Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/5vcqJp5FJGZEX2R_vwJbbxdJewg.roa
File: 5vcqJp5FJGZEX2R_vwJbbxdJewg.roa (raw, json)
Hash identifier: 01/KH+0+lcKdUWN1vSvIy/RckAK6HZulNmPCHGXBFzM=
Subject key identifier: E6:F7:2A:26:9E:45:24:66:44:5F:64:7F:BF:02:5B:6F:17:49:7B:08
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 018CC94ABBED4F813948204C87DF04D85326
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/5vcqJp5FJGZEX2R_vwJbbxdJewg.roa
Signing time: Tue 02 Jan 2024 08:29:27 +0000
ROA not before: Tue 02 Jan 2024 08:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57795
IP address blocks: 93.92.24.0/21 maxlen: 21
185.43.212.0/22 maxlen: 22
185.6.204.0/22 maxlen: 22
185.144.20.0/22 maxlen: 22
185.221.156.0/22 maxlen: 22
185.34.176.0/22 maxlen: 22
185.37.64.0/23 maxlen: 23
185.37.64.0/22 maxlen: 22
83.174.128.0/20 maxlen: 20
23.249.232.0/21 maxlen: 21
37.114.88.0/21 maxlen: 21
149.143.0.0/19 maxlen: 19
185.254.41.0/24 maxlen: 24
185.254.42.0/23 maxlen: 23
2a00:9340::/29 maxlen: 29
2a07:36c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 02 Feb 2024 14:39:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4a:bb:ed:4f:81:39:48:20:4c:87:df:04:d8:53:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Jan 2 08:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6f72a269e452466445f647fbf025b6f17497b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:05:93:4b:d2:7e:21:09:ea:18:e7:9a:aa:69:
4c:e5:56:f6:66:4d:25:24:99:2b:1f:ef:5c:08:93:
fd:ee:01:7f:83:90:7a:7a:9c:6d:a5:ed:23:4e:cd:
e1:99:37:2a:35:ac:46:5e:da:90:44:2f:72:f4:d5:
fc:6f:3b:26:2b:3f:48:82:ae:5f:79:da:8c:0e:9e:
cf:e8:32:91:6d:b5:b5:f5:96:02:32:80:0d:32:a9:
c7:cc:7b:0f:b6:4e:06:40:ed:38:d3:01:e8:7d:d2:
41:98:c2:71:ed:2f:cd:56:0a:a7:b5:e3:c2:fc:60:
f5:44:85:ba:dd:f8:ef:e5:b9:3c:82:7d:f8:4a:4f:
0a:c2:45:96:82:ea:ee:62:6e:0a:c4:80:3e:1e:e3:
49:fc:e5:d1:39:99:f2:60:46:a0:00:4a:5f:b1:4a:
0d:f8:fc:52:bc:15:40:10:c7:25:f9:ac:79:37:88:
ee:be:86:6a:ea:a3:56:74:93:f2:a3:ed:7a:30:53:
8f:41:a9:9b:a2:25:39:80:36:59:e4:3f:1c:19:87:
1d:a1:59:9c:7c:e9:9a:2f:8e:10:37:8e:38:b3:31:
ca:b3:d2:15:7b:e4:ab:04:d7:e2:bb:a0:61:9a:20:
10:61:12:ab:46:e5:62:6e:1d:f1:3e:97:43:ff:7b:
4a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F7:2A:26:9E:45:24:66:44:5F:64:7F:BF:02:5B:6F:17:49:7B:08
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/5vcqJp5FJGZEX2R_vwJbbxdJewg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.249.232.0/21
37.114.88.0/21
83.174.128.0/20
93.92.24.0/21
149.143.0.0/19
185.6.204.0/22
185.34.176.0/22
185.37.64.0/22
185.43.212.0/22
185.144.20.0/22
185.221.156.0/22
185.254.41.0-185.254.43.255
IPv6:
2a00:9340::/29
2a07:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
bb:d5:16:ff:d7:20:b9:e8:a5:09:ec:cb:92:9c:fd:1f:7b:cb:
b2:45:4c:0d:2e:34:e3:92:d1:55:0b:23:03:05:a4:ed:95:6f:
0f:52:c2:8d:51:76:ec:39:32:e5:0d:c5:49:66:6e:0e:1b:dd:
03:cb:d9:5b:25:94:b5:c2:af:f5:68:d7:db:53:9a:98:fd:0b:
80:d6:c5:2d:f1:1f:0d:ac:b4:52:6a:ec:a3:32:5a:e1:5e:60:
ce:da:54:6a:16:2d:6a:25:18:11:8f:10:c6:7f:cb:c4:6a:98:
d1:aa:01:f9:4e:49:a7:45:78:dd:45:07:20:7b:b4:47:8d:d3:
1c:74:ff:3f:b1:33:2c:fb:97:12:2f:23:d5:6d:94:23:c8:32:
ae:46:b7:bd:cc:66:29:c5:61:73:e9:89:6e:5e:5a:1a:e3:cb:
e5:d7:eb:4b:40:91:1f:69:7f:78:41:8e:65:bb:77:80:87:82:
ec:71:42:23:41:e2:93:c6:29:f0:a6:3c:1d:10:10:c4:42:b1:
fd:91:b1:72:1e:5a:ed:15:c1:46:b7:6a:a3:4a:70:c5:c7:44:
0c:f0:0c:4b:03:46:31:c8:83:82:d1:f1:60:e0:4f:d0:4e:23:
a5:57:42:97:ec:ff:1d:16:37:e3:32:c0:fa:66:a7:98:8d:3e:
41:86:35:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:01:18 2024 by rpki-client on console.sobornost.net