Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/w0s0lSlO1tLTfEafBkvcK21Ypxs.roa
File: w0s0lSlO1tLTfEafBkvcK21Ypxs.roa (raw, json)
Hash identifier: LCoC+4YIJTFIK3iyDF3frUD1vUQz6xqoqzt9Xcyfx80=
Subject key identifier: C3:4B:34:95:29:4E:D6:D2:D3:7C:46:9F:06:4B:DC:2B:6D:58:A7:1B
Certificate issuer: /CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Certificate serial: 0193F29891B6289FE668FF1B0EAFF3290940
Authority key identifier: AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/w0s0lSlO1tLTfEafBkvcK21Ypxs.roa
Signing time: Mon 23 Dec 2024 08:18:25 +0000
ROA not before: Mon 23 Dec 2024 08:18:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6821
IP address blocks: 46.217.0.0/21 maxlen: 21
46.217.8.0/21 maxlen: 21
46.217.16.0/21 maxlen: 21
46.217.24.0/21 maxlen: 21
46.217.32.0/21 maxlen: 21
46.217.40.0/21 maxlen: 21
46.217.48.0/21 maxlen: 21
46.217.56.0/21 maxlen: 21
46.217.64.0/21 maxlen: 21
46.217.72.0/21 maxlen: 21
46.217.80.0/21 maxlen: 21
46.217.88.0/21 maxlen: 21
46.217.96.0/21 maxlen: 21
46.217.104.0/21 maxlen: 21
46.217.112.0/21 maxlen: 21
46.217.120.0/21 maxlen: 21
46.217.128.0/21 maxlen: 21
46.217.136.0/21 maxlen: 21
46.217.144.0/21 maxlen: 21
46.217.152.0/21 maxlen: 21
46.217.160.0/19 maxlen: 19
46.217.224.0/20 maxlen: 20
77.28.128.0/18 maxlen: 18
77.28.192.0/18 maxlen: 18
77.29.64.0/18 maxlen: 18
79.125.232.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 23 Dec 2024 13:56:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f2:98:91:b6:28:9f:e6:68:ff:1b:0e:af:f3:29:09:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Validity
Not Before: Dec 23 08:18:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c34b3495294ed6d2d37c469f064bdc2b6d58a71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:2e:b3:4d:e9:40:50:33:4f:ce:0a:fb:a3:cf:
5f:28:1b:a9:2d:e9:7c:62:b4:e6:37:df:2f:05:88:
58:55:6b:69:5d:f0:5e:e8:58:e8:18:f7:20:66:0d:
da:3c:72:50:22:3a:ee:05:f3:6f:49:25:e2:f0:17:
d7:de:8b:46:db:5b:25:08:ea:bf:b2:81:71:8e:ee:
09:13:cb:ce:29:cd:92:0c:d4:d5:28:9d:8e:7a:a5:
8e:23:75:75:a1:cb:3c:8e:3f:d8:6a:8e:64:d1:cc:
81:41:fd:ae:e3:b9:b6:14:d2:1a:63:82:ea:3a:65:
7e:9b:be:e3:ab:1a:a9:5d:82:f7:50:14:9b:f4:1a:
7c:ec:01:af:30:7f:ac:8c:13:9a:7d:03:70:80:2f:
5b:71:0f:3d:08:fe:3a:1d:fd:30:8f:43:1b:e8:6e:
4c:68:98:ac:64:80:ae:3f:2b:82:54:76:95:34:f3:
57:b6:3e:b6:58:fd:69:47:d5:f8:75:50:f5:ee:02:
75:57:fc:95:f2:6f:a9:a1:4e:0f:6b:11:75:bf:0b:
81:4c:e2:4e:95:20:05:1c:6f:9e:e9:f2:19:36:87:
7f:31:76:66:88:f6:26:31:3c:b9:12:ba:9a:21:c9:
ae:f7:63:5f:fd:e2:22:3f:53:2a:fb:bb:32:bc:e2:
14:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4B:34:95:29:4E:D6:D2:D3:7C:46:9F:06:4B:DC:2B:6D:58:A7:1B
X509v3 Authority Key Identifier:
keyid:AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/w0s0lSlO1tLTfEafBkvcK21Ypxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.217.0.0-46.217.191.255
46.217.224.0/20
77.28.128.0/17
77.29.64.0/18
79.125.232.0/21
Signature Algorithm: sha256WithRSAEncryption
bd:86:1a:5c:dc:68:02:64:9b:57:ad:6f:da:0c:81:8d:93:6e:
eb:4b:5e:39:c9:74:23:34:4a:b4:a6:19:c0:7b:38:d1:09:a3:
c1:30:c2:cc:db:67:04:fc:62:b7:1c:5f:c2:40:45:24:1e:cb:
4d:c0:d1:d4:63:a5:49:48:99:46:2a:6a:de:03:c1:66:c0:f3:
fd:f0:b9:76:79:91:e9:e8:94:0c:d4:19:fb:2a:c7:91:2b:d7:
8c:e3:0a:02:98:08:08:6f:a6:0f:47:97:c3:02:06:12:d6:b0:
9a:65:59:1c:a9:8c:d3:3b:d8:04:9f:02:38:19:d5:d2:52:31:
a4:aa:f1:ea:58:70:d9:21:50:a0:16:13:a3:e3:f3:29:85:1e:
0d:d5:4d:c0:bd:b6:d9:27:f8:e3:b1:2c:1b:9f:74:b6:b8:f9:
6c:f5:11:dc:90:3c:96:f3:22:d2:b7:c8:cb:a7:c5:dd:5d:8c:
51:cf:ea:a6:23:ee:23:c4:0b:51:27:f4:a6:6f:c5:af:50:5a:
64:eb:87:24:46:79:ea:56:af:7a:14:c1:96:c2:1c:f7:ca:8c:
ea:ad:5c:db:31:49:26:2a:65:21:ab:72:9c:94:4a:3f:30:5e:
9d:23:31:45:d8:e7:f5:3a:21:67:5e:c1:ff:f4:d6:94:67:57:
54:55:2b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 24 01:01:30 2024 by rpki-client on console.sobornost.net