:26:c0:57:d8:a4:68:b0:54:7b:8f:16:78:31:ac:98:d9:
c0:d4:04:69:db:6a:b6:bf:54:7d:f7:ef:8e:8e:06:3d:2e:25:
11:10:5f:04:bb:b9:a7:aa:b5:0e:b8:87:d6:05:62:3b:67:36:
66:46:39:c6:19:f7:f3:fa:88:af:49:bd:68:0a:8b:04:69:40:
d9:f4:9e:ec:80:06:ec:76:97:70:2b:65:ef:e9:f9:b2:ac:d0:
07:24:fc:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net