Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/N6UdWFVHL7NYPLXFxtpwecoxU4A.roa
File: N6UdWFVHL7NYPLXFxtpwecoxU4A.roa (raw, json)
Hash identifier: fUB2ylsGV7Qh4knHwiVHBR++cSwWianzGnUxj83vLEI=
Subject key identifier: 37:A5:1D:58:55:47:2F:B3:58:3C:B5:C5:C6:DA:70:79:CA:31:53:80
Certificate issuer: /CN=574537d54f36f142231bc817038872cb607b21e7
Certificate serial: 0185701EE09D5617DF3585F896505D4AC42E
Authority key identifier: 57:45:37:D5:4F:36:F1:42:23:1B:C8:17:03:88:72:CB:60:7B:21:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V0U31U828UIjG8gXA4hyy2B7Iec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/N6UdWFVHL7NYPLXFxtpwecoxU4A.roa
Signing time: Mon 02 Jan 2023 01:35:49 +0000
ROA not before: Mon 02 Jan 2023 01:35:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15600
IP address blocks: 213.221.192.0/18 maxlen: 24
139.178.0.0/18 maxlen: 24
185.74.108.0/22 maxlen: 22
212.60.32.0/19 maxlen: 24
109.106.44.0/22 maxlen: 22
109.106.48.0/20 maxlen: 20
37.35.120.0/21 maxlen: 21
31.193.208.0/21 maxlen: 24
5.44.112.0/20 maxlen: 20
89.236.128.0/18 maxlen: 24
65.18.128.0/18 maxlen: 18
145.40.224.0/19 maxlen: 19
80.208.128.0/18 maxlen: 24
95.174.224.0/19 maxlen: 24
62.204.96.0/19 maxlen: 24
138.248.48.0/20 maxlen: 20
2001:1a88::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e0:9d:56:17:df:35:85:f8:96:50:5d:4a:c4:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=574537d54f36f142231bc817038872cb607b21e7
Validity
Not Before: Jan 2 01:35:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37a51d5855472fb3583cb5c5c6da7079ca315380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:3f:41:a0:28:37:ee:f5:56:af:a0:1a:56:
14:bc:d3:96:8d:a4:69:fc:bb:d3:d3:8e:75:13:3a:
b6:49:3c:49:d7:bf:4c:f9:33:24:6a:83:1f:13:b4:
e5:3d:d0:32:9d:ff:f4:8c:33:1b:b1:44:33:17:64:
59:e8:d4:e1:6e:b6:41:93:42:3d:5a:92:10:4a:56:
35:eb:cb:74:c3:70:c0:ae:a8:54:da:84:35:18:9e:
7c:39:7d:dd:23:4e:53:78:e4:e1:55:a4:eb:03:06:
cb:7f:e1:7e:40:56:5d:c1:87:d3:08:e3:90:f2:2b:
73:fb:77:a8:80:17:e2:30:31:bf:04:0e:b0:62:e0:
e4:c5:c3:e4:88:09:07:41:f7:88:a4:97:0c:f8:ab:
cd:f1:2c:be:57:8e:71:14:97:90:82:ef:bd:d4:1e:
3f:73:e1:1a:20:29:93:83:33:7b:e5:18:8b:f8:76:
09:0f:bc:c5:99:f0:3b:79:a4:0b:4d:c8:e3:98:91:
b2:76:75:94:fc:56:56:78:12:09:c5:2b:e6:b4:ba:
6f:a6:c5:e4:64:75:d3:fb:99:53:25:f4:44:48:98:
49:02:55:ec:f9:99:bd:86:cb:7c:8a:2f:2b:d5:88:
ac:84:6f:e9:02:48:0f:f9:61:ef:b0:56:f4:ff:1c:
06:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A5:1D:58:55:47:2F:B3:58:3C:B5:C5:C6:DA:70:79:CA:31:53:80
X509v3 Authority Key Identifier:
keyid:57:45:37:D5:4F:36:F1:42:23:1B:C8:17:03:88:72:CB:60:7B:21:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V0U31U828UIjG8gXA4hyy2B7Iec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/N6UdWFVHL7NYPLXFxtpwecoxU4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/fdd25d-c034-49f3-890d-4b89d377808e/1/V0U31U828UIjG8gXA4hyy2B7Iec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.112.0/20
31.193.208.0/21
37.35.120.0/21
62.204.96.0/19
65.18.128.0/18
80.208.128.0/18
89.236.128.0/18
95.174.224.0/19
109.106.44.0-109.106.63.255
138.248.48.0/20
139.178.0.0/18
145.40.224.0/19
185.74.108.0/22
212.60.32.0/19
213.221.192.0/18
IPv6:
2001:1a88::/29
Signature Algorithm: sha256WithRSAEncryption
a1:5a:de:c1:53:12:ef:65:e3:27:fa:96:36:f9:b4:45:80:ed:
9f:a3:e5:f0:d3:4c:52:5d:b0:af:19:9f:cb:b6:48:47:ba:36:
02:c5:4c:b8:35:84:a7:87:34:60:84:f3:11:e2:e9:50:c1:49:
75:2a:5d:75:a2:d6:d3:92:1b:2d:da:9f:c4:e3:ca:fd:85:37:
a5:bc:3c:ea:45:31:b8:15:e4:2f:1b:29:19:49:5a:41:58:43:
41:83:21:cb:a2:48:42:44:13:b6:13:76:63:bb:7e:90:00:eb:
40:9c:2d:b9:44:f7:09:db:ce:f6:02:ed:e4:f3:e6:21:42:55:
56:24:3c:a0:3c:db:43:44:ea:32:8e:70:f8:6c:8d:c7:ba:70:
15:b7:22:58:fd:36:c7:bd:ad:37:c1:ef:3c:67:71:e0:9e:b3:
97:34:9f:4a:32:b8:73:d5:a8:85:84:3a:68:7f:3f:3d:2f:e7:
c6:14:2a:82:0e:a0:59:15:16:f9:aa:07:94:25:9f:14:dc:7c:
f2:cd:62:97:03:f9:dc:f5:3a:18:23:2a:e3:ab:c1:d5:eb:ec:
56:d0:0b:77:9e:2c:a6:ab:3a:a5:38:b8:98:d6:d1:2c:27:42:
b7:25:9b:90:88:6c:65:79:29:58:82:ec:02:c9:66:8e:4a:c8:
6f:b6:a5:42
-----BEGIN CERTIFICATE-----
MIIFaTCCBFGgAwIBAgISAYVwHuCdVhffNYX4llBdSsQuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3NDUzN2Q1NGYzNmYxNDIyMzFiYzgxNzAzODg3MmNiNjA3
YjIxZTcwHhcNMjMwMTAyMDEzNTQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2E1MWQ1ODU1NDcyZmIzNTgzY2I1YzVjNmRhNzA3OWNhMzE1MzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4kE/QaAoN+71Vq+gGlYUvNOWjaRp
/LvT0451Ezq2STxJ179M+TMkaoMfE7TlPdAynf/0jDMbsUQzF2RZ6NThbrZBk0I9
WpIQSlY168t0w3DArqhU2oQ1GJ58OX3dI05TeOThVaTrAwbLf+F+QFZdwYfTCOOQ
8itz+3eogBfiMDG/BA6wYuDkxcPkiAkHQfeIpJcM+KvN8Sy+V45xFJeQgu+91B4/
c+EaICmTgzN75RiL+HYJD7zFmfA7eaQLTcjjmJGydnWU/FZWeBIJxSvmtLpvpsXk
ZHXT+5lTJfRESJhJAlXs+Zm9hst8ii8r1YishG/pAkgP+WHvsFb0/xwGVQIDAQAB
o4ICdTCCAnEwHQYDVR0OBBYEFDelHVhVRy+zWDy1xcbacHnKMVOAMB8GA1UdIwQY
MBaAFFdFN9VPNvFCIxvIFwOIcstgeyHnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjBVMzFVODI4VUlqRzhnWEE0aHl5MkI3SWVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9mZGQyNWQtYzAzNC00OWYzLTg5MGQt
NGI4OWQzNzc4MDhlLzEvTjZVZFdGVkhMN05ZUExYRnh0cHdlY294VTRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9mZGQyNWQtYzAzNC00OWYzLTg5MGQtNGI4OWQzNzc4MDhl
LzEvVjBVMzFVODI4VUlqRzhnWEE0aHl5MkI3SWVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGKBggrBgEFBQcBBwEB/wR7MHkwaAQCAAEwYgMEBAUscAME
Ax/B0AMEAyUjeAMEBT7MYAMEBkESgAMEBlDQgAMEBlnsgAMEBV+u4DAMAwQCbWos
AwQGbWoAAwQEivgwAwQGi7IAAwQFkSjgAwQCuUpsAwQF1DwgAwQG1d3AMA0EAgAC
MAcDBQMgARqIMA0GCSqGSIb3DQEBCwUAA4IBAQChWt7BUxLvZeMn+pY2+bRFgO2f
o+Xw00xSXbCvGZ/LtkhHujYCxUy4NYSnhzRghPMR4ulQwUl1Kl11otbTkhst2p/E
48r9hTelvDzqRTG4FeQvGykZSVpBWENBgyHLokhCRBO2E3Zju36QAOtAnC25RPcJ
2872Au3k8+YhQlVWJDygPNtDROoyjnD4bI3HunAVtyJY/TbHva03we88Z3HgnrOX
NJ9KMrhz1aiFhDpofz89L+fGFCqCDqBZFRb5qgeUJZ8U3HzyzWKXA/nc9ToYIyrj
q8HV6+xW0At3niymqzqlOLiY1tEsJ0K3JZuQiGxleSlYguwCyWaOSshvtqVC
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:33 2023 by rpki-client on console.sobornost.net