Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/m0UWutdv6DvPtuvQ_0659Magg3w.roa
File: m0UWutdv6DvPtuvQ_0659Magg3w.roa (raw, json)
Hash identifier: Kyt/DsBArn1NqC/lwU4pK8ojwXed5FXdjidIgn8Mgao=
Subject key identifier: 9B:45:16:BA:D7:6F:E8:3B:CF:B6:EB:D0:FF:4E:B9:F4:C6:A0:83:7C
Certificate issuer: /CN=bdd244214d76468d3fb72abad1892ef23dede978
Certificate serial: 018A602BE6CA93083E07E5205090D1A344EE
Authority key identifier: BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/m0UWutdv6DvPtuvQ_0659Magg3w.roa
Signing time: Mon 04 Sep 2023 12:30:04 +0000
ROA not before: Mon 04 Sep 2023 12:30:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 81.7.224.0/20 maxlen: 20
81.7.224.0/19 maxlen: 19
178.82.0.0/16 maxlen: 16
178.82.0.0/15 maxlen: 15
81.7.240.0/20 maxlen: 20
213.193.64.0/19 maxlen: 19
84.20.32.0/21 maxlen: 21
84.20.32.0/20 maxlen: 20
84.74.0.0/15 maxlen: 15
84.20.40.0/21 maxlen: 21
84.20.48.0/22 maxlen: 22
84.20.48.0/21 maxlen: 21
213.193.64.0/18 maxlen: 18
84.72.0.0/15 maxlen: 15
213.193.96.0/19 maxlen: 19
84.72.0.0/14 maxlen: 14
46.126.0.0/16 maxlen: 16
217.168.32.0/19 maxlen: 19
217.168.32.0/20 maxlen: 20
46.126.0.0/15 maxlen: 15
46.140.0.0/17 maxlen: 17
46.140.0.0/16 maxlen: 16
217.162.0.0/17 maxlen: 17
62.2.0.0/17 maxlen: 17
217.162.0.0/16 maxlen: 16
62.2.0.0/16 maxlen: 16
194.29.0.0/19 maxlen: 19
194.29.0.0/20 maxlen: 20
31.10.128.0/18 maxlen: 18
31.10.128.0/17 maxlen: 17
84.20.52.0/22 maxlen: 22
80.219.0.0/16 maxlen: 16
195.202.192.0/19 maxlen: 19
195.202.192.0/18 maxlen: 18
31.10.192.0/18 maxlen: 18
46.140.128.0/17 maxlen: 17
46.127.0.0/16 maxlen: 16
195.202.224.0/19 maxlen: 19
80.218.0.0/16 maxlen: 16
80.218.0.0/15 maxlen: 15
217.162.128.0/17 maxlen: 17
62.2.128.0/17 maxlen: 17
194.29.16.0/20 maxlen: 20
212.47.160.0/20 maxlen: 20
212.47.160.0/19 maxlen: 19
178.83.0.0/16 maxlen: 16
212.47.176.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:60:2b:e6:ca:93:08:3e:07:e5:20:50:90:d1:a3:44:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdd244214d76468d3fb72abad1892ef23dede978
Validity
Not Before: Sep 4 12:30:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b4516bad76fe83bcfb6ebd0ff4eb9f4c6a0837c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ea:f1:f9:8a:7e:b7:5b:82:48:44:c4:44:4f:
fb:33:cd:fa:63:09:63:94:b4:e8:8e:64:7a:58:f6:
2d:04:30:c3:da:3c:ab:dd:e7:7d:05:fd:f1:58:3e:
45:78:d2:12:75:d1:50:6a:b3:df:96:b2:08:f8:42:
49:ff:52:70:ee:2b:e9:60:d6:5b:0b:9c:e3:b8:3f:
27:1f:22:48:5d:af:0e:bf:98:9b:90:e7:98:8e:74:
d7:cb:25:e7:56:8f:2e:6c:12:8b:ab:3d:77:f9:67:
cb:df:2e:42:f4:d7:a3:98:1c:77:53:53:c9:91:28:
64:34:92:20:7c:6c:5e:6e:63:7c:b0:5a:e0:4f:d2:
cc:8e:10:44:77:28:20:5b:71:7a:ee:c1:74:3a:80:
83:43:57:8a:c1:43:64:88:28:52:21:3c:12:16:9e:
05:9d:8c:08:63:e6:31:a7:f9:19:a9:36:bb:80:8e:
3c:48:5b:1a:01:72:ee:1a:47:56:79:f3:e6:50:e4:
e9:28:98:8a:3a:ce:be:60:59:99:70:a7:2f:21:b5:
d7:70:f8:11:5a:0e:00:71:8c:ab:a4:3d:1b:4f:4e:
62:ce:de:a6:0f:ef:8b:e0:60:22:dd:e3:e5:a6:c0:
57:09:0b:da:92:d7:49:a1:60:9b:f1:e8:03:55:6a:
a4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:45:16:BA:D7:6F:E8:3B:CF:B6:EB:D0:FF:4E:B9:F4:C6:A0:83:7C
X509v3 Authority Key Identifier:
keyid:BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/m0UWutdv6DvPtuvQ_0659Magg3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.128.0/17
46.126.0.0/15
46.140.0.0/16
62.2.0.0/16
80.218.0.0/15
81.7.224.0/19
84.20.32.0-84.20.55.255
84.72.0.0/14
178.82.0.0/15
194.29.0.0/19
195.202.192.0/18
212.47.160.0/19
213.193.64.0/18
217.162.0.0/16
217.168.32.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:7a:4c:9f:87:36:43:ca:7a:9a:85:33:57:49:b3:3c:d5:8c:
f3:35:fc:c3:b6:c5:4a:99:d4:90:e5:eb:46:ae:dd:ff:e3:6e:
91:8a:76:51:63:e9:5f:c1:56:e8:b5:4e:13:59:82:99:29:6e:
ef:54:df:19:a8:a4:1f:55:c7:21:68:35:b2:d5:67:b4:93:c2:
8e:6a:25:5b:18:44:0a:44:7e:d7:9b:02:38:9e:63:c4:63:4c:
f8:d6:bd:5e:2c:e2:00:69:59:29:63:76:40:83:db:e6:da:b7:
0d:75:21:12:1c:22:b0:62:a3:9d:e7:bb:d4:2e:ca:32:f3:4a:
7f:e0:ea:67:59:a6:28:75:cd:97:8f:f3:f8:3a:09:2d:f5:35:
9b:5f:13:7b:f4:9a:b9:ee:45:78:74:0b:22:35:08:60:e7:db:
e0:22:8c:93:a0:65:39:f0:5d:40:22:b6:4e:d5:0b:8e:e1:b8:
05:49:a7:6a:68:7c:3c:a2:be:4c:f8:01:35:8b:c9:e3:a4:b4:
09:18:e4:b0:96:f8:04:e5:ce:90:13:9a:ea:a6:6b:bb:2c:e4:
59:29:57:7e:be:be:7e:cb:fb:9a:ea:73:a4:c1:00:42:43:4e:
ea:7b:36:28:2a:b4:53:83:b4:a6:27:de:f1:0e:18:6a:5f:80:
bd:6f:6e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net