Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/fx8ozEf2Wj3EXGH_wOenQIud9Cs.roa
File: fx8ozEf2Wj3EXGH_wOenQIud9Cs.roa (raw, json)
Hash identifier: 0XMD4+Odnu6hSwmSPZnc7NtrJ87xTIwebwX8YdtTBd8=
Subject key identifier: 7F:1F:28:CC:47:F6:5A:3D:C4:5C:61:FF:C0:E7:A7:40:8B:9D:F4:2B
Certificate issuer: /CN=dd6daef6664a7529b629f3fd65004915230f1be9
Certificate serial: 018ABF1016BE1A7AC81887DDB746CF81BE70
Authority key identifier: DD:6D:AE:F6:66:4A:75:29:B6:29:F3:FD:65:00:49:15:23:0F:1B:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2u9mZKdSm2KfP9ZQBJFSMPG-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/fx8ozEf2Wj3EXGH_wOenQIud9Cs.roa
Signing time: Fri 22 Sep 2023 22:43:37 +0000
ROA not before: Fri 22 Sep 2023 22:43:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15924
IP address blocks: 185.136.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bf:10:16:be:1a:7a:c8:18:87:dd:b7:46:cf:81:be:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6daef6664a7529b629f3fd65004915230f1be9
Validity
Not Before: Sep 22 22:43:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f1f28cc47f65a3dc45c61ffc0e7a7408b9df42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bf:68:b1:2a:f5:9d:df:a4:0d:4c:70:d9:5a:
ef:b0:8c:a3:95:58:dd:9b:ac:26:cc:b7:f8:d2:51:
4a:6a:8e:a5:16:3c:1e:88:e7:77:fc:1a:09:e1:9b:
07:a3:03:b0:58:02:73:70:35:c2:56:c5:94:a6:1f:
16:37:a2:07:6b:75:b7:e1:8b:62:c2:4b:52:3a:c3:
be:3b:3b:cc:b2:01:51:85:24:ff:3e:15:4a:42:86:
7e:ee:0f:d3:4a:b5:47:91:2e:e1:19:bc:09:7f:dc:
2d:a0:6c:02:55:36:95:ee:5a:14:17:04:b1:56:cd:
95:10:47:93:63:f2:2e:ad:8e:c2:da:ed:f4:61:72:
75:68:17:2f:e4:6f:26:65:ff:6d:6c:60:d7:35:d9:
77:83:45:90:df:78:de:3b:d6:30:53:22:a9:8f:33:
05:fd:75:de:5c:6c:33:9b:6b:39:32:2b:bb:16:81:
b9:4a:59:32:81:56:83:c6:aa:66:0f:61:56:bb:35:
71:15:f2:eb:91:5d:02:f6:71:1b:f9:b5:dd:d1:fe:
0d:8b:42:39:f6:cf:0c:28:97:89:b1:32:7c:0b:c4:
a3:73:31:b7:53:ab:e6:6e:92:58:81:db:4e:d0:c7:
1d:9b:94:7c:c8:7e:8b:b9:4e:03:1c:8f:13:e3:b5:
ee:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:1F:28:CC:47:F6:5A:3D:C4:5C:61:FF:C0:E7:A7:40:8B:9D:F4:2B
X509v3 Authority Key Identifier:
keyid:DD:6D:AE:F6:66:4A:75:29:B6:29:F3:FD:65:00:49:15:23:0F:1B:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2u9mZKdSm2KfP9ZQBJFSMPG-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/fx8ozEf2Wj3EXGH_wOenQIud9Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/3W2u9mZKdSm2KfP9ZQBJFSMPG-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.87.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ff:af:8b:8c:18:5b:b6:32:aa:36:2f:c5:f8:ff:47:bf:dd:
80:a6:bc:70:d0:d2:2b:0f:e7:bf:43:c6:a2:66:6f:63:8f:eb:
b6:9b:78:e8:e4:9e:d5:64:70:53:71:b5:af:f2:09:6e:d5:58:
f2:35:54:f6:18:82:cd:97:2f:ed:ec:da:86:3e:aa:bc:89:d4:
a0:4e:a3:ec:a0:85:ff:a3:6a:34:7d:cf:53:cc:20:19:50:da:
ba:44:40:e1:a4:f7:3a:79:dd:f0:72:b4:67:fa:4c:00:3f:f9:
96:02:90:f1:ab:3c:a0:ce:af:78:d6:10:d2:7a:84:25:7c:5a:
1f:be:56:46:1d:d3:1d:56:ad:66:b6:bf:b3:87:b8:0d:c9:fc:
97:9d:ff:74:a9:e2:9f:40:37:32:f3:f8:ea:94:6c:cb:7f:a0:
5c:5f:72:c4:25:41:4c:60:b1:f2:80:de:4d:4c:f1:88:e0:72:
15:21:fc:a6:b0:02:81:eb:23:0b:94:bf:dc:cf:c3:59:0e:e8:
e3:9a:15:8d:85:4c:b1:ed:0b:18:9b:44:61:30:9d:bc:75:b3:
93:cd:c7:37:1c:be:27:b8:b9:e7:86:37:82:9f:4b:9b:53:5e:
e5:41:23:d1:e9:0f:b1:48:0d:85:50:f4:ff:43:0c:79:56:3d:
52:be:fb:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYq/EBa+GnrIGIfdt0bPgb5wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNmRhZWY2NjY0YTc1MjliNjI5ZjNmZDY1MDA0OTE1MjMw
ZjFiZTkwHhcNMjMwOTIyMjI0MzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjFmMjhjYzQ3ZjY1YTNkYzQ1YzYxZmZjMGU3YTc0MDhiOWRmNDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnL9osSr1nd+kDUxw2VrvsIyjlVjd
m6wmzLf40lFKao6lFjweiOd3/BoJ4ZsHowOwWAJzcDXCVsWUph8WN6IHa3W34Yti
wktSOsO+OzvMsgFRhST/PhVKQoZ+7g/TSrVHkS7hGbwJf9wtoGwCVTaV7loUFwSx
Vs2VEEeTY/IurY7C2u30YXJ1aBcv5G8mZf9tbGDXNdl3g0WQ33jeO9YwUyKpjzMF
/XXeXGwzm2s5Miu7FoG5SlkygVaDxqpmD2FWuzVxFfLrkV0C9nEb+bXd0f4Ni0I5
9s8MKJeJsTJ8C8SjczG3U6vmbpJYgdtO0Mcdm5R8yH6LuU4DHI8T47XukwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH8fKMxH9lo9xFxh/8Dnp0CLnfQrMB8GA1UdIwQY
MBaAFN1trvZmSnUptinz/WUASRUjDxvpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1cydTltWktkU20yS2ZQOVpRQkpGU01QRy1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi83ZGQ0MmItNjZlZC00YzEzLWEzMzYt
Y2ZlMTMzNWYyN2ZiLzEvZng4b3pFZjJXajNFWEdIX3dPZW5RSXVkOUNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi83ZGQ0MmItNjZlZC00YzEzLWEzMzYtY2ZlMTMzNWYyN2Zi
LzEvM1cydTltWktkU20yS2ZQOVpRQkpGU01QRy1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYhXMA0G
CSqGSIb3DQEBCwUAA4IBAQAO/6+LjBhbtjKqNi/F+P9Hv92Aprxw0NIrD+e/Q8ai
Zm9jj+u2m3jo5J7VZHBTcbWv8glu1VjyNVT2GILNly/t7NqGPqq8idSgTqPsoIX/
o2o0fc9TzCAZUNq6REDhpPc6ed3wcrRn+kwAP/mWApDxqzygzq941hDSeoQlfFof
vlZGHdMdVq1mtr+zh7gNyfyXnf90qeKfQDcy8/jqlGzLf6BcX3LEJUFMYLHygN5N
TPGI4HIVIfymsAKB6yMLlL/cz8NZDujjmhWNhUyx7QsYm0RhMJ28dbOTzcc3HL4n
uLnnhjeCn0ubU17lQSPR6Q+xSA2FUPT/Qwx5Vj1Svvuz
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net