Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/W3PRm11-H85jcYOYONZZKTGglwo.roa
File: W3PRm11-H85jcYOYONZZKTGglwo.roa (raw, json)
Hash identifier: YrS+NfXakAMMGaWIq7IcSPYF9qFE4oIP6d2f4XFeDv0=
Subject key identifier: 5B:73:D1:9B:5D:7E:1F:CE:63:71:83:98:38:D6:59:29:31:A0:97:0A
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB8B6E777BEED88DB562ABAE14E0F3
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/W3PRm11-H85jcYOYONZZKTGglwo.roa
Signing time: Sun 01 Jan 2023 19:25:11 +0000
ROA not before: Sun 01 Jan 2023 19:25:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29538
IP address blocks: 185.244.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:8b:6e:77:7b:ee:d8:8d:b5:62:ab:ae:14:e0:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b73d19b5d7e1fce6371839838d6592931a0970a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b4:dd:12:ac:1b:68:5a:cc:3c:8e:9d:03:c7:
6f:30:80:82:b2:b8:6b:f3:b7:43:47:25:16:64:27:
60:5d:09:ea:ac:9c:31:62:a8:01:8a:77:3e:c2:98:
ac:9b:d5:77:33:ca:f1:05:db:b5:4b:66:32:3c:e6:
15:50:6b:60:18:be:3a:a2:47:c8:94:4b:5f:56:81:
a2:35:59:70:18:15:98:b0:d7:ed:4d:ee:56:1e:76:
64:12:f9:f7:93:3d:e9:c9:ca:31:02:c7:ae:31:65:
d9:42:92:94:e8:6f:37:b8:11:4f:0f:83:fc:b9:d9:
15:66:08:72:27:71:52:88:c0:1b:53:7b:42:0f:a0:
d0:32:1c:3a:db:4c:93:93:36:da:87:a2:5c:9d:8b:
f7:d1:24:b9:21:af:b4:ed:49:55:8b:ff:5b:ac:07:
b1:0d:a5:44:14:0a:06:3c:14:45:62:75:6b:43:4b:
bb:74:d5:fc:7e:b7:94:48:ee:8a:06:2c:56:a1:69:
a9:cd:df:ef:3a:0c:ce:96:ed:b8:02:51:ea:49:d2:
83:64:8d:3e:4d:a6:19:0b:17:a7:2c:1d:dd:73:8d:
8a:4d:b6:10:77:e0:13:57:93:15:56:ec:60:a4:41:
e0:e9:fc:6f:1c:d4:17:ab:49:b7:00:66:da:7d:5b:
b0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:73:D1:9B:5D:7E:1F:CE:63:71:83:98:38:D6:59:29:31:A0:97:0A
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/W3PRm11-H85jcYOYONZZKTGglwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.106.0/24
Signature Algorithm: sha256WithRSAEncryption
09:cd:4e:a7:8b:02:e9:fd:30:81:0a:04:bf:a6:89:0f:51:e6:
1a:4d:60:54:11:7a:a8:0a:c9:fa:08:53:68:72:83:a4:0e:cd:
36:14:0b:31:e0:bb:d8:18:f3:7d:61:63:25:4a:d3:a6:e9:c5:
cb:3b:72:7b:bf:4e:83:35:e8:64:60:73:41:e7:95:09:f3:47:
63:9b:4d:83:51:df:59:80:2d:22:a9:8f:40:c4:d2:ab:34:cc:
d9:9c:d4:b3:da:58:15:9d:e0:4d:33:6c:27:95:9a:1e:fe:47:
8f:0f:7f:02:47:26:da:9d:58:ed:e6:21:eb:26:5e:bd:dd:04:
59:10:e1:01:9d:2f:ec:e9:a2:87:4b:ba:03:f0:c0:90:04:35:
75:ef:31:41:cf:67:18:5a:92:c3:3a:1a:b8:72:b9:fe:5c:39:
20:7f:0d:85:61:7b:18:c0:9c:b1:51:30:ae:f7:c2:1a:95:e8:
ee:81:84:36:8d:fd:f6:64:74:43:df:78:5a:88:f6:0f:91:79:
7a:7c:06:78:1f:75:d9:74:dd:d4:93:85:6f:e8:2f:b6:ba:e1:
e5:da:1c:73:74:53:29:f3:7a:91:8e:35:82:92:09:f3:b2:ca:
c4:3a:30:48:f7:76:42:96:b9:a8:45:76:50:3d:fb:df:66:8a:
36:01:b7:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuy4tud3vu2I21YquuFODzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMTQ1YThiZGYyYmNhMTUwZjI1ZWQ1NGEyNzdiOGY2NTNl
ZmRiM2UwHhcNMjMwMTAxMTkyNTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjczZDE5YjVkN2UxZmNlNjM3MTgzOTgzOGQ2NTkyOTMxYTA5NzBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77TdEqwbaFrMPI6dA8dvMICCsrhr
87dDRyUWZCdgXQnqrJwxYqgBinc+wpism9V3M8rxBdu1S2YyPOYVUGtgGL46okfI
lEtfVoGiNVlwGBWYsNftTe5WHnZkEvn3kz3pycoxAseuMWXZQpKU6G83uBFPD4P8
udkVZghyJ3FSiMAbU3tCD6DQMhw620yTkzbah6JcnYv30SS5Ia+07UlVi/9brAex
DaVEFAoGPBRFYnVrQ0u7dNX8freUSO6KBixWoWmpzd/vOgzOlu24AlHqSdKDZI0+
TaYZCxenLB3dc42KTbYQd+ATV5MVVuxgpEHg6fxvHNQXq0m3AGbafVuwvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFtz0Ztdfh/OY3GDmDjWWSkxoJcKMB8GA1UdIwQY
MBaAFCsUWovfK8oVDyXtVKJ3uPZT79s+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMt
MzA0MGJlZDNjY2NkLzEvVzNQUm0xMS1IODVqY1lPWU9OWlpLVEdnbHdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2Nk
LzEvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufRqMA0G
CSqGSIb3DQEBCwUAA4IBAQAJzU6niwLp/TCBCgS/pokPUeYaTWBUEXqoCsn6CFNo
coOkDs02FAsx4LvYGPN9YWMlStOm6cXLO3J7v06DNehkYHNB55UJ80djm02DUd9Z
gC0iqY9AxNKrNMzZnNSz2lgVneBNM2wnlZoe/kePD38CRybanVjt5iHrJl693QRZ
EOEBnS/s6aKHS7oD8MCQBDV17zFBz2cYWpLDOhq4crn+XDkgfw2FYXsYwJyxUTCu
98IalejugYQ2jf32ZHRD33haiPYPkXl6fAZ4H3XZdN3Uk4Vv6C+2uuHl2hxzdFMp
83qRjjWCkgnzssrEOjBI93ZClrmoRXZQPfvfZoo2Abeo
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:33 2024 by rpki-client on console.sobornost.net