Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/BozSmOygl8o0wowqeOpvMie_7Wc.roa
File: BozSmOygl8o0wowqeOpvMie_7Wc.roa (raw, json)
Hash identifier: wl8BpGj70yn007edR9RjryiweSotdGTjnoG7Ra38phM=
Subject key identifier: 06:8C:D2:98:EC:A0:97:CA:34:C2:8C:2A:78:EA:6F:32:27:BF:ED:67
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 0188A6C5F7FF116BF3A8AC65DA9E945E53FC
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/BozSmOygl8o0wowqeOpvMie_7Wc.roa
Signing time: Sat 10 Jun 2023 19:26:11 +0000
ROA not before: Sat 10 Jun 2023 19:26:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47890
IP address blocks: 45.129.15.0/24 maxlen: 24
2.57.122.0/24 maxlen: 24
92.118.39.0/24 maxlen: 24
45.134.50.0/24 maxlen: 24
45.13.212.0/24 maxlen: 24
45.13.213.0/24 maxlen: 24
80.94.92.0/24 maxlen: 24
80.94.94.0/24 maxlen: 24
193.47.69.0/24 maxlen: 24
193.32.160.0/24 maxlen: 24
193.32.162.0/24 maxlen: 24
193.32.163.0/24 maxlen: 24
185.232.64.0/24 maxlen: 24
193.46.254.0/24 maxlen: 24
185.232.66.0/24 maxlen: 24
193.46.255.0/24 maxlen: 24
193.29.14.0/24 maxlen: 24
2a0c:9f00::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a6:c5:f7:ff:11:6b:f3:a8:ac:65:da:9e:94:5e:53:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Jun 10 19:26:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=068cd298eca097ca34c28c2a78ea6f3227bfed67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:78:ca:21:4d:04:31:39:62:23:46:57:c1:d7:
57:bb:df:5d:5c:4f:77:dc:5f:e8:59:35:e5:91:0d:
fa:4e:d4:2f:3b:24:be:ce:40:a1:d0:95:f7:1b:e2:
b3:6f:b3:32:49:15:1c:41:c6:2b:e2:b0:50:a7:10:
63:ed:a1:a3:f8:9b:c7:e7:7d:f6:2e:cf:5d:27:5c:
2e:da:a8:63:a7:35:6b:87:bf:94:44:b5:d8:64:28:
d3:fd:b9:70:25:75:48:ea:e4:f1:bb:fd:f1:5a:0b:
bb:36:b4:32:1a:26:ba:f3:93:9d:78:25:68:ba:5b:
f6:4a:52:eb:9c:59:6e:8d:e3:64:6c:57:d5:a9:a7:
f3:78:03:5e:64:a6:e4:c6:9c:e7:a7:d6:c3:a0:e0:
4d:db:5e:84:8f:88:83:db:50:60:24:0f:47:fb:96:
2a:7e:dd:d7:8b:fe:63:47:06:fd:06:07:78:c0:62:
b6:37:0b:9d:43:55:1e:29:40:8f:6c:17:83:11:3d:
9e:d2:22:be:7a:9c:84:d3:b4:33:c1:96:00:a0:80:
21:6c:1d:8e:0f:71:5c:6d:66:86:a9:05:9c:b8:ba:
a9:6d:7a:da:75:24:c2:03:76:f3:a8:7b:8a:f9:67:
f4:b4:93:08:46:2e:88:77:53:68:b9:ee:1c:d5:38:
25:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8C:D2:98:EC:A0:97:CA:34:C2:8C:2A:78:EA:6F:32:27:BF:ED:67
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/BozSmOygl8o0wowqeOpvMie_7Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.122.0/24
45.13.212.0/23
45.129.15.0/24
45.134.50.0/24
80.94.92.0/24
80.94.94.0/24
92.118.39.0/24
185.232.64.0/24
185.232.66.0/24
193.29.14.0/24
193.32.160.0/24
193.32.162.0/23
193.46.254.0/23
193.47.69.0/24
IPv6:
2a0c:9f00::/48
Signature Algorithm: sha256WithRSAEncryption
48:49:2e:a3:5d:bf:c7:b2:a7:2e:7e:09:f7:23:a5:df:3e:fc:
40:17:7e:fe:d6:94:4a:90:bf:27:cc:70:28:ba:87:6a:34:97:
9e:81:1e:97:d8:f6:4a:52:fa:f5:12:bd:80:cb:44:1b:54:82:
52:c7:01:b2:62:a1:cd:de:13:20:87:00:33:1f:3e:5f:32:4b:
ba:60:9d:58:93:9a:2b:1a:d9:d1:0a:27:93:22:2f:e1:19:c8:
1f:c5:00:18:f0:22:5a:77:30:55:25:b9:5f:02:21:c4:09:b9:
39:a3:cb:46:7d:31:cd:ae:99:d3:53:97:4d:40:75:cd:9a:8e:
49:74:e3:40:e3:b6:a3:cf:ea:75:18:6b:7f:38:e5:dd:36:bf:
07:57:00:97:ac:7d:a1:15:44:40:e1:64:7d:2f:87:fc:5c:75:
6a:7a:f5:6b:18:32:ec:cb:ab:ff:a2:4c:66:26:62:43:f2:b9:
da:6f:bb:bb:5c:d9:55:0e:33:56:d6:d9:d1:4e:18:78:73:1e:
3c:49:75:fb:c9:59:71:0b:fc:1e:c5:b5:37:94:93:e4:13:c9:
e8:bb:14:a3:0c:ea:cf:63:3b:0c:82:1b:d2:06:c0:55:26:80:
e5:75:0b:ae:5f:99:e9:30:f8:20:bb:6e:87:38:7b:48:a3:ac:
c6:86:ae:81
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgISAYimxff/EWvzqKxl2p6UXlP8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyYzEyYjUyN2E1ZDFmOGI4YmNmMjMwZWI2MTFmNTJmMTFk
NTJiYmYwHhcNMjMwNjEwMTkyNjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjhjZDI5OGVjYTA5N2NhMzRjMjhjMmE3OGVhNmYzMjI3YmZlZDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HjKIU0EMTliI0ZXwddXu99dXE93
3F/oWTXlkQ36TtQvOyS+zkCh0JX3G+Kzb7MySRUcQcYr4rBQpxBj7aGj+JvH5332
Ls9dJ1wu2qhjpzVrh7+URLXYZCjT/blwJXVI6uTxu/3xWgu7NrQyGia685OdeCVo
ulv2SlLrnFlujeNkbFfVqafzeANeZKbkxpznp9bDoOBN216Ej4iD21BgJA9H+5Yq
ft3Xi/5jRwb9Bgd4wGK2NwudQ1UeKUCPbBeDET2e0iK+epyE07QzwZYAoIAhbB2O
D3FcbWaGqQWcuLqpbXradSTCA3bzqHuK+Wf0tJMIRi6Id1Noue4c1TglFQIDAQAB
o4ICaDCCAmQwHQYDVR0OBBYEFAaM0pjsoJfKNMKMKnjqbzInv+1nMB8GA1UdIwQY
MBaAFMLBK1J6XR+Li88jDrYR9S8R1Su/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3NFclVucGRINHVMenlNT3RoSDFMeEhWSzc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zZWJiNDYtYjlkZC00Njk1LTgxNWMt
NDZlZTU3OGEwYmZlLzEvQm96U21PeWdsOG8wd293cWVPcHZNaWVfN1djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zZWJiNDYtYjlkZC00Njk1LTgxNWMtNDZlZTU3OGEwYmZl
LzEvd3NFclVucGRINHVMenlNT3RoSDFMeEhWSzc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH4GCCsGAQUFBwEHAQH/BG8wbTBaBAIAATBUAwQAAjl6AwQB
LQ3UAwQALYEPAwQALYYyAwQAUF5cAwQAUF5eAwQAXHYnAwQAuehAAwQAuehCAwQA
wR0OAwQAwSCgAwQBwSCiAwQBwS7+AwQAwS9FMA8EAgACMAkDBwAqDJ8AAAAwDQYJ
KoZIhvcNAQELBQADggEBAEhJLqNdv8eypy5+Cfcjpd8+/EAXfv7WlEqQvyfMcCi6
h2o0l56BHpfY9kpS+vUSvYDLRBtUglLHAbJioc3eEyCHADMfPl8yS7pgnViTmisa
2dEKJ5MiL+EZyB/FABjwIlp3MFUluV8CIcQJuTmjy0Z9Mc2umdNTl01Adc2ajkl0
40DjtqPP6nUYa3845d02vwdXAJesfaEVREDhZH0vh/xcdWp69WsYMuzLq/+iTGYm
YkPyudpvu7tc2VUOM1bW2dFOGHhzHjxJdfvJWXEL/B7FtTeUk+QTyei7FKMM6s9j
OwyCG9IGwFUmgOV1C65fmekw+CC7boc4e0ijrMaGroE=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:25 2023 by rpki-client on console.sobornost.net