Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/rmWxq9faKNonXxXMzVdYpnkhtxQ.roa
File: rmWxq9faKNonXxXMzVdYpnkhtxQ.roa (raw, json)
Hash identifier: e8HWJu0ELmZGsOCDu5UFmxLuQHgi8CdFOxKPodi80Es=
Subject key identifier: AE:65:B1:AB:D7:DA:28:DA:27:5F:15:CC:CD:57:58:A6:79:21:B7:14
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 0185701EDC474ECB8D8FE1546009D0AA0C06
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/rmWxq9faKNonXxXMzVdYpnkhtxQ.roa
Signing time: Mon 02 Jan 2023 01:35:48 +0000
ROA not before: Mon 02 Jan 2023 01:35:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13101
IP address blocks: 95.214.160.0/22 maxlen: 22
185.243.68.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:dc:47:4e:cb:8d:8f:e1:54:60:09:d0:aa:0c:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Jan 2 01:35:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae65b1abd7da28da275f15cccd5758a67921b714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0b:8c:e2:48:17:bd:86:44:bd:7f:93:f9:2d:
ec:33:64:99:75:7c:d3:d4:f9:db:fd:ec:43:52:c0:
79:1c:d0:be:62:f5:65:47:b2:4a:17:fb:4e:45:15:
b1:74:b4:de:93:7c:25:85:d5:6e:f6:55:6c:28:cb:
fb:19:4f:07:ec:d1:09:31:b5:3c:78:98:f2:71:07:
bb:ec:47:42:3b:3f:01:f8:91:05:2d:65:bb:50:75:
5d:e9:78:b0:9f:70:91:66:45:83:fd:5f:21:6a:fe:
ff:c4:6e:eb:6b:57:b7:22:87:12:de:9c:5f:44:5d:
00:a1:9a:da:b4:e3:f0:71:f2:12:3f:a8:5a:6c:fb:
04:fc:d4:6f:8b:55:ab:a0:0c:45:c6:91:eb:43:a1:
27:39:67:66:bb:ef:c4:4c:44:46:bf:b0:19:10:49:
5f:64:53:d3:9e:24:26:ff:d2:25:8b:b5:e7:8e:0b:
5f:ac:b6:dc:ee:95:e9:08:b3:77:70:15:2a:3b:b3:
51:33:7d:37:3f:6c:81:eb:bd:b8:a5:2f:02:ab:10:
56:2c:3c:f9:22:7d:86:55:7b:81:f4:b4:cf:69:9d:
82:90:3d:fb:20:59:0b:a0:ef:c6:5d:1c:62:75:aa:
4b:43:8a:64:ad:b6:f5:75:37:f6:9e:c1:31:37:53:
55:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:65:B1:AB:D7:DA:28:DA:27:5F:15:CC:CD:57:58:A6:79:21:B7:14
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/rmWxq9faKNonXxXMzVdYpnkhtxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.160.0/22
185.243.68.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:f3:5e:63:66:7d:5b:79:11:da:5f:6f:20:98:c8:59:a5:c8:
7f:d9:70:c3:0d:01:0f:7f:87:84:2e:29:11:dc:b5:dd:d9:3a:
51:ae:29:94:94:2d:45:a0:b9:8a:20:6e:35:c1:54:e9:43:31:
c7:35:28:9a:08:b8:89:42:db:ef:be:d4:ef:57:53:ef:bf:4e:
a9:5a:fd:55:7d:c2:f6:ff:bb:8d:7a:86:2b:5b:bd:df:26:4b:
48:7a:4c:f7:0e:60:24:63:74:7a:ba:c6:d9:75:47:2b:be:c6:
11:1c:45:c9:21:a6:da:21:6e:ea:eb:1c:99:22:f4:0e:ed:07:
31:33:eb:ce:9a:db:27:74:7b:dd:f4:3c:a0:17:56:98:9d:8b:
7a:d2:6e:21:26:67:c8:0f:67:db:bb:6f:e8:bf:49:dc:9b:16:
d0:2d:b0:5a:da:2c:b2:6f:c8:2a:19:5b:89:1b:d3:68:ec:34:
79:3e:c2:ac:54:a1:94:cc:f6:ea:76:d9:b4:8e:e9:47:0d:c8:
82:1e:67:9f:64:19:4b:17:63:41:21:7f:0c:17:4e:fe:3a:99:
3a:a0:cc:bf:4d:19:36:c7:cd:95:f4:e8:9d:4d:dd:ef:14:7e:
28:57:3b:02:d7:71:93:33:a5:b0:f0:21:bd:09:a7:92:23:56:
01:2b:3f:1c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwHtxHTsuNj+FUYAnQqgwGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MTZhYWE1ZDI1MmZkOTAxNDVmZWRhYzY4Mzc2MmQ2ZTIw
NzQxNTUwHhcNMjMwMTAyMDEzNTQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTY1YjFhYmQ3ZGEyOGRhMjc1ZjE1Y2NjZDU3NThhNjc5MjFiNzE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAuM4kgXvYZEvX+T+S3sM2SZdXzT
1Pnb/exDUsB5HNC+YvVlR7JKF/tORRWxdLTek3wlhdVu9lVsKMv7GU8H7NEJMbU8
eJjycQe77EdCOz8B+JEFLWW7UHVd6Xiwn3CRZkWD/V8hav7/xG7ra1e3IocS3pxf
RF0AoZratOPwcfISP6habPsE/NRvi1WroAxFxpHrQ6EnOWdmu+/ETERGv7AZEElf
ZFPTniQm/9Ili7XnjgtfrLbc7pXpCLN3cBUqO7NRM303P2yB6724pS8CqxBWLDz5
In2GVXuB9LTPaZ2CkD37IFkLoO/GXRxidapLQ4pkrbb1dTf2nsExN1NVtwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFK5lsavX2ijaJ18VzM1XWKZ5IbcUMB8GA1UdIwQY
MBaAFIkWqqXSUv2QFF/trGg3YtbiB0FVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYt
ZDY5ZWE5M2NiYWZiLzEvcm1XeHE5ZmFLTm9uWHhYTXpWZFlwbmtodHhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYtZDY5ZWE5M2NiYWZi
LzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCX9agAwQC
ufNEMA0GCSqGSIb3DQEBCwUAA4IBAQCM815jZn1beRHaX28gmMhZpch/2XDDDQEP
f4eELikR3LXd2TpRrimUlC1FoLmKIG41wVTpQzHHNSiaCLiJQtvvvtTvV1Pvv06p
Wv1VfcL2/7uNeoYrW73fJktIekz3DmAkY3R6usbZdUcrvsYRHEXJIabaIW7q6xyZ
IvQO7QcxM+vOmtsndHvd9DygF1aYnYt60m4hJmfID2fbu2/ov0ncmxbQLbBa2iyy
b8gqGVuJG9No7DR5PsKsVKGUzPbqdtm0julHDciCHmefZBlLF2NBIX8MF07+Opk6
oMy/TRk2x82V9OidTd3vFH4oVzsC13GTM6Ww8CG9CaeSI1YBKz8c
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:26 2023 by rpki-client on console.sobornost.net