Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/bpT0m6JTnJSb1_ttnMoGuZGtho0.roa
File: bpT0m6JTnJSb1_ttnMoGuZGtho0.roa (raw, json)
Hash identifier: iD0cfYXqhUhp/1oaehlzpoKOm387ooAwREPtC6UbshQ=
Subject key identifier: 6E:94:F4:9B:A2:53:9C:94:9B:D7:FB:6D:9C:CA:06:B9:91:AD:86:8D
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 0189BF36AA317D4F3E5CED3D948EAF1CCE8E
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/bpT0m6JTnJSb1_ttnMoGuZGtho0.roa
Signing time: Fri 04 Aug 2023 06:22:58 +0000
ROA not before: Fri 04 Aug 2023 06:22:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.66.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bf:36:aa:31:7d:4f:3e:5c:ed:3d:94:8e:af:1c:ce:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Aug 4 06:22:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e94f49ba2539c949bd7fb6d9cca06b991ad868d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:00:e1:e2:17:cd:c3:da:7c:2b:13:94:a8:
e3:27:1d:85:c0:26:8f:0a:4c:e8:ba:96:b7:b1:e6:
ba:aa:9c:00:a9:fd:81:28:c6:09:45:4f:1d:cc:ee:
92:a2:85:b1:f0:94:bd:a9:f7:6d:22:87:e1:e2:6d:
b7:91:84:ac:32:a0:e7:ca:e0:1c:79:48:19:e0:34:
ee:30:3c:84:21:34:de:88:70:10:f3:2d:50:b2:3f:
2a:4d:60:c7:66:84:d1:cf:98:52:60:f2:4f:d9:26:
ef:77:85:27:53:e7:b3:8d:41:30:2c:c6:2e:e3:b2:
28:5b:e9:5e:73:e0:a1:ee:bc:14:49:be:33:95:7e:
8b:4f:95:04:88:c1:b7:49:1a:79:fa:8d:57:b3:d5:
52:89:7e:ea:91:e4:39:9c:47:23:e5:7a:ff:94:9c:
5d:83:8b:5d:8a:c8:ad:fd:0a:db:61:b8:b2:d8:6d:
5d:29:6a:a5:21:48:64:ad:2d:7d:45:c8:99:70:00:
6f:e8:9c:01:93:10:21:a3:c9:f3:0d:9b:07:13:e3:
87:6a:22:bc:d7:8f:98:bc:0d:a3:49:e7:59:39:71:
99:5c:96:c6:59:22:1e:4a:2a:9f:bc:36:06:da:ec:
ef:2b:82:99:a6:db:17:75:49:24:34:3c:ec:e8:02:
52:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:94:F4:9B:A2:53:9C:94:9B:D7:FB:6D:9C:CA:06:B9:91:AD:86:8D
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/bpT0m6JTnJSb1_ttnMoGuZGtho0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.66.0/23
Signature Algorithm: sha256WithRSAEncryption
57:2d:cd:6e:76:76:39:a7:39:d0:fb:9d:c1:73:eb:5c:21:6d:
e3:f7:2a:3c:1f:a9:aa:9d:2e:fa:32:97:20:12:b2:fc:19:eb:
be:81:b9:af:57:7b:6a:3b:cc:c5:d3:c4:1e:94:49:e8:64:54:
99:3c:69:15:98:29:92:70:c7:7f:e8:27:c2:68:a2:5f:2e:f0:
20:8b:d2:4d:93:92:f9:48:e0:cf:3a:6a:46:7c:7c:d1:9b:2a:
68:80:71:df:97:4b:c7:b2:0e:06:d4:e6:d5:db:66:75:e4:35:
66:0c:ad:1f:13:e5:f5:a1:df:5a:14:1a:42:d0:cc:17:2b:0d:
79:29:50:ab:af:4e:13:68:39:27:fd:fe:6c:d5:cf:fc:85:ea:
6b:0f:7e:4c:d8:3c:de:a4:50:10:19:50:cd:f4:8d:53:74:e7:
20:6e:a4:83:58:35:cc:90:88:42:c3:d6:30:a7:dc:5c:b9:30:
c0:b9:3f:40:aa:79:23:95:17:7a:3c:2f:1b:00:b3:d4:5e:23:
97:bd:7f:68:88:14:1f:11:b8:3c:a7:9f:1f:18:ca:7c:52:1f:
de:d6:92:bd:ed:ad:26:2e:ac:33:c8:41:44:6f:af:d4:e2:2f:
1d:07:6c:b2:7e:10:05:c2:a4:bc:8c:17:5f:79:31:75:d6:f8:
e1:7c:74:0a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm/NqoxfU8+XO09lI6vHM6OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMTQ1YThiZGYyYmNhMTUwZjI1ZWQ1NGEyNzdiOGY2NTNl
ZmRiM2UwHhcNMjMwODA0MDYyMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTk0ZjQ5YmEyNTM5Yzk0OWJkN2ZiNmQ5Y2NhMDZiOTkxYWQ4NjhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMIA4eIXzcPafCsTlKjjJx2FwCaP
Ckzoupa3sea6qpwAqf2BKMYJRU8dzO6SooWx8JS9qfdtIofh4m23kYSsMqDnyuAc
eUgZ4DTuMDyEITTeiHAQ8y1Qsj8qTWDHZoTRz5hSYPJP2Sbvd4UnU+ezjUEwLMYu
47IoW+lec+Ch7rwUSb4zlX6LT5UEiMG3SRp5+o1Xs9VSiX7qkeQ5nEcj5Xr/lJxd
g4tdisit/QrbYbiy2G1dKWqlIUhkrS19RciZcABv6JwBkxAho8nzDZsHE+OHaiK8
14+YvA2jSedZOXGZXJbGWSIeSiqfvDYG2uzvK4KZptsXdUkkNDzs6AJSewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG6U9JuiU5yUm9f7bZzKBrmRrYaNMB8GA1UdIwQY
MBaAFCsUWovfK8oVDyXtVKJ3uPZT79s+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMt
MzA0MGJlZDNjY2NkLzEvYnBUMG02SlRuSlNiMV90dG5Nb0d1Wkd0aG8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2Nk
LzEvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZtCMA0G
CSqGSIb3DQEBCwUAA4IBAQBXLc1udnY5pznQ+53Bc+tcIW3j9yo8H6mqnS76Mpcg
ErL8Geu+gbmvV3tqO8zF08QelEnoZFSZPGkVmCmScMd/6CfCaKJfLvAgi9JNk5L5
SODPOmpGfHzRmypogHHfl0vHsg4G1ObV22Z15DVmDK0fE+X1od9aFBpC0MwXKw15
KVCrr04TaDkn/f5s1c/8heprD35M2DzepFAQGVDN9I1TdOcgbqSDWDXMkIhCw9Yw
p9xcuTDAuT9AqnkjlRd6PC8bALPUXiOXvX9oiBQfEbg8p58fGMp8Uh/e1pK97a0m
LqwzyEFEb6/U4i8dB2yyfhAFwqS8jBdfeTF11vjhfHQK
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:33 2024 by rpki-client on console.sobornost.net