Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/CfrPAIPMQq1MuaM_uaN-yllkVpc.roa
File: CfrPAIPMQq1MuaM_uaN-yllkVpc.roa (raw, json)
Hash identifier: gXi/60bpVOZSqx2vnsZ0rha35D8twoDChKcLNLPPnYc=
Subject key identifier: 09:FA:CF:00:83:CC:42:AD:4C:B9:A3:3F:B9:A3:7E:CA:59:64:56:97
Certificate issuer: /CN=ae4e8c639aeaf132a2fc33fce6e81434dfca64b7
Certificate serial: 01856D8AB69B0B32B1EE1329928D28DD2CAA
Authority key identifier: AE:4E:8C:63:9A:EA:F1:32:A2:FC:33:FC:E6:E8:14:34:DF:CA:64:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rk6MY5rq8TKi_DP85ugUNN_KZLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/CfrPAIPMQq1MuaM_uaN-yllkVpc.roa
Signing time: Sun 01 Jan 2023 13:34:45 +0000
ROA not before: Sun 01 Jan 2023 13:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211340
IP address blocks: 185.182.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:b6:9b:0b:32:b1:ee:13:29:92:8d:28:dd:2c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae4e8c639aeaf132a2fc33fce6e81434dfca64b7
Validity
Not Before: Jan 1 13:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09facf0083cc42ad4cb9a33fb9a37eca59645697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0c:76:02:7d:d2:d5:6c:05:71:01:c4:1a:32:
93:b9:2b:dd:f1:e8:1d:2a:ed:de:2f:50:fe:81:6d:
6a:d3:f0:22:a2:86:a0:04:58:bb:4c:43:1f:51:5f:
c9:6c:e6:90:43:aa:c0:d6:ee:ca:66:4f:7a:a7:88:
94:94:c9:f2:dd:dc:3a:46:74:1a:fa:e4:fb:19:ca:
20:21:be:04:3b:31:0f:0a:8e:41:c9:f8:14:7f:8b:
36:c2:73:e1:15:64:af:da:a9:ed:d7:8b:0a:1f:94:
92:24:ff:fb:54:a5:e0:0a:76:b7:33:b0:3e:10:6c:
fb:9e:48:62:b4:35:0c:66:4d:24:aa:a2:f4:ec:5d:
ba:5c:ba:54:0a:f8:7e:43:2e:5e:3a:fc:b7:95:83:
af:81:f0:d0:5d:09:98:53:d5:94:7e:d1:d8:1f:03:
d3:97:9e:c0:14:ee:5f:21:b7:7b:f8:85:ea:3d:a8:
3b:10:47:26:58:6c:f6:85:0c:d9:88:30:46:18:f6:
04:07:0a:da:9b:cd:1c:6a:09:e0:af:5c:25:86:10:
85:3b:e6:7e:bb:ef:39:7f:57:16:5c:61:3d:67:ff:
ba:dd:ad:77:dd:ff:89:c2:1b:07:b8:76:fe:55:cf:
e8:35:39:6e:76:74:8b:5d:13:1a:81:f1:3b:58:e6:
2f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FA:CF:00:83:CC:42:AD:4C:B9:A3:3F:B9:A3:7E:CA:59:64:56:97
X509v3 Authority Key Identifier:
keyid:AE:4E:8C:63:9A:EA:F1:32:A2:FC:33:FC:E6:E8:14:34:DF:CA:64:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rk6MY5rq8TKi_DP85ugUNN_KZLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/CfrPAIPMQq1MuaM_uaN-yllkVpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/91d4e8-fa6e-4505-b57f-c7ce2e4450a7/1/rk6MY5rq8TKi_DP85ugUNN_KZLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.66.0/24
Signature Algorithm: sha256WithRSAEncryption
13:c9:66:e3:8b:c9:9c:42:b5:77:53:5b:28:17:6b:b7:9e:24:
c6:08:91:6a:85:aa:ec:47:0d:0d:cd:73:88:cc:34:cb:ff:89:
c9:43:dd:c5:38:e3:59:04:b9:e3:b3:ab:be:59:fc:7f:de:13:
18:54:5d:50:dd:33:03:a8:b5:45:94:25:74:e1:55:5d:e4:ef:
cf:88:4c:52:40:78:b6:ac:0b:d5:d0:b1:ef:87:42:43:17:22:
0c:93:96:f2:e5:2c:fa:68:77:37:bb:ab:7f:63:8e:fe:23:15:
24:bc:c2:47:ea:83:11:4d:69:f4:a9:ea:4a:25:20:f7:91:94:
23:b9:49:01:42:9e:8f:f7:28:6a:e4:e6:ee:3d:49:7a:3e:12:
e4:bb:f9:07:bc:44:24:28:1f:3a:4a:a0:2b:39:35:52:15:31:
8b:49:ec:22:70:9f:78:92:e6:b2:ec:08:72:fd:06:65:44:6e:
9a:74:f4:29:c6:3f:c1:36:4e:87:41:99:84:dd:21:e3:0d:63:
23:6d:76:4e:ea:29:7e:4a:8b:8d:8e:40:29:cf:19:02:b0:c7:
6a:98:98:6a:79:44:a9:8e:92:a2:62:60:c0:0d:ad:73:74:92:
7f:45:be:61:26:10:b3:d2:84:fb:e4:29:aa:32:ea:9b:3c:ca:
37:ac:7c:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtirabCzKx7hMpko0o3SyqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNGU4YzYzOWFlYWYxMzJhMmZjMzNmY2U2ZTgxNDM0ZGZj
YTY0YjcwHhcNMjMwMTAxMTMzNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWZhY2YwMDgzY2M0MmFkNGNiOWEzM2ZiOWEzN2VjYTU5NjQ1Njk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAggx2An3S1WwFcQHEGjKTuSvd8egd
Ku3eL1D+gW1q0/AiooagBFi7TEMfUV/JbOaQQ6rA1u7KZk96p4iUlMny3dw6RnQa
+uT7GcogIb4EOzEPCo5ByfgUf4s2wnPhFWSv2qnt14sKH5SSJP/7VKXgCna3M7A+
EGz7nkhitDUMZk0kqqL07F26XLpUCvh+Qy5eOvy3lYOvgfDQXQmYU9WUftHYHwPT
l57AFO5fIbd7+IXqPag7EEcmWGz2hQzZiDBGGPYEBwram80cagngr1wlhhCFO+Z+
u+85f1cWXGE9Z/+63a133f+JwhsHuHb+Vc/oNTludnSLXRMagfE7WOYvfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAn6zwCDzEKtTLmjP7mjfspZZFaXMB8GA1UdIwQY
MBaAFK5OjGOa6vEyovwz/OboFDTfymS3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcms2TVk1cnE4VEtpX0RQODV1Z1VOTl9LWkxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MWQ0ZTgtZmE2ZS00NTA1LWI1N2Yt
YzdjZTJlNDQ1MGE3LzEvQ2ZyUEFJUE1RcTFNdWFNX3VhTi15bGxrVnBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MWQ0ZTgtZmE2ZS00NTA1LWI1N2YtYzdjZTJlNDQ1MGE3
LzEvcms2TVk1cnE4VEtpX0RQODV1Z1VOTl9LWkxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubZCMA0G
CSqGSIb3DQEBCwUAA4IBAQATyWbji8mcQrV3U1soF2u3niTGCJFqharsRw0NzXOI
zDTL/4nJQ93FOONZBLnjs6u+Wfx/3hMYVF1Q3TMDqLVFlCV04VVd5O/PiExSQHi2
rAvV0LHvh0JDFyIMk5by5Sz6aHc3u6t/Y47+IxUkvMJH6oMRTWn0qepKJSD3kZQj
uUkBQp6P9yhq5ObuPUl6PhLku/kHvEQkKB86SqArOTVSFTGLSewicJ94kuay7Ahy
/QZlRG6adPQpxj/BNk6HQZmE3SHjDWMjbXZO6il+SouNjkApzxkCsMdqmJhqeUSp
jpKiYmDADa1zdJJ/Rb5hJhCz0oT75CmqMuqbPMo3rHyU
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:44 2024 by rpki-client on console.sobornost.net