Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/41nlknmEF6QcPo0hnQWc4jpwt6A.roa
File: 41nlknmEF6QcPo0hnQWc4jpwt6A.roa (raw, json)
Hash identifier: RcaQMO68ahn1AXBQ1pryeKd7fyiIZ7ZhhiNIEBYXDsU=
Subject key identifier: E3:59:E5:92:79:84:17:A4:1C:3E:8D:21:9D:05:9C:E2:3A:70:B7:A0
Certificate issuer: /CN=ea55dfd13021d5855ff194534933cd7d6cacd6cf
Certificate serial: 018C88F0D6E7322857B5BADD1964D1E51CB8
Authority key identifier: EA:55:DF:D1:30:21:D5:85:5F:F1:94:53:49:33:CD:7D:6C:AC:D6:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lXf0TAh1YVf8ZRTSTPNfWys1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/41nlknmEF6QcPo0hnQWc4jpwt6A.roa
Signing time: Wed 20 Dec 2023 20:35:34 +0000
ROA not before: Wed 20 Dec 2023 20:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29468
IP address blocks: 185.102.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:88:f0:d6:e7:32:28:57:b5:ba:dd:19:64:d1:e5:1c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea55dfd13021d5855ff194534933cd7d6cacd6cf
Validity
Not Before: Dec 20 20:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e359e592798417a41c3e8d219d059ce23a70b7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:39:2a:19:3d:f5:69:24:99:b9:35:af:9d:d2:
fd:2a:f5:09:15:65:1e:7d:fa:9c:67:e0:1d:43:25:
49:4a:b5:37:7b:16:43:6a:26:5b:dc:74:8b:f3:77:
cc:4c:98:e5:a0:c5:13:2f:3f:d3:88:11:fb:4e:47:
61:23:75:4d:90:8d:14:2d:82:0e:6b:64:7b:70:cd:
2e:0b:cd:53:d4:12:40:83:50:54:1d:f8:34:ac:87:
48:fb:30:2e:b0:99:5f:5c:e8:85:10:89:54:97:61:
fa:dd:0a:f4:4b:6c:c1:a3:fa:cb:4f:d6:ce:d2:b8:
ea:44:37:dc:ac:22:d5:7b:cc:64:1b:19:df:dc:81:
3c:b1:7d:60:5e:e6:ea:2a:05:03:13:80:d8:91:9a:
f1:95:b4:3a:f5:a4:bb:cd:13:ff:c7:5b:2d:7e:d9:
62:a6:de:ee:99:d1:3e:c4:bd:a7:03:b0:b3:6d:71:
71:8c:90:d6:8a:ee:66:47:ed:36:49:df:b7:ee:73:
e7:25:6f:de:48:a9:1b:f0:fb:59:36:e0:16:1f:83:
78:34:e5:f3:44:4c:9e:cf:e7:f8:f9:9d:07:86:bb:
17:75:e9:15:23:77:6d:cd:a0:f3:f5:89:3d:a7:4c:
08:1c:f0:a6:91:3e:21:bf:fb:d0:2c:a9:6d:46:49:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:59:E5:92:79:84:17:A4:1C:3E:8D:21:9D:05:9C:E2:3A:70:B7:A0
X509v3 Authority Key Identifier:
keyid:EA:55:DF:D1:30:21:D5:85:5F:F1:94:53:49:33:CD:7D:6C:AC:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lXf0TAh1YVf8ZRTSTPNfWys1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/41nlknmEF6QcPo0hnQWc4jpwt6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6f433b-dc32-45a2-979e-ff143368753f/1/6lXf0TAh1YVf8ZRTSTPNfWys1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.19.0/24
Signature Algorithm: sha256WithRSAEncryption
72:84:02:a5:4c:55:12:b5:69:31:c7:70:33:b4:81:aa:b9:12:
1d:c0:ee:7c:0f:f5:1f:af:19:e7:ab:7d:71:a9:80:54:9c:40:
07:d0:73:91:44:9f:5f:e2:3b:f8:b5:0d:97:50:ad:f8:82:ff:
70:58:b0:21:3b:89:10:f1:ae:dd:22:58:7c:db:f9:d4:3a:db:
aa:9a:87:57:c5:60:48:29:13:4c:d4:be:93:bd:86:3a:7d:b6:
43:12:f8:ea:93:86:f9:c9:72:85:ec:83:92:21:83:6f:9e:74:
ef:9f:fd:a5:27:62:25:9c:e5:c5:9a:e5:b4:36:d3:a2:d3:4a:
96:b4:93:0d:6f:89:bd:f9:7e:ae:34:10:77:6c:a0:07:c2:fa:
5d:42:a1:1e:d7:9b:0b:70:8e:e0:ca:51:6f:ba:98:8a:6e:a7:
79:16:3e:5b:eb:1f:61:52:88:1e:cb:dd:a8:70:a2:6c:bb:a5:
7a:cf:05:9d:22:ab:b9:83:2b:cb:56:ae:09:f0:c3:d9:b3:37:
12:e2:79:2d:95:05:2b:10:f1:c4:02:7f:fc:1d:cb:f5:8c:15:
cd:ae:74:4f:98:9a:2b:23:21:e1:13:c7:0a:80:2e:90:84:55:
c9:d1:fa:71:eb:6b:49:9e:fc:a2:0d:4e:dd:a4:22:f5:e8:e1:
35:f4:aa:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyI8NbnMihXtbrdGWTR5Ry4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhNTVkZmQxMzAyMWQ1ODU1ZmYxOTQ1MzQ5MzNjZDdkNmNh
Y2Q2Y2YwHhcNMjMxMjIwMjAzNTM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzU5ZTU5Mjc5ODQxN2E0MWMzZThkMjE5ZDA1OWNlMjNhNzBiN2EwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDkqGT31aSSZuTWvndL9KvUJFWUe
ffqcZ+AdQyVJSrU3exZDaiZb3HSL83fMTJjloMUTLz/TiBH7TkdhI3VNkI0ULYIO
a2R7cM0uC81T1BJAg1BUHfg0rIdI+zAusJlfXOiFEIlUl2H63Qr0S2zBo/rLT9bO
0rjqRDfcrCLVe8xkGxnf3IE8sX1gXubqKgUDE4DYkZrxlbQ69aS7zRP/x1stftli
pt7umdE+xL2nA7CzbXFxjJDWiu5mR+02Sd+37nPnJW/eSKkb8PtZNuAWH4N4NOXz
REyez+f4+Z0HhrsXdekVI3dtzaDz9Yk9p0wIHPCmkT4hv/vQLKltRkn1qQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFONZ5ZJ5hBekHD6NIZ0FnOI6cLegMB8GA1UdIwQY
MBaAFOpV39EwIdWFX/GUU0kzzX1srNbPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmxYZjBUQWgxWVZmOFpSVFNUUE5mV3lzMXM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS82ZjQzM2ItZGMzMi00NWEyLTk3OWUt
ZmYxNDMzNjg3NTNmLzEvNDFubGtubUVGNlFjUG8waG5RV2M0anB3dDZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS82ZjQzM2ItZGMzMi00NWEyLTk3OWUtZmYxNDMzNjg3NTNm
LzEvNmxYZjBUQWgxWVZmOFpSVFNUUE5mV3lzMXM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWYTMA0G
CSqGSIb3DQEBCwUAA4IBAQByhAKlTFUStWkxx3AztIGquRIdwO58D/Ufrxnnq31x
qYBUnEAH0HORRJ9f4jv4tQ2XUK34gv9wWLAhO4kQ8a7dIlh82/nUOtuqmodXxWBI
KRNM1L6TvYY6fbZDEvjqk4b5yXKF7IOSIYNvnnTvn/2lJ2IlnOXFmuW0NtOi00qW
tJMNb4m9+X6uNBB3bKAHwvpdQqEe15sLcI7gylFvupiKbqd5Fj5b6x9hUogey92o
cKJsu6V6zwWdIqu5gyvLVq4J8MPZszcS4nktlQUrEPHEAn/8Hcv1jBXNrnRPmJor
IyHhE8cKgC6QhFXJ0fpx62tJnvyiDU7dpCL16OE19KpJ
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:09 2024 by rpki-client on console.sobornost.net