Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/3LdyqZoES3k9xIZcigJvwumgDSs.roa
File: 3LdyqZoES3k9xIZcigJvwumgDSs.roa (raw, json)
Hash identifier: EPD7ltpUY0uRfUS+9AuTHg5vvV9cjp+Yu76b8r7OOHw=
Subject key identifier: DC:B7:72:A9:9A:04:4B:79:3D:C4:86:5C:8A:02:6F:C2:E9:A0:0D:2B
Certificate issuer: /CN=eebe79d147882422ec275417dfd2affa93a02757
Certificate serial: 018CD56C84F8894D860490598EF90469321F
Authority key identifier: EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/3LdyqZoES3k9xIZcigJvwumgDSs.roa
Signing time: Thu 04 Jan 2024 17:01:48 +0000
ROA not before: Thu 04 Jan 2024 17:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34876
IP address blocks: 95.86.188.0/24 maxlen: 24
95.86.189.0/24 maxlen: 24
95.86.190.0/24 maxlen: 24
95.86.191.0/24 maxlen: 24
95.86.138.0/24 maxlen: 24
95.86.139.0/24 maxlen: 24
95.86.133.0/24 maxlen: 24
95.86.134.0/24 maxlen: 24
95.86.137.0/24 maxlen: 24
95.86.135.0/24 maxlen: 24
95.86.140.0/24 maxlen: 24
95.86.141.0/24 maxlen: 24
95.86.143.0/24 maxlen: 24
95.86.144.0/21 maxlen: 21
95.86.142.0/24 maxlen: 24
95.86.152.0/24 maxlen: 24
95.86.154.0/24 maxlen: 24
95.86.153.0/24 maxlen: 24
95.86.157.0/24 maxlen: 24
95.86.158.0/24 maxlen: 24
95.86.155.0/24 maxlen: 24
95.86.156.0/24 maxlen: 24
95.86.159.0/24 maxlen: 24
95.86.166.0/24 maxlen: 24
95.86.161.0/24 maxlen: 24
95.86.160.0/24 maxlen: 24
95.86.164.0/24 maxlen: 24
95.86.165.0/24 maxlen: 24
95.86.162.0/24 maxlen: 24
95.86.163.0/24 maxlen: 24
95.86.168.0/22 maxlen: 22
95.86.167.0/24 maxlen: 24
95.86.172.0/24 maxlen: 24
95.86.175.0/24 maxlen: 24
95.86.173.0/24 maxlen: 24
95.86.174.0/24 maxlen: 24
95.86.178.0/24 maxlen: 24
95.86.179.0/24 maxlen: 24
95.86.176.0/24 maxlen: 24
95.86.177.0/24 maxlen: 24
95.86.182.0/24 maxlen: 24
95.86.180.0/24 maxlen: 24
95.86.181.0/24 maxlen: 24
95.86.183.0/24 maxlen: 24
95.86.184.0/22 maxlen: 22
95.86.129.0/24 maxlen: 24
95.86.130.0/24 maxlen: 24
95.86.128.0/24 maxlen: 24
95.86.131.0/24 maxlen: 24
95.86.132.0/24 maxlen: 24
193.8.62.0/23 maxlen: 23
193.8.62.0/24 maxlen: 24
193.8.63.0/24 maxlen: 24
193.8.73.0/24 maxlen: 24
193.8.72.0/23 maxlen: 23
193.8.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d5:6c:84:f8:89:4d:86:04:90:59:8e:f9:04:69:32:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebe79d147882422ec275417dfd2affa93a02757
Validity
Not Before: Jan 4 17:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dcb772a99a044b793dc4865c8a026fc2e9a00d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:75:61:49:6a:e4:d1:2d:22:60:34:1f:ae:ce:
2f:a3:bd:e0:7a:34:74:58:50:70:41:41:c6:71:fe:
8b:1a:64:44:a4:53:4f:04:89:30:86:0b:34:00:dc:
5c:59:19:5c:c2:a5:49:fc:8b:04:29:c5:c8:9a:d2:
c5:7a:0a:6b:45:f6:45:e9:e0:13:57:a1:8d:93:79:
dd:4c:dc:3d:c1:d5:4d:a8:e7:94:88:fe:65:c9:69:
5c:2c:1d:bb:cc:e3:fa:e1:95:70:01:12:49:13:7c:
41:3a:b6:93:8d:75:13:b4:4a:a2:2d:5d:bc:71:ce:
42:c3:fb:f9:d1:32:18:a2:41:a9:71:29:e7:1b:6e:
ae:c4:3a:90:ea:a6:7e:9c:b7:e1:7d:97:f1:d4:6f:
59:43:ec:7a:f6:e7:13:13:93:4f:88:b2:1e:57:f0:
dd:f1:9b:95:c9:38:c1:d2:d1:e5:7f:bf:3f:1c:30:
a8:45:5f:08:42:e1:45:21:b0:e7:4f:44:d1:4d:e4:
e2:b7:d8:ee:79:ee:76:df:94:07:ee:10:26:59:07:
cc:5b:af:fe:21:58:d4:77:a6:36:a7:48:11:19:8a:
76:fd:ef:37:fc:8f:0c:e9:8b:13:ea:ab:e9:63:6f:
64:94:d3:56:77:ab:dd:52:8c:ce:08:8d:a9:a0:1d:
97:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B7:72:A9:9A:04:4B:79:3D:C4:86:5C:8A:02:6F:C2:E9:A0:0D:2B
X509v3 Authority Key Identifier:
keyid:EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/3LdyqZoES3k9xIZcigJvwumgDSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.86.128.0/21
95.86.137.0-95.86.191.255
193.8.62.0/23
193.8.72.0/23
Signature Algorithm: sha256WithRSAEncryption
30:68:66:02:9a:d4:03:48:7c:3e:3f:4c:40:04:d2:ca:96:b8:
a9:4d:bb:aa:e3:dc:3f:3c:ea:dc:de:1d:53:51:f1:64:a6:67:
0b:0c:36:0f:76:71:9e:20:0d:08:5b:91:24:cc:10:b5:8b:de:
a4:63:e8:ba:ff:a1:42:57:01:16:5b:f4:c1:09:68:e8:16:a1:
2f:e4:5f:8d:c1:4e:db:8c:72:c4:45:ea:04:2f:e2:1b:45:55:
da:a2:45:fb:57:20:3e:6c:59:93:14:18:5f:52:4a:cf:9e:6a:
db:a2:a5:00:d2:85:f1:b0:81:b1:24:b7:92:e0:c1:f3:fe:99:
41:16:36:06:ab:b9:21:cf:a9:e0:7f:d2:97:31:d7:3d:d6:46:
8a:93:be:e7:24:cc:af:3b:35:3d:c8:5b:dd:99:2f:55:c8:83:
9a:da:6e:df:1c:10:c4:25:37:ef:a3:4d:62:3c:86:4e:de:95:
cf:9b:d3:d4:11:36:bb:5b:ad:a3:33:bb:62:f9:95:ff:df:52:
31:f0:81:94:fb:61:8d:af:62:78:12:ea:59:2c:a3:65:37:a4:
05:59:67:cb:08:24:61:b8:3b:62:51:84:51:d2:06:6b:3f:1d:
09:bb:6f:ab:de:fd:e5:d4:5b:35:34:7f:84:f4:44:42:3b:56:
21:90:29:95
-----BEGIN CERTIFICATE-----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Generated at Thu Jan 4 20:41:32 2024 by rpki-client on console.sobornost.net