Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/JHAJ8hulpfO5-pz-Nbj15FSvaww.roa
File: JHAJ8hulpfO5-pz-Nbj15FSvaww.roa (raw, json)
Hash identifier: Wbv9iKNKNFH+kwE1f96pDyUsK8BeBCd0G4iaTKhpnJ0=
Subject key identifier: 24:70:09:F2:1B:A5:A5:F3:B9:FA:9C:FE:35:B8:F5:E4:54:AF:6B:0C
Certificate issuer: /CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Certificate serial: 018C66CA0B1AF78417667581DDF0EC401750
Authority key identifier: DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/JHAJ8hulpfO5-pz-Nbj15FSvaww.roa
Signing time: Thu 14 Dec 2023 05:26:06 +0000
ROA not before: Thu 14 Dec 2023 05:26:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49273
IP address blocks: 188.113.227.0/24 maxlen: 24
188.113.230.0/24 maxlen: 24
188.113.231.0/24 maxlen: 24
188.113.228.0/24 maxlen: 24
188.113.229.0/24 maxlen: 24
188.113.233.0/24 maxlen: 24
188.113.232.0/24 maxlen: 24
188.113.234.0/24 maxlen: 24
188.113.237.0/24 maxlen: 24
188.113.238.0/24 maxlen: 24
188.113.235.0/24 maxlen: 24
188.113.236.0/24 maxlen: 24
188.113.240.0/24 maxlen: 24
188.113.239.0/24 maxlen: 24
188.113.246.0/24 maxlen: 24
188.113.241.0/24 maxlen: 24
188.113.244.0/24 maxlen: 24
188.113.245.0/24 maxlen: 24
188.113.242.0/24 maxlen: 24
188.113.243.0/24 maxlen: 24
188.113.247.0/24 maxlen: 24
188.113.248.0/24 maxlen: 24
188.113.251.0/24 maxlen: 24
188.113.252.0/24 maxlen: 24
188.113.249.0/24 maxlen: 24
188.113.250.0/24 maxlen: 24
188.113.253.0/24 maxlen: 24
188.113.254.0/24 maxlen: 24
188.113.255.0/24 maxlen: 24
188.113.192.0/24 maxlen: 24
188.113.195.0/24 maxlen: 24
188.113.196.0/24 maxlen: 24
188.113.193.0/24 maxlen: 24
188.113.194.0/24 maxlen: 24
188.113.199.0/24 maxlen: 24
188.113.197.0/24 maxlen: 24
188.113.198.0/24 maxlen: 24
188.113.202.0/24 maxlen: 24
188.113.203.0/24 maxlen: 24
188.113.200.0/24 maxlen: 24
188.113.201.0/24 maxlen: 24
188.113.206.0/24 maxlen: 24
188.113.204.0/24 maxlen: 24
188.113.205.0/24 maxlen: 24
188.113.209.0/24 maxlen: 24
188.113.210.0/24 maxlen: 24
188.113.207.0/24 maxlen: 24
188.113.208.0/24 maxlen: 24
188.113.213.0/24 maxlen: 24
188.113.211.0/24 maxlen: 24
188.113.212.0/24 maxlen: 24
188.113.218.0/24 maxlen: 24
188.113.219.0/24 maxlen: 24
188.113.216.0/24 maxlen: 24
188.113.217.0/24 maxlen: 24
188.113.214.0/24 maxlen: 24
188.113.215.0/24 maxlen: 24
188.113.224.0/24 maxlen: 24
188.113.221.0/24 maxlen: 24
188.113.222.0/24 maxlen: 24
188.113.226.0/24 maxlen: 24
188.113.225.0/24 maxlen: 24
185.208.177.0/24 maxlen: 24
185.208.176.0/24 maxlen: 24
185.208.178.0/24 maxlen: 24
185.208.179.0/24 maxlen: 24
45.153.67.0/24 maxlen: 24
45.153.65.0/24 maxlen: 24
45.153.66.0/24 maxlen: 24
2a02:f7c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:66:ca:0b:1a:f7:84:17:66:75:81:dd:f0:ec:40:17:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Validity
Not Before: Dec 14 05:26:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=247009f21ba5a5f3b9fa9cfe35b8f5e454af6b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:93:f5:8e:16:aa:6f:05:3f:97:86:d6:ee:
0c:81:71:59:4c:e6:c3:e9:2f:af:87:7d:d1:8f:10:
d7:fb:18:32:80:d6:c0:17:42:62:18:9e:f1:e2:df:
ba:5b:2a:05:15:76:ae:32:42:9f:88:c1:90:16:ab:
cc:7e:9a:a8:85:8f:ff:a4:23:4c:99:c9:90:49:d8:
ee:af:2e:b2:25:7a:90:0c:c2:13:d8:f4:0d:10:6a:
54:2c:99:d1:93:c6:43:58:7c:18:b7:9d:d8:18:fb:
93:d8:e6:14:19:99:76:3a:38:e8:86:c7:d6:c1:66:
3a:7f:fa:b0:c6:11:3f:93:b0:37:c1:da:ca:e2:6a:
62:27:4f:c6:9f:7d:eb:60:c6:03:fd:0a:48:94:f1:
61:27:93:cf:14:d9:c7:48:01:cc:77:8b:7e:a8:3c:
d7:66:3d:54:a5:40:b2:a9:03:db:3d:2c:80:8a:17:
86:bb:65:a4:8a:0a:54:da:28:9e:2a:c9:a4:d8:4a:
ff:d0:8a:3e:08:d8:b1:07:15:67:75:bb:31:69:55:
76:d2:b8:ec:6b:f3:6f:30:4f:c1:9f:ed:58:40:3f:
65:81:1d:56:45:d4:9a:06:1f:71:8b:aa:6e:e0:95:
de:3a:6d:a1:02:f3:fc:b4:1b:e6:be:0f:f6:fe:0f:
50:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:70:09:F2:1B:A5:A5:F3:B9:FA:9C:FE:35:B8:F5:E4:54:AF:6B:0C
X509v3 Authority Key Identifier:
keyid:DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/JHAJ8hulpfO5-pz-Nbj15FSvaww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2mUl3kqm0Moa572O4eNb_SaWSbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.65.0-45.153.67.255
185.208.176.0/22
188.113.192.0-188.113.219.255
188.113.221.0-188.113.222.255
188.113.224.0/19
IPv6:
2a02:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
64:5f:c8:d5:e8:74:0a:8d:7f:00:d9:1c:78:32:55:d2:8f:da:
ca:af:cd:47:cf:9d:7c:7d:52:2b:9f:e4:ae:f1:ec:f4:9f:4e:
0b:b5:62:a9:49:63:cf:88:7a:db:15:51:0f:ba:42:9f:d5:9f:
40:5d:34:b1:ac:64:fd:ce:4b:05:76:8b:00:5c:27:d1:73:d2:
84:b9:ec:67:fc:4d:30:23:06:34:01:ae:58:2e:1f:57:6b:d1:
07:b5:1f:04:d7:14:e8:bd:8a:ee:47:62:1f:74:eb:7c:9f:87:
ea:4a:57:83:11:71:43:8d:cd:59:2d:3c:56:17:5e:7a:1d:59:
d9:74:d4:95:49:2d:80:15:a2:7d:b7:d4:8c:60:65:ce:b5:55:
0b:5a:ba:38:c7:54:7a:3c:34:65:72:ee:9c:43:7b:16:50:2e:
6c:46:fc:cc:a6:7d:6f:5f:8f:42:36:f0:b5:6e:81:f2:49:a6:
28:fb:71:8c:40:5c:48:ac:eb:85:48:85:b3:31:40:2d:d0:6a:
b0:45:1c:e9:0d:53:94:5a:3a:e6:74:57:67:13:f5:db:aa:29:
2e:59:76:8b:5f:28:4c:9f:d3:38:d7:85:8f:1b:a7:94:ad:c0:
f7:13:dc:fc:98:95:ea:bc:9c:00:e1:46:ef:56:d9:ee:60:95:
2d:e6:fc:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net