Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/5ZJURsd_nXKTUPgrjK-jfJ45ktA.roa
File: 5ZJURsd_nXKTUPgrjK-jfJ45ktA.roa (raw, json)
Hash identifier: pHyAqotXQPnFbxCcgKeF8cN/WFjJl6t5CVqweDqvoBY=
Subject key identifier: E5:92:54:46:C7:7F:9D:72:93:50:F8:2B:8C:AF:A3:7C:9E:39:92:D0
Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Certificate serial: 01856C4156F0A9DCCF59BC2D4CB5FE8E9BA1
Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/5ZJURsd_nXKTUPgrjK-jfJ45ktA.roa
Signing time: Sun 01 Jan 2023 07:34:59 +0000
ROA not before: Sun 01 Jan 2023 07:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211216
IP address blocks: 81.31.196.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:56:f0:a9:dc:cf:59:bc:2d:4c:b5:fe:8e:9b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5
Validity
Not Before: Jan 1 07:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5925446c77f9d729350f82b8cafa37c9e3992d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2d:04:a0:5d:46:a6:6a:6d:e4:cd:39:c9:f4:
0a:31:b9:bc:a3:8f:72:34:5c:7e:d6:af:1a:f1:af:
21:e2:ca:fc:e0:ef:83:2d:ff:6c:54:e5:39:b9:c2:
ad:cb:d0:3e:1f:b1:cb:07:b9:bf:4a:55:b1:93:92:
24:39:eb:f5:26:47:4f:f1:18:7f:aa:17:1e:2d:27:
f1:db:53:f2:5f:c9:0a:ea:41:fc:04:da:e0:49:78:
2f:06:c5:8b:65:42:76:1a:26:54:14:1f:a4:68:d1:
dd:cc:64:cf:fe:ca:f4:7d:4d:66:81:00:0c:b1:ae:
8a:16:e0:d3:34:01:06:57:8e:81:5c:63:d9:43:10:
a9:c0:5d:ca:28:25:9b:50:26:8f:4f:dc:fe:45:64:
bb:8b:8b:14:84:e1:89:24:1c:3f:2f:95:ca:36:ae:
02:c3:7d:94:94:29:ea:b0:e0:c7:3b:6b:63:2c:d7:
44:42:13:78:3d:84:57:d8:63:e4:fe:8b:fb:fc:dd:
2e:75:e9:e3:71:5f:f5:8f:de:10:18:37:bd:53:16:
d3:23:df:fb:67:ad:44:a2:dd:64:24:98:53:9e:6f:
88:85:d7:bc:ea:28:76:ee:02:50:80:4b:ab:80:a9:
3f:82:c6:50:af:34:4d:6b:13:9f:85:e7:df:8c:f9:
cf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:92:54:46:C7:7F:9D:72:93:50:F8:2B:8C:AF:A3:7C:9E:39:92:D0
X509v3 Authority Key Identifier:
keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/5ZJURsd_nXKTUPgrjK-jfJ45ktA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.196.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5e:ad:16:22:e8:ca:a7:4b:9c:af:76:02:d5:e5:9e:a7:21:
dc:10:cd:bd:45:6d:79:c8:76:31:78:e2:24:53:22:b5:75:66:
dd:c5:3e:80:95:ad:4f:54:68:61:6d:66:70:d8:2f:e4:45:59:
2a:e6:46:5f:08:54:66:1d:55:4e:b0:c0:bb:87:25:6d:0a:cc:
7d:95:2f:24:44:75:8d:34:d2:7c:c3:3e:c3:97:0b:8c:14:67:
5e:0d:60:e2:db:e8:02:d8:7a:36:19:93:1d:e6:13:6c:72:ba:
63:5d:38:4a:13:bb:f7:c1:74:1f:3d:fa:3e:8b:4b:b7:5b:d8:
79:19:dd:02:85:d0:6a:53:21:14:09:f4:65:15:e5:12:35:38:
13:77:6b:ac:54:cd:aa:7d:ea:d2:19:d2:e9:56:05:92:26:9b:
89:3c:8a:91:65:8d:93:42:59:06:15:af:b0:e2:c4:a8:ed:d8:
e0:93:95:cd:39:5b:07:9c:79:7d:e0:ca:16:2a:cb:4b:e7:32:
41:f4:fc:c1:bc:a1:3b:28:62:a1:55:6c:52:89:97:68:ca:1f:
24:9d:e6:90:cb:97:7a:03:24:bb:96:f0:e8:fc:10:72:ce:d8:
6f:ba:b7:5d:af:4c:e3:1c:d3:c6:41:e1:16:47:07:60:e5:c2:
99:27:8f:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsQVbwqdzPWbwtTLX+jpuhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMTM2ZTAxZmZhZjg1M2RiYjJhNWNmY2ZlNWQxYjY3ZDIw
YzIwYjUwHhcNMjMwMTAxMDczNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTkyNTQ0NmM3N2Y5ZDcyOTM1MGY4MmI4Y2FmYTM3YzllMzk5MmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkS0EoF1Gpmpt5M05yfQKMbm8o49y
NFx+1q8a8a8h4sr84O+DLf9sVOU5ucKty9A+H7HLB7m/SlWxk5IkOev1JkdP8Rh/
qhceLSfx21PyX8kK6kH8BNrgSXgvBsWLZUJ2GiZUFB+kaNHdzGTP/sr0fU1mgQAM
sa6KFuDTNAEGV46BXGPZQxCpwF3KKCWbUCaPT9z+RWS7i4sUhOGJJBw/L5XKNq4C
w32UlCnqsODHO2tjLNdEQhN4PYRX2GPk/ov7/N0udenjcV/1j94QGDe9UxbTI9/7
Z61Eot1kJJhTnm+Ihde86ih27gJQgEurgKk/gsZQrzRNaxOfheffjPnPKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOWSVEbHf51yk1D4K4yvo3yeOZLQMB8GA1UdIwQY
MBaAFM8TbgH/r4U9uypc/P5dG2fSDCC1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenhOdUFmLXZoVDI3S2x6OF9sMGJaOUlNSUxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MDI1NjQtNTBhNS00ZmFkLWExMmYt
NjVkYmE2M2IxYTgyLzEvNVpKVVJzZF9uWEtUVVBncmpLLWpmSjQ1a3RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy83MDI1NjQtNTBhNS00ZmFkLWExMmYtNjVkYmE2M2IxYTgy
LzEvenhOdUFmLXZoVDI3S2x6OF9sMGJaOUlNSUxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR/EMA0G
CSqGSIb3DQEBCwUAA4IBAQBzXq0WIujKp0ucr3YC1eWepyHcEM29RW15yHYxeOIk
UyK1dWbdxT6Ala1PVGhhbWZw2C/kRVkq5kZfCFRmHVVOsMC7hyVtCsx9lS8kRHWN
NNJ8wz7DlwuMFGdeDWDi2+gC2Ho2GZMd5hNscrpjXThKE7v3wXQfPfo+i0u3W9h5
Gd0ChdBqUyEUCfRlFeUSNTgTd2usVM2qferSGdLpVgWSJpuJPIqRZY2TQlkGFa+w
4sSo7djgk5XNOVsHnHl94MoWKstL5zJB9PzBvKE7KGKhVWxSiZdoyh8kneaQy5d6
AyS7lvDo/BByzthvurddr0zjHNPGQeEWRwdg5cKZJ4/i
-----END CERTIFICATE-----
Generated at Tue Jan 2 16:35:14 2024 by rpki-client on console.sobornost.net