Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/faM28iayQFNJEa0YqX-3Rg6vDfM.roa
File: faM28iayQFNJEa0YqX-3Rg6vDfM.roa (raw, json)
Hash identifier: QyRoJzX0BgK8EZfPBWj1xiybGHSCH7TDLZhxqgV3+y4=
Subject key identifier: 7D:A3:36:F2:26:B2:40:53:49:11:AD:18:A9:7F:B7:46:0E:AF:0D:F3
Certificate issuer: /CN=56e3353d5f423ad4271c3261caa543140530bddb
Certificate serial: 01856D4A944AA0473FD731E9F4AF239DC76E
Authority key identifier: 56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/faM28iayQFNJEa0YqX-3Rg6vDfM.roa
Signing time: Sun 01 Jan 2023 12:24:42 +0000
ROA not before: Sun 01 Jan 2023 12:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33871
IP address blocks: 80.67.208.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:94:4a:a0:47:3f:d7:31:e9:f4:af:23:9d:c7:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56e3353d5f423ad4271c3261caa543140530bddb
Validity
Not Before: Jan 1 12:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7da336f226b240534911ad18a97fb7460eaf0df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4c:75:2b:a3:48:37:85:7e:c9:c4:6a:3b:b1:
a4:b9:b6:6a:5a:09:ea:30:3b:c3:68:60:5f:80:b8:
63:4a:3b:91:07:d6:e3:0d:e1:23:cc:ff:9a:58:d2:
2c:55:e5:a0:eb:e1:dd:df:f1:53:5b:91:62:ae:9c:
37:64:dd:6e:f5:20:19:3d:51:94:1d:da:e6:6b:61:
53:4e:f8:2e:48:78:01:87:a0:61:f1:15:57:a3:bc:
b3:67:72:58:b4:16:d4:dc:5d:5f:a2:25:ce:a5:74:
20:85:42:4a:aa:37:c6:4b:01:c7:97:1e:ef:77:63:
87:55:20:3a:10:34:ad:b9:ef:e6:f5:1c:0c:51:3c:
11:43:04:5e:7f:ee:96:49:62:c6:39:47:21:e3:4d:
6b:09:9e:b5:4d:9d:9a:6b:92:f6:c6:51:01:55:64:
e9:b9:85:63:e2:9e:27:5a:6c:0b:90:56:c6:af:51:
d8:2c:03:fb:8e:d9:9c:3e:80:73:a1:82:0a:8a:58:
cf:cc:e8:35:6a:50:f0:b8:7d:32:2f:22:35:5b:b8:
da:00:fc:98:4c:af:3b:10:e5:89:19:62:89:72:f7:
32:af:a0:b8:ea:18:da:e6:87:f6:b3:3e:ff:6a:2f:
cd:a9:7a:4f:8d:1a:b6:b3:07:e2:cc:4b:82:67:ff:
63:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A3:36:F2:26:B2:40:53:49:11:AD:18:A9:7F:B7:46:0E:AF:0D:F3
X509v3 Authority Key Identifier:
keyid:56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/faM28iayQFNJEa0YqX-3Rg6vDfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.208.0/20
Signature Algorithm: sha256WithRSAEncryption
71:34:0c:c8:27:e5:52:e5:74:e2:4c:51:73:03:2d:a7:87:d4:
01:a7:1f:65:23:7a:8d:34:02:9b:79:d7:77:14:89:c2:d4:b7:
67:d8:98:70:52:89:60:81:bc:d9:0e:5b:bc:1b:2f:39:ae:79:
ed:ca:7d:f0:39:23:6c:bb:2b:1b:cb:95:0b:df:fe:1c:a3:32:
f1:27:c3:17:88:d2:e1:96:a1:28:22:f7:94:ea:63:f4:c5:8b:
7e:b3:ea:f5:7e:1f:b0:d8:05:4f:2f:6a:77:57:ae:e4:2b:1a:
72:56:a8:c0:d4:98:96:c1:41:97:6e:44:03:77:38:24:c3:d5:
7d:c8:55:0b:9e:38:b8:cd:30:30:50:33:cb:a1:14:89:30:ad:
93:e1:99:92:9e:e6:b0:48:8d:36:8a:51:fe:ea:49:45:56:a6:
2e:29:2f:8d:af:7b:ee:a8:0c:a2:5e:72:21:d0:bc:47:fa:53:
f0:2e:68:3c:18:b2:5e:e6:a5:4f:e2:10:c5:1f:c7:d1:f8:8d:
8e:70:b6:7e:ba:84:f3:d5:d3:22:f8:76:34:56:e7:46:24:3c:
7e:5d:d7:af:ee:0e:0e:04:8a:8f:7d:9a:21:89:d9:c8:c2:f0:
62:d0:01:6f:e0:83:c5:39:1a:9c:9f:a5:e9:73:45:19:70:7f:
61:ce:31:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtSpRKoEc/1zHp9K8jncduMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2ZTMzNTNkNWY0MjNhZDQyNzFjMzI2MWNhYTU0MzE0MDUz
MGJkZGIwHhcNMjMwMTAxMTIyNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGEzMzZmMjI2YjI0MDUzNDkxMWFkMThhOTdmYjc0NjBlYWYwZGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkx1K6NIN4V+ycRqO7GkubZqWgnq
MDvDaGBfgLhjSjuRB9bjDeEjzP+aWNIsVeWg6+Hd3/FTW5Firpw3ZN1u9SAZPVGU
Hdrma2FTTvguSHgBh6Bh8RVXo7yzZ3JYtBbU3F1foiXOpXQghUJKqjfGSwHHlx7v
d2OHVSA6EDStue/m9RwMUTwRQwRef+6WSWLGOUch401rCZ61TZ2aa5L2xlEBVWTp
uYVj4p4nWmwLkFbGr1HYLAP7jtmcPoBzoYIKiljPzOg1alDwuH0yLyI1W7jaAPyY
TK87EOWJGWKJcvcyr6C46hja5of2sz7/ai/NqXpPjRq2swfizEuCZ/9jKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH2jNvImskBTSRGtGKl/t0YOrw3zMB8GA1UdIwQY
MBaAFFbjNT1fQjrUJxwyYcqlQxQFML3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnVNMVBWOUNPdFFuSERKaHlxVkRGQVV3dmRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82MTA5ZDYtMGE4YS00YmY2LWEwZTIt
ZTUyZGEzYjg2NzU0LzEvZmFNMjhpYXlRRk5KRWEwWXFYLTNSZzZ2RGZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS82MTA5ZDYtMGE4YS00YmY2LWEwZTItZTUyZGEzYjg2NzU0
LzEvVnVNMVBWOUNPdFFuSERKaHlxVkRGQVV3dmRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUEPQMA0G
CSqGSIb3DQEBCwUAA4IBAQBxNAzIJ+VS5XTiTFFzAy2nh9QBpx9lI3qNNAKbedd3
FInC1Ldn2JhwUolggbzZDlu8Gy85rnntyn3wOSNsuysby5UL3/4cozLxJ8MXiNLh
lqEoIveU6mP0xYt+s+r1fh+w2AVPL2p3V67kKxpyVqjA1JiWwUGXbkQDdzgkw9V9
yFULnji4zTAwUDPLoRSJMK2T4ZmSnuawSI02ilH+6klFVqYuKS+Nr3vuqAyiXnIh
0LxH+lPwLmg8GLJe5qVP4hDFH8fR+I2OcLZ+uoTz1dMi+HY0VudGJDx+Xdev7g4O
BIqPfZohidnIwvBi0AFv4IPFORqcn6Xpc0UZcH9hzjG4
-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:36 2024 by rpki-client on console.sobornost.net