Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/aWf3_HLNMKFN-pQDaaUGCXJZBSE.roa
File: aWf3_HLNMKFN-pQDaaUGCXJZBSE.roa (raw, json)
Hash identifier: QFjUnaDqBVsJIQ7eK8cIg+6E9yczymfzm+VOcM6Tfb8=
Subject key identifier: 69:67:F7:FC:72:CD:30:A1:4D:FA:94:03:69:A5:06:09:72:59:05:21
Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Certificate serial: 018573BA9DB561455C1F89614DD88E970AEC
Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/aWf3_HLNMKFN-pQDaaUGCXJZBSE.roa
Signing time: Mon 02 Jan 2023 18:24:47 +0000
ROA not before: Mon 02 Jan 2023 18:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60231
IP address blocks: 93.189.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:9d:b5:61:45:5c:1f:89:61:4d:d8:8e:97:0a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Validity
Not Before: Jan 2 18:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6967f7fc72cd30a14dfa940369a5060972590521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:70:1a:95:24:12:b7:5d:93:ae:4d:ca:25:2c:
d8:1a:43:46:71:24:49:57:61:e4:0b:9e:3e:f2:c6:
bf:7c:c3:3d:cf:89:c0:ba:27:61:c2:89:39:91:36:
26:d6:de:a6:87:79:09:d2:0c:74:94:b7:2d:ab:e5:
b4:84:9d:d5:7f:36:77:56:e1:d2:1e:f2:26:bb:d5:
b1:45:bf:49:40:59:4d:10:db:76:ef:d8:73:07:28:
82:28:b6:6f:5c:55:99:46:66:a6:1f:3e:6e:27:e7:
9f:a4:b4:aa:ad:91:f8:c4:91:3b:f3:98:16:18:2f:
a0:91:b4:22:47:bd:64:4e:1f:d6:1d:ed:30:15:46:
d3:f7:49:2e:db:29:9a:c7:ae:ce:21:5a:20:5e:a7:
ea:ed:b9:e9:a4:46:6e:1a:96:84:30:21:b5:b6:74:
66:ba:d0:f6:13:7b:20:dc:8f:2a:67:95:91:a6:5b:
e2:35:22:d2:e5:8f:48:ee:18:02:ee:e6:7e:be:61:
81:d2:7e:cc:50:a3:d9:d5:00:d4:b0:67:40:c6:2e:
d3:15:67:45:97:1e:3a:59:01:6d:d2:1c:ef:27:e9:
c8:58:81:e6:8d:fb:a6:ce:75:92:c0:9a:11:6c:4c:
0c:39:bf:08:e1:f9:58:f3:34:b4:d9:dc:1c:19:ed:
57:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:67:F7:FC:72:CD:30:A1:4D:FA:94:03:69:A5:06:09:72:59:05:21
X509v3 Authority Key Identifier:
keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/aWf3_HLNMKFN-pQDaaUGCXJZBSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.189.148.0/24
Signature Algorithm: sha256WithRSAEncryption
42:56:6c:3e:d1:04:18:69:bc:a6:2e:79:33:49:4a:6b:be:6d:
7c:86:a0:85:49:40:aa:43:ca:bc:8d:12:7c:59:43:cc:7c:d1:
1c:c6:32:e2:d1:90:23:4b:ce:31:78:9b:40:21:b2:ff:4d:d4:
0a:95:98:0b:a2:8d:e2:0d:2b:01:53:8e:3c:32:e9:33:57:d0:
90:c9:9b:7f:bc:11:28:21:e6:ad:16:96:97:90:68:59:9f:42:
de:00:2b:8a:7c:9a:8e:4e:bc:bb:75:0f:a3:05:52:6c:29:cf:
51:25:8c:66:97:e3:a1:66:13:5c:64:50:6d:c6:89:47:75:22:
98:a0:06:90:5e:f9:33:8f:26:ef:22:47:6e:cd:f3:1f:53:a1:
6f:e3:c9:9e:f3:ff:56:15:95:fb:82:da:a6:aa:d3:0b:45:d9:
3c:68:38:bc:22:14:f4:61:36:83:30:94:88:04:5e:ee:59:eb:
7d:c0:ff:b2:7f:8d:e6:da:01:0e:ad:f4:1b:ba:ea:c5:a3:b1:
5a:5c:6a:d2:9b:06:ab:14:21:46:40:54:8d:e4:ae:31:f3:b2:
3e:86:5d:62:5e:c9:cb:82:d4:db:eb:36:2e:ec:6b:90:25:f5:
26:35:83:86:f1:ad:12:0a:b8:3d:47:43:b7:98:00:bc:20:6f:
1c:f9:66:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzup21YUVcH4lhTdiOlwrsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzNDM1MTQ2MzBkYzE3ZjNmZTliNTFkZDQzNDE4NGQwYjYy
YjAzYzAwHhcNMjMwMTAyMTgyNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTY3ZjdmYzcyY2QzMGExNGRmYTk0MDM2OWE1MDYwOTcyNTkwNTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXAalSQSt12Trk3KJSzYGkNGcSRJ
V2HkC54+8sa/fMM9z4nAuidhwok5kTYm1t6mh3kJ0gx0lLctq+W0hJ3VfzZ3VuHS
HvImu9WxRb9JQFlNENt279hzByiCKLZvXFWZRmamHz5uJ+efpLSqrZH4xJE785gW
GC+gkbQiR71kTh/WHe0wFUbT90ku2ymax67OIVogXqfq7bnppEZuGpaEMCG1tnRm
utD2E3sg3I8qZ5WRplviNSLS5Y9I7hgC7uZ+vmGB0n7MUKPZ1QDUsGdAxi7TFWdF
lx46WQFt0hzvJ+nIWIHmjfumznWSwJoRbEwMOb8I4flY8zS02dwcGe1XYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGln9/xyzTChTfqUA2mlBglyWQUhMB8GA1UdIwQY
MBaAFLNDUUYw3Bfz/ptR3UNBhNC2KwPAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczBOUlJqRGNGX1AtbTFIZFEwR0UwTFlyQThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMzgwNDYtN2JlMC00MDE3LWE5OGIt
YTcyNDdlOWQ1ZjNhLzEvYVdmM19ITE5NS0ZOLXBRRGFhVUdDWEpaQlNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8xMzgwNDYtN2JlMC00MDE3LWE5OGItYTcyNDdlOWQ1ZjNh
LzEvczBOUlJqRGNGX1AtbTFIZFEwR0UwTFlyQThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXb2UMA0G
CSqGSIb3DQEBCwUAA4IBAQBCVmw+0QQYabymLnkzSUprvm18hqCFSUCqQ8q8jRJ8
WUPMfNEcxjLi0ZAjS84xeJtAIbL/TdQKlZgLoo3iDSsBU448MukzV9CQyZt/vBEo
IeatFpaXkGhZn0LeACuKfJqOTry7dQ+jBVJsKc9RJYxml+OhZhNcZFBtxolHdSKY
oAaQXvkzjybvIkduzfMfU6Fv48me8/9WFZX7gtqmqtMLRdk8aDi8IhT0YTaDMJSI
BF7uWet9wP+yf43m2gEOrfQbuurFo7FaXGrSmwarFCFGQFSN5K4x87I+hl1iXsnL
gtTb6zYu7GuQJfUmNYOG8a0SCrg9R0O3mAC8IG8c+WZp
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:07 2024 by rpki-client on console.sobornost.net