Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/gzpKcjZZI0FidrBBZkPrUttbEos.roa
File: gzpKcjZZI0FidrBBZkPrUttbEos.roa (raw, json)
Hash identifier: XmPrcSx/aL4/amNtG5ZcPZjUUg0hnsrO2m5iL1DYQwY=
Subject key identifier: 83:3A:4A:72:36:59:23:41:62:76:B0:41:66:43:EB:52:DB:5B:12:8B
Certificate issuer: /CN=f0d5dfdde4d679c711cce06edf4036ca4e5cc103
Certificate serial: 0185720C81AD5889F1D1E79882AA638B7E5E
Authority key identifier: F0:D5:DF:DD:E4:D6:79:C7:11:CC:E0:6E:DF:40:36:CA:4E:5C:C1:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8NXf3eTWeccRzOBu30A2yk5cwQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/gzpKcjZZI0FidrBBZkPrUttbEos.roa
Signing time: Mon 02 Jan 2023 10:35:00 +0000
ROA not before: Mon 02 Jan 2023 10:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41096
IP address blocks: 176.98.82.0/24 maxlen: 24
176.98.84.0/24 maxlen: 24
176.98.83.0/24 maxlen: 24
176.98.79.0/24 maxlen: 24
176.98.81.0/24 maxlen: 24
176.98.80.0/24 maxlen: 24
176.98.85.0/24 maxlen: 24
176.98.89.0/24 maxlen: 24
176.98.91.0/24 maxlen: 24
176.98.90.0/24 maxlen: 24
176.98.86.0/24 maxlen: 24
176.98.88.0/24 maxlen: 24
176.98.87.0/24 maxlen: 24
176.98.93.0/24 maxlen: 24
176.98.92.0/24 maxlen: 24
176.98.95.0/24 maxlen: 24
176.98.94.0/24 maxlen: 24
195.189.104.0/24 maxlen: 24
195.189.104.0/22 maxlen: 22
195.189.105.0/24 maxlen: 24
195.189.107.0/24 maxlen: 24
195.189.106.0/24 maxlen: 24
176.98.64.0/19 maxlen: 19
176.98.64.0/24 maxlen: 24
176.98.69.0/24 maxlen: 24
176.98.68.0/24 maxlen: 24
176.98.70.0/24 maxlen: 24
176.98.65.0/24 maxlen: 24
176.98.67.0/24 maxlen: 24
176.98.66.0/24 maxlen: 24
176.98.71.0/24 maxlen: 24
176.98.78.0/24 maxlen: 24
176.98.76.0/24 maxlen: 24
176.98.75.0/24 maxlen: 24
176.98.77.0/24 maxlen: 24
176.98.72.0/24 maxlen: 24
176.98.74.0/24 maxlen: 24
176.98.73.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:81:ad:58:89:f1:d1:e7:98:82:aa:63:8b:7e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0d5dfdde4d679c711cce06edf4036ca4e5cc103
Validity
Not Before: Jan 2 10:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=833a4a72365923416276b0416643eb52db5b128b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0c:d9:70:e5:c3:1a:c8:1c:e4:54:2b:f7:f3:
7b:57:7e:aa:cf:85:5b:c9:f0:ce:1b:63:57:68:6c:
38:48:de:ce:e2:ee:be:9e:d3:1a:81:75:d4:57:0b:
a1:ed:c9:47:bc:f1:95:eb:54:f8:06:9e:39:08:3a:
e1:7b:ac:58:7a:fe:17:b8:3f:5b:be:af:12:12:1c:
c6:b2:99:88:d3:7c:84:99:fc:e7:ef:84:b6:41:d1:
50:6f:7f:a6:6b:c1:2a:85:29:cc:8f:7a:56:9f:c3:
d7:ee:6e:ad:e7:d2:4d:12:26:a2:c0:73:d7:45:9f:
01:cf:5e:8f:50:42:97:2c:a1:f4:e4:f0:30:c9:87:
0f:2a:56:87:57:da:1a:5e:7a:01:cd:4a:57:be:d6:
02:a5:a2:06:5a:cc:e7:06:ac:8d:06:8e:4a:ca:c2:
c5:3d:e4:57:b6:bd:d8:39:a9:da:fb:d5:78:01:49:
b7:c9:02:25:2f:95:0c:fa:a5:9f:a5:13:96:bd:d5:
65:d5:b5:8e:75:14:e5:3b:9b:7c:fa:40:1f:ec:44:
0b:52:f7:6d:6d:ae:ca:62:0e:b4:77:3e:d6:ed:4f:
2d:b1:46:7d:bb:e1:c3:dd:7b:d0:82:44:46:78:58:
a6:b3:09:ac:c3:dd:50:24:68:21:76:5d:31:08:79:
84:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3A:4A:72:36:59:23:41:62:76:B0:41:66:43:EB:52:DB:5B:12:8B
X509v3 Authority Key Identifier:
keyid:F0:D5:DF:DD:E4:D6:79:C7:11:CC:E0:6E:DF:40:36:CA:4E:5C:C1:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8NXf3eTWeccRzOBu30A2yk5cwQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/gzpKcjZZI0FidrBBZkPrUttbEos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/f2ecf8-7c5c-45ab-83f7-e74d4490af6c/1/8NXf3eTWeccRzOBu30A2yk5cwQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.64.0/19
195.189.104.0/22
Signature Algorithm: sha256WithRSAEncryption
83:09:88:bc:03:fc:56:f3:8c:83:d1:67:21:6f:ea:39:9b:73:
55:1b:42:b5:70:90:81:82:c2:46:26:04:ca:4f:e6:f0:c9:d8:
6c:3a:51:78:50:d3:f9:ea:88:0c:d2:a0:b9:06:15:e8:ab:ad:
21:8a:d6:7a:46:19:13:b5:bd:c8:12:a0:26:39:89:64:f3:83:
56:ad:9c:fc:30:79:1f:33:f9:1e:98:54:7d:bf:98:10:ca:a0:
1e:83:7c:c6:ea:92:6e:0e:9b:de:14:2d:77:53:ad:e3:88:20:
c5:66:51:cb:35:44:0d:a3:ec:b7:f2:c7:4f:ea:93:c7:af:e7:
37:07:3b:6f:19:5b:3f:99:08:a2:b2:27:8d:2e:fd:51:ff:c8:
fe:4c:1a:c7:a0:25:fa:2f:69:e4:8f:fd:1c:51:93:a6:82:f6:
21:d6:3e:18:7d:e4:ef:44:10:09:1f:35:35:87:6a:80:86:9c:
9b:a4:4d:55:59:6c:bc:46:24:58:d9:92:01:92:b9:fe:47:fe:
07:51:d2:68:f5:3c:a0:f1:11:94:d9:27:aa:0b:ae:ca:a3:15:
d9:2a:06:31:cb:b6:ce:4f:bb:3f:76:9f:08:96:7b:4c:14:62:
98:02:c7:b0:d3:b2:77:95:4a:1a:fd:c1:db:b9:f2:11:43:91:
ed:d4:7b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:01:02 2024 by rpki-client on console.sobornost.net