Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/hluAnt8p_kLsxSHT5eapMPEaEyc.roa
File: hluAnt8p_kLsxSHT5eapMPEaEyc.roa (raw, json)
Hash identifier: 4AgPeyi2PwXcsMDdSA045DMwWM23XlKTB4C8lZJUL0Q=
Subject key identifier: 86:5B:80:9E:DF:29:FE:42:EC:C5:21:D3:E5:E6:A9:30:F1:1A:13:27
Certificate issuer: /CN=24051080400940ff47c807dd6742becbb4edf22d
Certificate serial: 0189024312335FF2AC371DBD9CE6C9545E3E
Authority key identifier: 24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/hluAnt8p_kLsxSHT5eapMPEaEyc.roa
Signing time: Wed 28 Jun 2023 13:48:17 +0000
ROA not before: Wed 28 Jun 2023 13:48:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15447
IP address blocks: 85.119.49.0/24 maxlen: 24
85.119.48.0/24 maxlen: 24
85.119.48.0/23 maxlen: 24
85.119.51.0/24 maxlen: 24
85.119.50.0/23 maxlen: 24
85.119.50.0/24 maxlen: 24
85.119.53.0/24 maxlen: 24
85.119.52.0/24 maxlen: 24
85.119.54.0/24 maxlen: 24
188.94.185.0/24 maxlen: 24
188.94.184.0/23 maxlen: 24
188.94.184.0/24 maxlen: 24
188.94.186.0/23 maxlen: 24
188.94.186.0/24 maxlen: 24
31.169.58.0/24 maxlen: 24
31.169.58.0/23 maxlen: 24
31.169.57.0/24 maxlen: 24
31.169.56.0/24 maxlen: 24
31.169.56.0/23 maxlen: 24
31.169.59.0/24 maxlen: 24
31.169.60.0/23 maxlen: 24
31.169.60.0/24 maxlen: 24
31.169.62.0/23 maxlen: 24
31.169.62.0/24 maxlen: 24
31.169.61.0/24 maxlen: 24
31.169.63.0/24 maxlen: 24
188.94.187.0/24 maxlen: 24
2a10:9d80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:43:12:33:5f:f2:ac:37:1d:bd:9c:e6:c9:54:5e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24051080400940ff47c807dd6742becbb4edf22d
Validity
Not Before: Jun 28 13:48:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=865b809edf29fe42ecc521d3e5e6a930f11a1327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4b:8a:07:f1:cd:51:d9:de:3e:8b:80:fb:f5:
49:cf:7f:38:ad:df:63:b9:75:98:8d:76:fb:18:6b:
c0:04:52:a2:e2:7f:c2:7d:fc:29:6b:d3:67:1c:76:
d7:d6:5f:b5:11:54:dc:ea:4b:cc:67:75:89:8a:ee:
07:ad:9d:51:89:5b:f2:76:36:62:5b:8c:a1:e6:ec:
3c:46:bb:28:a1:10:20:e7:77:b4:53:80:47:3a:47:
40:d2:c4:3e:80:73:17:41:d8:3e:c3:53:3b:7d:f7:
f1:9c:42:47:3f:5a:84:b5:22:08:0f:df:54:8f:25:
47:9a:d4:0c:f3:84:ac:52:53:25:2c:ed:c9:ed:c4:
2d:30:d2:ff:41:de:39:c7:e2:9d:e6:5e:da:65:0d:
39:60:33:50:20:03:81:74:dc:fb:b4:78:04:ea:eb:
50:c5:f8:28:fc:45:42:67:06:ab:d2:ae:37:a3:fe:
55:8f:b0:ec:4e:e3:06:c9:5e:51:a4:8b:8f:27:3a:
fb:d9:1e:05:62:31:90:74:d4:4b:81:77:87:6a:a7:
b3:59:ee:e0:cc:16:66:12:3a:c8:75:2b:32:27:2e:
01:2a:f2:f4:30:ac:b5:e1:18:ed:fe:1f:f9:28:df:
34:74:b8:99:4b:9a:a7:b3:9d:39:ed:42:ec:17:f9:
cd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:5B:80:9E:DF:29:FE:42:EC:C5:21:D3:E5:E6:A9:30:F1:1A:13:27
X509v3 Authority Key Identifier:
keyid:24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/hluAnt8p_kLsxSHT5eapMPEaEyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.56.0/21
85.119.48.0-85.119.54.255
188.94.184.0/22
IPv6:
2a10:9d80::/29
Signature Algorithm: sha256WithRSAEncryption
87:88:30:a4:58:58:44:7f:ab:9c:74:cb:a4:0c:5f:0f:a9:0e:
fa:71:10:cc:b5:f0:23:80:a4:7d:b8:16:4e:e3:a8:46:53:4a:
9f:e5:d6:63:fc:f6:27:77:a5:47:28:92:6d:95:80:fe:87:37:
24:11:4e:a8:39:f7:dd:1c:a5:9e:de:10:61:62:97:f8:49:ae:
23:2d:89:49:c4:a6:6e:a3:ee:67:61:32:01:db:64:d3:42:8b:
8e:83:4f:a3:03:e6:f2:b6:03:37:47:48:45:b4:5a:92:14:1e:
46:3c:68:00:a4:73:d9:60:77:9a:3a:38:d9:0e:92:c3:1b:e6:
d0:e2:d0:da:3e:56:02:b6:bf:87:d0:8b:0f:7c:31:04:2c:f4:
b9:d7:b9:cc:16:bb:6a:d8:95:70:e6:ea:bb:80:d6:4f:a6:19:
ed:cf:d6:81:b4:a3:dc:1b:2c:2e:8b:eb:b8:a0:b5:68:1b:67:
8b:2f:c0:e2:63:d4:5d:bd:85:53:a1:f8:7d:45:a1:d7:63:1f:
44:44:8b:ad:2b:70:67:f5:37:e4:24:b1:b9:e0:5a:99:b4:f3:
a3:ce:b2:be:40:e0:8f:fd:4f:16:4b:cc:34:5e:a6:a1:1d:e4:
4b:3f:9a:af:f3:00:9f:76:68:a3:f8:62:dd:d9:e6:d1:04:9f:
e3:7b:2c:f8
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAYkCQxIzX/KsNx29nObJVF4+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MDUxMDgwNDAwOTQwZmY0N2M4MDdkZDY3NDJiZWNiYjRl
ZGYyMmQwHhcNMjMwNjI4MTM0ODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjViODA5ZWRmMjlmZTQyZWNjNTIxZDNlNWU2YTkzMGYxMWExMzI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEuKB/HNUdnePouA+/VJz384rd9j
uXWYjXb7GGvABFKi4n/Cffwpa9NnHHbX1l+1EVTc6kvMZ3WJiu4HrZ1RiVvydjZi
W4yh5uw8RrsooRAg53e0U4BHOkdA0sQ+gHMXQdg+w1M7fffxnEJHP1qEtSIID99U
jyVHmtQM84SsUlMlLO3J7cQtMNL/Qd45x+Kd5l7aZQ05YDNQIAOBdNz7tHgE6utQ
xfgo/EVCZwar0q43o/5Vj7DsTuMGyV5RpIuPJzr72R4FYjGQdNRLgXeHaqezWe7g
zBZmEjrIdSsyJy4BKvL0MKy14Rjt/h/5KN80dLiZS5qns5057ULsF/nNkQIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFIZbgJ7fKf5C7MUh0+XmqTDxGhMnMB8GA1UdIwQY
MBaAFCQFEIBACUD/R8gH3WdCvsu07fItMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkFVUWdFQUpRUDlIeUFmZFowSy15N1R0OGkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8wYmY1ZTktZDkxMC00MDM3LThkMzct
NWQzOWQ1MDE4Zjc4LzEvaGx1QW50OHBfa0xzeFNIVDVlYXBNUEVhRXljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC8wYmY1ZTktZDkxMC00MDM3LThkMzctNWQzOWQ1MDE4Zjc4
LzEvSkFVUWdFQUpRUDlIeUFmZFowSy15N1R0OGkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAgBAIAATAaAwQDH6k4MAwD
BARVdzADBABVdzYDBAK8XrgwDQQCAAIwBwMFAyoQnYAwDQYJKoZIhvcNAQELBQAD
ggEBAIeIMKRYWER/q5x0y6QMXw+pDvpxEMy18COApH24Fk7jqEZTSp/l1mP89id3
pUcokm2VgP6HNyQRTqg5990cpZ7eEGFil/hJriMtiUnEpm6j7mdhMgHbZNNCi46D
T6MD5vK2AzdHSEW0WpIUHkY8aACkc9lgd5o6ONkOksMb5tDi0No+VgK2v4fQiw98
MQQs9LnXucwWu2rYlXDm6ruA1k+mGe3P1oG0o9wbLC6L67igtWgbZ4svwOJj1F29
hVOh+H1FoddjH0REi60rcGf1N+QksbngWpm086POsr5A4I/9TxZLzDRepqEd5Es/
mq/zAJ92aKP4Yt3Z5tEEn+N7LPg=
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:53 2024 by rpki-client on console.sobornost.net