Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/5HWFz3xYCmejvz9fVFsQBoFl8ms.roa
File: 5HWFz3xYCmejvz9fVFsQBoFl8ms.roa (raw, json)
Hash identifier: 0l7kpIg0gzizrV8zLU+CP8AEBtCEiBFaPy6TrSD1D0s=
Subject key identifier: E4:75:85:CF:7C:58:0A:67:A3:BF:3F:5F:54:5B:10:06:81:65:F2:6B
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 0185A5D259E772AE45896F32217C6056FDCF
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/5HWFz3xYCmejvz9fVFsQBoFl8ms.roa
Signing time: Thu 12 Jan 2023 11:51:44 +0000
ROA not before: Thu 12 Jan 2023 11:51:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8038
IP address blocks: 46.244.20.0/24 maxlen: 24
178.249.157.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:d2:59:e7:72:ae:45:89:6f:32:21:7c:60:56:fd:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Jan 12 11:51:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47585cf7c580a67a3bf3f5f545b10068165f26b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:f4:8d:11:77:df:2f:a0:93:51:ed:92:50:9e:
f3:3e:7f:c0:e0:2b:2e:53:9c:d3:c1:8b:4e:16:d9:
f3:0f:39:a9:26:e2:b4:bc:b5:28:05:65:d0:83:80:
af:73:ae:8a:3f:3f:59:19:62:94:ae:3c:d1:92:18:
c9:e8:ba:09:71:19:62:77:e6:e3:5c:e7:4d:39:11:
8a:8b:cd:45:9b:6d:6b:81:87:25:e2:88:aa:14:22:
52:78:51:06:45:56:50:e9:2d:b9:07:4c:1a:ff:6f:
9d:7c:bb:36:ca:f4:07:6c:94:5e:c2:90:8f:fa:a3:
30:2c:d5:66:c3:3c:3a:01:ad:e2:9b:35:3e:db:71:
42:ee:dd:fc:07:3f:10:df:33:05:2f:dd:31:ee:bd:
5a:eb:86:c2:1b:14:0f:99:bc:31:e5:73:f8:37:e2:
02:ad:0a:1b:e8:d3:8b:1c:ff:57:41:3e:ba:1e:a9:
9e:4f:e3:8e:33:53:de:06:bf:9b:1c:af:23:59:f4:
10:4c:2e:ce:89:af:df:7d:3d:e5:1c:c3:07:7b:15:
26:2b:5f:34:b2:f2:0b:1c:2b:6a:c5:7d:4f:c3:36:
30:ea:c2:2c:00:54:a2:5c:7e:fc:59:0c:ab:cf:78:
31:44:75:de:33:1c:25:cc:e3:3d:81:18:02:45:01:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:75:85:CF:7C:58:0A:67:A3:BF:3F:5F:54:5B:10:06:81:65:F2:6B
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/5HWFz3xYCmejvz9fVFsQBoFl8ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.244.20.0/24
178.249.157.0/24
Signature Algorithm: sha256WithRSAEncryption
23:54:7c:a3:f8:ff:2d:0d:01:bc:d3:c4:8b:41:d6:4a:8b:9e:
4c:27:84:15:f1:e4:66:3a:d4:3d:98:7b:81:d9:8e:a5:f3:97:
3c:56:cb:94:33:8d:6d:33:7f:77:a2:aa:92:8a:d8:4e:a9:32:
d9:c4:8d:27:af:3a:8d:73:19:fb:98:89:2b:55:2e:2e:cf:3a:
33:3c:1c:b1:4a:89:5f:7c:3e:1b:ff:cd:0c:8a:0f:ae:ab:43:
16:fa:5a:65:e3:ba:b2:4f:9f:8d:9c:50:49:8f:fe:75:30:1d:
42:c6:7e:14:d5:af:0a:9b:a6:f1:64:35:73:1e:d0:37:cd:20:
41:68:6b:a8:2d:a3:44:14:1f:c7:ea:10:4f:81:13:38:2b:a2:
e0:87:90:ae:7c:8d:08:b8:7b:72:49:09:75:d5:60:82:28:41:
92:f3:56:c0:eb:85:c2:c4:38:9e:ef:ff:2a:b0:d2:53:7b:81:
8f:93:23:10:f5:6e:15:93:ba:90:9d:1c:ee:08:e7:43:7c:93:
e5:75:f7:84:c2:76:a0:76:23:55:50:c5:d3:8f:e0:b8:07:ea:
92:3d:7e:19:e9:82:b5:2b:43:6f:d9:ef:97:4d:e3:40:3b:f9:
15:0e:9d:4c:19:0e:c5:55:d7:b6:b2:74:44:50:80:b1:40:d5:
78:08:81:2a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYWl0lnncq5FiW8yIXxgVv3PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlNjI2YzkwOWViNDk1MTE1NGJjZWU4MjIxZTQzOTUxYjQy
NTc2MjQwHhcNMjMwMTEyMTE1MTQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDc1ODVjZjdjNTgwYTY3YTNiZjNmNWY1NDViMTAwNjgxNjVmMjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7fSNEXffL6CTUe2SUJ7zPn/A4Csu
U5zTwYtOFtnzDzmpJuK0vLUoBWXQg4Cvc66KPz9ZGWKUrjzRkhjJ6LoJcRlid+bj
XOdNORGKi81Fm21rgYcl4oiqFCJSeFEGRVZQ6S25B0wa/2+dfLs2yvQHbJRewpCP
+qMwLNVmwzw6Aa3imzU+23FC7t38Bz8Q3zMFL90x7r1a64bCGxQPmbwx5XP4N+IC
rQob6NOLHP9XQT66HqmeT+OOM1PeBr+bHK8jWfQQTC7Oia/ffT3lHMMHexUmK180
svILHCtqxX1PwzYw6sIsAFSiXH78WQyrz3gxRHXeMxwlzOM9gRgCRQGHBQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOR1hc98WApno78/X1RbEAaBZfJrMB8GA1UdIwQY
MBaAFI5ibJCetJURVLzugiHkOVG0JXYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvam1Kc2tKNjBsUkZVdk82Q0llUTVVYlFsZGlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9mZTQyNjYtN2Y1NC00ZmIzLWI4MTAt
ZTk3ZDFkMDIyMGFmLzEvNUhXRnozeFlDbWVqdno5ZlZGc1FCb0ZsOG1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9mZTQyNjYtN2Y1NC00ZmIzLWI4MTAtZTk3ZDFkMDIyMGFm
LzEvam1Kc2tKNjBsUkZVdk82Q0llUTVVYlFsZGlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALvQUAwQA
svmdMA0GCSqGSIb3DQEBCwUAA4IBAQAjVHyj+P8tDQG808SLQdZKi55MJ4QV8eRm
OtQ9mHuB2Y6l85c8VsuUM41tM393oqqSithOqTLZxI0nrzqNcxn7mIkrVS4uzzoz
PByxSolffD4b/80Mig+uq0MW+lpl47qyT5+NnFBJj/51MB1Cxn4U1a8Km6bxZDVz
HtA3zSBBaGuoLaNEFB/H6hBPgRM4K6Lgh5CufI0IuHtySQl11WCCKEGS81bA64XC
xDie7/8qsNJTe4GPkyMQ9W4Vk7qQnRzuCOdDfJPldfeEwnagdiNVUMXTj+C4B+qS
PX4Z6YK1K0Nv2e+XTeNAO/kVDp1MGQ7FVde2snREUICxQNV4CIEq
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:01 2024 by rpki-client on console.sobornost.net