Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/ufm3mK3LjYK1IY3mL1tPj4J449o.roa
File: ufm3mK3LjYK1IY3mL1tPj4J449o.roa (raw, json)
Hash identifier: nWAy7xt8+ZVd0urnwp2UD4zDTgnf1DnILkGqqBJFyXA=
Subject key identifier: B9:F9:B7:98:AD:CB:8D:82:B5:21:8D:E6:2F:5B:4F:8F:82:78:E3:DA
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 018682CF162EAB36A2F276AD516038B98C60
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/ufm3mK3LjYK1IY3mL1tPj4J449o.roa
Signing time: Fri 24 Feb 2023 09:44:15 +0000
ROA not before: Fri 24 Feb 2023 09:44:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12713
IP address blocks: 62.75.58.0/24 maxlen: 24
62.75.54.0/24 maxlen: 24
62.75.52.0/24 maxlen: 24
62.75.64.0/24 maxlen: 24
62.75.62.0/24 maxlen: 24
62.75.3.0/24 maxlen: 24
62.75.1.0/24 maxlen: 24
62.75.2.0/24 maxlen: 24
62.75.10.0/24 maxlen: 24
62.75.8.0/24 maxlen: 24
62.75.15.0/24 maxlen: 24
62.75.16.0/23 maxlen: 23
62.75.13.0/24 maxlen: 24
62.75.24.0/23 maxlen: 23
62.75.22.0/24 maxlen: 24
62.75.23.0/24 maxlen: 24
62.75.20.0/24 maxlen: 24
62.75.21.0/24 maxlen: 24
62.75.18.0/23 maxlen: 23
62.75.107.0/24 maxlen: 24
62.75.108.0/24 maxlen: 24
2a00:1cb8:1::/48 maxlen: 48
2a00:1cb8:2:3::/64 maxlen: 64
2a00:1cb8:2:8::/64 maxlen: 64
2a00:1cb8:2:d::/64 maxlen: 64
2a00:1cb8:2::/48 maxlen: 48
2a00:1cb8:2:7::/64 maxlen: 64
2a00:1cb8:2:2::/64 maxlen: 64
2a00:1cb8:2000::/35 maxlen: 35
2a00:1cb8:2:6::/64 maxlen: 64
2a00:1cb8:2:1::/64 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:cf:16:2e:ab:36:a2:f2:76:ad:51:60:38:b9:8c:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Feb 24 09:44:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9f9b798adcb8d82b5218de62f5b4f8f8278e3da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d5:85:99:c5:ad:fa:8c:2e:f9:6c:c0:d6:89:
45:85:a4:a4:80:03:20:a3:dc:27:66:a2:5b:de:c6:
1d:63:f0:c5:83:57:e1:df:45:bb:02:e7:ab:04:8d:
7d:b9:c0:41:d7:d5:10:e0:43:5d:03:87:8d:4d:2b:
11:1a:3c:c7:e9:32:d5:6e:2f:d0:59:23:f5:b4:2a:
95:be:05:1b:e4:31:48:87:89:92:45:5e:6d:cc:53:
71:78:99:39:2d:fc:2a:c0:1c:1a:1f:08:bc:5c:0a:
32:46:83:46:42:ce:cd:39:41:bb:7c:ca:69:d1:70:
32:5f:58:f6:51:ba:1c:c0:3d:4e:ae:bc:b1:41:a0:
51:46:52:4e:a4:c0:f7:4b:f0:41:15:92:7c:38:b9:
1d:d0:21:6d:e7:0a:6b:1e:4d:fe:06:14:b7:ab:cf:
96:d6:d4:64:d8:25:3a:ad:e4:01:64:b4:e1:18:54:
55:63:8c:44:29:8a:4f:5c:01:74:0d:51:88:c6:98:
42:79:ea:a0:8c:4c:b3:8a:d7:ea:bc:fd:77:8f:39:
89:4c:a4:98:d2:b9:48:88:cd:29:1e:c0:d1:40:ad:
5b:1f:cc:1b:3a:38:d2:6a:97:16:c3:92:6f:96:f3:
c6:6b:5a:5f:76:c6:48:6a:83:f5:77:e5:f5:10:dc:
90:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F9:B7:98:AD:CB:8D:82:B5:21:8D:E6:2F:5B:4F:8F:82:78:E3:DA
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/ufm3mK3LjYK1IY3mL1tPj4J449o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.75.1.0-62.75.3.255
62.75.8.0/24
62.75.10.0/24
62.75.13.0/24
62.75.15.0-62.75.25.255
62.75.52.0/24
62.75.54.0/24
62.75.58.0/24
62.75.62.0/24
62.75.64.0/24
62.75.107.0-62.75.108.255
IPv6:
2a00:1cb8:1::-2a00:1cb8:2:ffff:ffff:ffff:ffff:ffff
2a00:1cb8:2000::/35
Signature Algorithm: sha256WithRSAEncryption
9e:46:95:4a:f7:d2:88:10:82:8f:d6:34:cd:b7:c1:6d:2d:87:
a3:d7:bf:55:9b:2f:5d:8c:2c:4c:e7:92:86:a6:40:9a:95:c5:
6c:2c:26:4f:0c:68:c0:d6:4b:26:04:49:c1:d0:60:32:10:a0:
fd:54:55:35:09:ab:56:56:f5:7b:c0:fc:89:4c:bb:5e:09:5f:
03:69:72:db:cc:37:87:86:aa:af:5a:ba:8c:45:ce:4b:3f:e0:
63:e2:54:29:f5:91:7c:63:54:2d:68:c0:a0:79:96:69:c4:c4:
26:85:67:2c:ee:47:27:74:86:4f:ed:96:c4:38:d5:9e:e3:76:
de:80:72:a9:ca:68:8f:e2:e1:95:af:1b:7c:b6:24:19:f2:45:
75:14:bb:f7:1a:00:c7:0d:ff:bb:7b:70:da:01:69:6e:2c:a8:
63:26:af:87:ca:17:59:33:f9:65:b4:07:b3:89:2c:ff:1b:aa:
2e:c3:55:f9:eb:67:70:2a:de:f5:97:09:a7:08:e5:6c:bf:72:
9c:22:a1:b8:95:50:a8:f4:7a:c7:e7:d6:d6:1b:0f:37:ff:53:
1c:e6:81:0f:a4:cb:03:da:fc:b3:df:1d:42:49:01:c3:32:e8:
36:f9:b2:79:df:1c:b0:87:60:81:d1:5a:87:4f:e4:70:dd:cc:
b8:e8:69:1f
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAYaCzxYuqzai8natUWA4uYxgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZjljNTRmMTkxOTNlMDY1NDgxNjNmODk1YzNhNDZiOWY4
YmZiYjUwHhcNMjMwMjI0MDk0NDE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWY5Yjc5OGFkY2I4ZDgyYjUyMThkZTYyZjViNGY4ZjgyNzhlM2RhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh9WFmcWt+owu+WzA1olFhaSkgAMg
o9wnZqJb3sYdY/DFg1fh30W7AuerBI19ucBB19UQ4ENdA4eNTSsRGjzH6TLVbi/Q
WSP1tCqVvgUb5DFIh4mSRV5tzFNxeJk5LfwqwBwaHwi8XAoyRoNGQs7NOUG7fMpp
0XAyX1j2UbocwD1OrryxQaBRRlJOpMD3S/BBFZJ8OLkd0CFt5wprHk3+BhS3q8+W
1tRk2CU6reQBZLThGFRVY4xEKYpPXAF0DVGIxphCeeqgjEyzitfqvP13jzmJTKSY
0rlIiM0pHsDRQK1bH8wbOjjSapcWw5JvlvPGa1pfdsZIaoP1d+X1ENyQ7QIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFLn5t5ity42CtSGN5i9bT4+CeOPaMB8GA1UdIwQY
MBaAFDj5xU8ZGT4GVIFj+JXDpGufi/u1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMt
NzI0OTQ5YjQ2MGU5LzEvdWZtM21LM0xqWUsxSVkzbUwxdFBqNEo0NDlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9mMGI2YmEtODY3NS00OTFjLTg1OTMtNzI0OTQ5YjQ2MGU5
LzEvT1BuRlR4a1pQZ1pVZ1dQNGxjT2thNS1MLTdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGZBggrBgEFBQcBBwEB/wSBiTCBhjBgBAIAATBaMAwDBAA+
SwEDBAI+SwADBAA+SwgDBAA+SwoDBAA+Sw0wDAMEAD5LDwMEAT5LGAMEAD5LNAME
AD5LNgMEAD5LOgMEAD5LPgMEAD5LQDAMAwQAPktrAwQAPktsMCIEAgACMBwwEgMH
ACoAHLgAAQMHACoAHLgAAgMGBSoAHLggMA0GCSqGSIb3DQEBCwUAA4IBAQCeRpVK
99KIEIKP1jTNt8FtLYej179Vmy9djCxM55KGpkCalcVsLCZPDGjA1ksmBEnB0GAy
EKD9VFU1CatWVvV7wPyJTLteCV8DaXLbzDeHhqqvWrqMRc5LP+Bj4lQp9ZF8Y1Qt
aMCgeZZpxMQmhWcs7kcndIZP7ZbEONWe43begHKpymiP4uGVrxt8tiQZ8kV1FLv3
GgDHDf+7e3DaAWluLKhjJq+HyhdZM/lltAeziSz/G6ouw1X562dwKt71lwmnCOVs
v3KcIqG4lVCo9HrH59bWGw83/1Mc5oEPpMsD2vyz3x1CSQHDMug2+bJ53xywh2CB
0VqHT+Rw3cy46Gkf
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net