Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/P6oIwcPaRj6mINC1X0f1fkuCQDw.roa
File: P6oIwcPaRj6mINC1X0f1fkuCQDw.roa (raw, json)
Hash identifier: ZmUCD8FNTVDnidHUXb6JdOczDWJoH547B9WH5ffPs8A=
Subject key identifier: 3F:AA:08:C1:C3:DA:46:3E:A6:20:D0:B5:5F:47:F5:7E:4B:82:40:3C
Certificate issuer: /CN=162e48329c8be8ef209e9958da66ab0240145e19
Certificate serial: 018D6A435D91124A543A6B4B9375298BA309
Authority key identifier: 16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/P6oIwcPaRj6mINC1X0f1fkuCQDw.roa
Signing time: Fri 02 Feb 2024 14:40:16 +0000
ROA not before: Fri 02 Feb 2024 14:40:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57795
IP address blocks: 23.249.232.0/21 maxlen: 24
37.114.88.0/21 maxlen: 21
83.174.128.0/20 maxlen: 20
93.92.24.0/21 maxlen: 21
149.143.0.0/19 maxlen: 19
185.6.204.0/22 maxlen: 22
185.34.176.0/22 maxlen: 22
185.37.64.0/22 maxlen: 22
185.37.64.0/23 maxlen: 23
185.43.212.0/22 maxlen: 22
185.144.20.0/22 maxlen: 22
185.221.156.0/22 maxlen: 22
185.254.41.0/24 maxlen: 24
185.254.42.0/23 maxlen: 23
2a00:9340::/29 maxlen: 29
2a07:36c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 15 Mar 2024 09:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:43:5d:91:12:4a:54:3a:6b:4b:93:75:29:8b:a3:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162e48329c8be8ef209e9958da66ab0240145e19
Validity
Not Before: Feb 2 14:40:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3faa08c1c3da463ea620d0b55f47f57e4b82403c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:5c:e2:92:1b:38:d6:3a:cb:8f:4f:3d:c3:
8d:25:e6:0a:32:63:04:3b:90:b1:68:22:22:af:0e:
a9:9c:09:32:b5:77:67:0c:a4:b6:33:b3:7f:7f:a5:
47:32:08:3e:8a:b1:0d:7e:cc:5c:62:fe:69:a1:e7:
85:64:2b:6b:d9:ca:cb:ce:eb:f3:7a:87:ee:9f:63:
bc:08:7a:d0:7b:88:9b:2b:c1:a8:c4:de:dc:35:e0:
30:dd:2b:df:cd:7e:9e:7b:2a:d2:44:8b:87:37:21:
d2:96:f7:3b:2b:f1:72:ca:b0:96:45:50:e1:d6:af:
98:bf:11:e5:aa:9c:92:f8:ec:b7:22:47:48:f1:e3:
c3:66:35:b9:4f:66:0a:6c:ca:1d:bb:45:50:0e:6b:
51:92:f9:00:20:ce:4f:b7:32:1c:86:00:60:04:ca:
db:e5:2a:11:47:43:03:27:98:e1:a7:39:7c:41:d3:
f9:28:e8:89:8a:71:ea:2d:f6:4e:e5:0a:fd:c6:ca:
a6:7d:6b:ff:60:5f:dd:0b:f6:e6:88:36:31:a6:9a:
6c:b2:75:59:4f:30:af:da:89:d5:75:a5:2c:e2:82:
7c:48:8a:9c:ba:f4:ac:c7:12:e6:a6:0f:9c:93:46:
47:7f:69:cd:1d:b8:a7:1e:2f:e6:ee:e2:d5:3c:ae:
77:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AA:08:C1:C3:DA:46:3E:A6:20:D0:B5:5F:47:F5:7E:4B:82:40:3C
X509v3 Authority Key Identifier:
keyid:16:2E:48:32:9C:8B:E8:EF:20:9E:99:58:DA:66:AB:02:40:14:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi5IMpyL6O8gnplY2marAkAUXhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/P6oIwcPaRj6mINC1X0f1fkuCQDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/8e2067-283b-4e4e-b67e-69f33fe1b530/1/Fi5IMpyL6O8gnplY2marAkAUXhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.249.232.0/21
37.114.88.0/21
83.174.128.0/20
93.92.24.0/21
149.143.0.0/19
185.6.204.0/22
185.34.176.0/22
185.37.64.0/22
185.43.212.0/22
185.144.20.0/22
185.221.156.0/22
185.254.41.0-185.254.43.255
IPv6:
2a00:9340::/29
2a07:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
76:a2:da:b0:98:81:45:5a:34:d1:6c:90:24:d7:d7:16:2b:80:
a2:7e:ad:52:a1:da:aa:4b:5c:93:1b:e0:d2:1a:ed:d4:b4:07:
c0:20:04:a1:b5:a3:8b:11:6f:d3:0e:6a:5d:52:2a:99:71:0c:
b5:a4:f8:39:12:64:79:04:c1:97:d2:cb:83:00:9e:22:d6:02:
cb:fe:4a:53:6c:38:20:81:42:17:6b:93:e5:d2:57:01:a7:2e:
41:c0:00:e8:cd:7a:e9:c5:5a:46:67:2f:e1:54:0b:3c:e6:3c:
c0:d1:02:8a:1c:58:1f:38:23:3f:f8:31:f6:8a:b1:ae:c1:d5:
3d:19:c8:0f:e8:50:5c:79:23:c6:82:d0:de:83:fb:ac:33:9d:
f1:e4:60:d2:6d:b8:6e:59:00:91:24:9c:03:f1:c3:6f:82:8a:
8e:ce:e1:1e:67:0c:ad:bc:f3:df:a6:50:55:71:4e:11:87:27:
e5:54:18:58:89:e0:7f:98:cc:3f:2c:5f:1e:be:f5:61:61:63:
48:4f:eb:04:94:58:c6:d9:c9:67:b5:b6:cd:04:10:d0:d5:77:
17:76:32:30:0e:a1:85:e1:f7:8c:14:c3:a8:b7:e8:03:2b:1c:
55:d7:e2:93:a0:a9:a4:84:9b:fe:68:a3:ad:30:6b:f2:27:74:
01:82:18:3a
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAY1qQ12REkpUOmtLk3Upi6MJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MmU0ODMyOWM4YmU4ZWYyMDllOTk1OGRhNjZhYjAyNDAx
NDVlMTkwHhcNMjQwMjAyMTQ0MDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmFhMDhjMWMzZGE0NjNlYTYyMGQwYjU1ZjQ3ZjU3ZTRiODI0MDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk9c4pIbONY6y49PPcONJeYKMmME
O5CxaCIirw6pnAkytXdnDKS2M7N/f6VHMgg+irENfsxcYv5poeeFZCtr2crLzuvz
eofun2O8CHrQe4ibK8GoxN7cNeAw3SvfzX6eeyrSRIuHNyHSlvc7K/FyyrCWRVDh
1q+YvxHlqpyS+Oy3IkdI8ePDZjW5T2YKbModu0VQDmtRkvkAIM5PtzIchgBgBMrb
5SoRR0MDJ5jhpzl8QdP5KOiJinHqLfZO5Qr9xsqmfWv/YF/dC/bmiDYxpppssnVZ
TzCv2onVdaUs4oJ8SIqcuvSsxxLmpg+ck0ZHf2nNHbinHi/m7uLVPK53uQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFD+qCMHD2kY+piDQtV9H9X5LgkA8MB8GA1UdIwQY
MBaAFBYuSDKci+jvIJ6ZWNpmqwJAFF4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2Ut
NjlmMzNmZTFiNTMwLzEvUDZvSXdjUGFSajZtSU5DMVgwZjFma3VDUUR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi84ZTIwNjctMjgzYi00ZTRlLWI2N2UtNjlmMzNmZTFiNTMw
LzEvRmk1SU1weUw2TzhnbnBsWTJtYXJBa0FVWGhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBWBAIAATBQAwQDF/noAwQD
JXJYAwQEU66AAwQDXVwYAwQFlY8AAwQCuQbMAwQCuSKwAwQCuSVAAwQCuSvUAwQC
uZAUAwQCud2cMAwDBAC5/ikDBAK5/igwFAQCAAIwDgMFAyoAk0ADBQMqBzbAMA0G
CSqGSIb3DQEBCwUAA4IBAQB2otqwmIFFWjTRbJAk19cWK4Cifq1SodqqS1yTG+DS
Gu3UtAfAIAShtaOLEW/TDmpdUiqZcQy1pPg5EmR5BMGX0suDAJ4i1gLL/kpTbDgg
gUIXa5Pl0lcBpy5BwADozXrpxVpGZy/hVAs85jzA0QKKHFgfOCM/+DH2irGuwdU9
GcgP6FBceSPGgtDeg/usM53x5GDSbbhuWQCRJJwD8cNvgoqOzuEeZwytvPPfplBV
cU4RhyflVBhYieB/mMw/LF8evvVhYWNIT+sElFjG2clntbbNBBDQ1XcXdjIwDqGF
4feMFMOot+gDKxxV1+KToKmkhJv+aKOtMGvyJ3QBghg6
-----END CERTIFICATE-----
Generated at Fri Mar 15 15:01:25 2024 by rpki-client on console.sobornost.net