Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/v768zCdOVuoMNH8UGoO_yEA_Cqc.roa
File: v768zCdOVuoMNH8UGoO_yEA_Cqc.roa (raw, json)
Hash identifier: MNCq4qsmy07s+ZSjwFabOgSL8pBQtzaxUF4MiORXpag=
Subject key identifier: BF:BE:BC:CC:27:4E:56:EA:0C:34:7F:14:1A:83:BF:C8:40:3F:0A:A7
Certificate issuer: /CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13
Certificate serial: 01882352CF4574A6ED13E6361905B3AFED1F
Authority key identifier: 0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/v768zCdOVuoMNH8UGoO_yEA_Cqc.roa
Signing time: Tue 16 May 2023 06:50:09 +0000
ROA not before: Tue 16 May 2023 06:50:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 45.66.133.0/24 maxlen: 24
185.159.68.0/24 maxlen: 24
185.159.69.0/24 maxlen: 24
185.159.70.0/24 maxlen: 24
45.12.204.0/24 maxlen: 24
45.12.205.0/24 maxlen: 24
45.134.19.0/24 maxlen: 24
81.90.191.0/24 maxlen: 24
188.119.100.0/24 maxlen: 24
188.119.101.0/24 maxlen: 24
185.168.21.0/24 maxlen: 24
185.168.22.0/24 maxlen: 24
185.168.23.0/24 maxlen: 24
185.171.121.0/24 maxlen: 24
91.217.120.0/24 maxlen: 24
91.217.121.0/24 maxlen: 24
194.156.228.0/24 maxlen: 24
45.144.241.0/24 maxlen: 24
185.160.25.0/24 maxlen: 24
5.183.178.0/24 maxlen: 24
45.82.166.0/24 maxlen: 24
5.181.6.0/24 maxlen: 24
5.181.7.0/24 maxlen: 24
152.89.209.0/24 maxlen: 24
147.78.15.0/24 maxlen: 24
217.197.163.0/24 maxlen: 24
45.128.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:52:cf:45:74:a6:ed:13:e6:36:19:05:b3:af:ed:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13
Validity
Not Before: May 16 06:50:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfbebccc274e56ea0c347f141a83bfc8403f0aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:61:10:1c:35:85:28:61:2e:0e:88:22:cf:7e:
2e:84:81:94:c0:b1:08:f7:29:44:c9:dd:c1:1d:0d:
58:d9:7f:d7:06:d9:75:75:63:eb:50:80:44:5b:b5:
d2:6f:ed:9d:c8:c5:f0:6f:f3:4b:87:2f:f7:ba:0c:
9a:a6:8c:0e:dd:98:9c:c7:10:ad:ad:f1:40:3f:8d:
34:c0:11:27:85:2a:9e:45:9b:d4:49:a7:0d:b1:51:
b6:6f:0a:b6:cd:e2:57:cc:89:30:3f:dc:c8:35:23:
6a:45:55:ed:d5:18:74:bd:1b:5c:4e:54:e1:e0:52:
2e:5a:d7:7e:a8:8e:b7:b2:b7:7b:b1:97:e9:7b:50:
fd:30:30:73:bb:95:62:f0:ba:c4:39:e3:0c:95:a3:
f8:8b:3f:e1:db:5f:bd:ed:83:e8:17:5c:4e:e8:cd:
b1:ce:03:6c:82:ad:13:d7:b7:9f:cc:32:cf:b8:0c:
c7:99:92:78:12:ac:9a:38:e4:cb:b1:73:80:e0:31:
bc:65:41:f4:95:2c:f4:d4:31:08:a6:8b:f2:52:ed:
ad:55:6d:e9:6b:11:e5:01:23:dd:20:74:41:75:22:
7d:d9:8d:ce:39:7e:b2:ee:8a:08:b0:99:56:6b:16:
09:2d:27:32:63:8c:cc:5f:55:2e:2c:14:78:2d:cf:
e2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:BE:BC:CC:27:4E:56:EA:0C:34:7F:14:1A:83:BF:C8:40:3F:0A:A7
X509v3 Authority Key Identifier:
keyid:0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/v768zCdOVuoMNH8UGoO_yEA_Cqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CyR-czkeydaipG8ssLAvyZQojxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.6.0/23
5.183.178.0/24
45.12.204.0/23
45.66.133.0/24
45.82.166.0/24
45.128.154.0/24
45.134.19.0/24
45.144.241.0/24
81.90.191.0/24
91.217.120.0/23
147.78.15.0/24
152.89.209.0/24
185.159.68.0-185.159.70.255
185.160.25.0/24
185.168.21.0-185.168.23.255
185.171.121.0/24
188.119.100.0/23
194.156.228.0/24
217.197.163.0/24
Signature Algorithm: sha256WithRSAEncryption
16:87:4a:99:25:40:40:31:ab:91:8a:09:ca:d1:54:86:94:6a:
c7:af:18:27:ce:d1:34:a3:87:8d:60:9f:d9:2e:df:2f:a9:c6:
dc:4c:db:5e:0f:6a:15:1f:b0:f3:83:16:79:12:bc:4f:96:f5:
e1:76:89:49:cd:9b:fb:4e:86:58:02:30:c0:c6:66:06:a4:bc:
e3:76:50:2f:50:f2:e4:c4:a1:3b:80:7e:5d:fb:b2:a9:22:c8:
cf:2e:37:06:dc:df:a0:b4:b5:a1:79:4f:21:72:d2:69:d7:a7:
a6:a4:73:6e:b8:90:af:d2:d9:be:5b:1c:24:14:02:c2:11:9b:
c4:70:cc:5c:72:99:78:00:e8:1f:95:14:1d:15:7c:43:c2:da:
b7:09:ed:2d:3c:f0:08:42:4d:c9:a4:bc:cd:be:29:2d:0d:9b:
72:93:bd:45:13:35:05:ed:1d:11:80:6d:44:93:c6:e6:83:33:
fa:b7:27:e3:ca:24:7c:e7:05:71:4d:d0:d6:d7:d6:b1:91:96:
bc:cd:9d:99:aa:f6:e4:e2:94:7f:30:66:8e:d0:6f:5d:fe:e5:
43:21:60:fc:96:1c:ad:33:3f:6f:d6:ec:2b:52:ef:ab:c7:4e:
97:4a:78:23:08:d8:ef:1b:05:2f:a1:66:3b:ec:33:88:62:d2:
28:04:e8:e0
-----BEGIN CERTIFICATE-----
MIIFfjCCBGagAwIBAgISAYgjUs9FdKbtE+Y2GQWzr+0fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiMjQ3ZTczMzkxZWM5ZDZhMmE0NmYyY2IwYjAyZmM5OTQy
ODhmMTMwHhcNMjMwNTE2MDY1MDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmJlYmNjYzI3NGU1NmVhMGMzNDdmMTQxYTgzYmZjODQwM2YwYWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWEQHDWFKGEuDogiz34uhIGUwLEI
9ylEyd3BHQ1Y2X/XBtl1dWPrUIBEW7XSb+2dyMXwb/NLhy/3ugyapowO3ZicxxCt
rfFAP400wBEnhSqeRZvUSacNsVG2bwq2zeJXzIkwP9zINSNqRVXt1Rh0vRtcTlTh
4FIuWtd+qI63srd7sZfpe1D9MDBzu5Vi8LrEOeMMlaP4iz/h21+97YPoF1xO6M2x
zgNsgq0T17efzDLPuAzHmZJ4EqyaOOTLsXOA4DG8ZUH0lSz01DEIpovyUu2tVW3p
axHlASPdIHRBdSJ92Y3OOX6y7ooIsJlWaxYJLScyY4zMX1UuLBR4Lc/irwIDAQAB
o4ICijCCAoYwHQYDVR0OBBYEFL++vMwnTlbqDDR/FBqDv8hAPwqnMB8GA1UdIwQY
MBaAFAskfnM5HsnWoqRvLLCwL8mUKI8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3lSLWN6a2V5ZGFpcEc4c3NMQXZ5WlFvanhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iM2ZkNDAtYjEyNS00MjgyLWI4ODMt
NzM2Nzg5ZWU2ZmQwLzEvdjc2OHpDZE9WdW9NTkg4VUdvT195RUFfQ3FjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iM2ZkNDAtYjEyNS00MjgyLWI4ODMtNzM2Nzg5ZWU2ZmQw
LzEvQ3lSLWN6a2V5ZGFpcEc4c3NMQXZ5WlFvanhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGfBggrBgEFBQcBBwEB/wSBjzCBjDCBiQQCAAEwgYIDBAEF
tQYDBAAFt7IDBAEtDMwDBAAtQoUDBAAtUqYDBAAtgJoDBAAthhMDBAAtkPEDBABR
Wr8DBAFb2XgDBACTTg8DBACYWdEwDAMEArmfRAMEALmfRgMEALmgGTAMAwQAuagV
AwQDuagQAwQAuat5AwQBvHdkAwQAwpzkAwQA2cWjMA0GCSqGSIb3DQEBCwUAA4IB
AQAWh0qZJUBAMauRignK0VSGlGrHrxgnztE0o4eNYJ/ZLt8vqcbcTNteD2oVH7Dz
gxZ5ErxPlvXhdolJzZv7ToZYAjDAxmYGpLzjdlAvUPLkxKE7gH5d+7KpIsjPLjcG
3N+gtLWheU8hctJp16empHNuuJCv0tm+WxwkFALCEZvEcMxccpl4AOgflRQdFXxD
wtq3Ce0tPPAIQk3JpLzNviktDZtyk71FEzUF7R0RgG1Ek8bmgzP6tyfjyiR85wVx
TdDW19axkZa8zZ2Zqvbk4pR/MGaO0G9d/uVDIWD8lhytMz9v1uwrUu+rx06XSngj
CNjvGwUvoWY77DOIYtIoBOjg
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:23 2023 by rpki-client on console-ams.rpki-client.org