Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/sKFedv3v9LvOfOck2lEUt0kw3Yg.roa
File: sKFedv3v9LvOfOck2lEUt0kw3Yg.roa (raw, json)
Hash identifier: iqs78lRI3vQ92SInxSDI9ogn3XEqEdvyjP943h4UXE0=
Subject key identifier: B0:A1:5E:76:FD:EF:F4:BB:CE:7C:E7:24:DA:51:14:B7:49:30:DD:88
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 01856CAF4096D11BDA61D95BB5EE0648BF94
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/sKFedv3v9LvOfOck2lEUt0kw3Yg.roa
Signing time: Sun 01 Jan 2023 09:35:02 +0000
ROA not before: Sun 01 Jan 2023 09:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31014
IP address blocks: 193.28.250.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:40:96:d1:1b:da:61:d9:5b:b5:ee:06:48:bf:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Jan 1 09:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0a15e76fdeff4bbce7ce724da5114b74930dd88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:24:da:32:4d:31:1b:01:1c:15:b5:c9:3f:62:
0b:1f:72:6c:87:a8:24:41:f1:83:37:c2:22:f7:48:
41:4f:a5:b2:15:c5:3e:6a:5b:e5:de:86:24:07:f3:
63:cf:24:5b:bf:df:0c:9b:04:1f:49:35:33:33:fc:
83:33:a0:67:83:b3:46:bb:35:24:13:39:7f:24:7b:
42:e9:9f:96:3c:18:bf:d5:78:39:f4:48:97:87:82:
a2:f0:56:8f:90:4a:dc:48:62:6b:3d:1a:cb:ad:01:
d9:0a:2a:af:2b:fa:32:ef:81:ee:53:14:4b:e1:dc:
bb:40:b9:ca:a5:10:38:e8:48:25:b7:88:ff:48:ea:
a4:af:d7:de:c7:9b:55:d3:e4:cf:c5:13:82:2e:99:
98:30:29:f2:5d:79:f9:5d:5b:e4:f9:3c:c8:98:4b:
96:03:69:f5:1a:fe:82:00:ca:5b:80:41:95:c7:32:
50:af:ea:d9:e3:1b:78:f0:53:7d:db:82:da:77:d2:
f5:66:09:0d:fe:33:11:3e:f8:b8:ce:0c:a3:24:73:
79:60:b7:b3:c4:00:2c:d5:13:8a:e7:44:16:6a:25:
83:6c:9f:3a:54:dc:99:ba:7a:bd:fe:ed:2b:39:31:
f5:df:30:3b:78:50:b5:29:7d:8d:6a:35:56:78:28:
ff:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A1:5E:76:FD:EF:F4:BB:CE:7C:E7:24:DA:51:14:B7:49:30:DD:88
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/sKFedv3v9LvOfOck2lEUt0kw3Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.250.0/24
Signature Algorithm: sha256WithRSAEncryption
76:96:84:05:db:7a:6b:b2:a1:43:12:a4:82:48:f5:55:52:af:
85:fd:14:8c:60:08:19:d2:b4:f8:ec:d9:36:fd:50:f5:d5:a9:
d9:4f:7b:fb:73:27:ed:1f:fc:ae:c0:6d:2e:0d:5d:15:b5:f8:
06:13:e7:3e:97:94:28:12:9c:b0:f6:ff:a9:30:d9:33:04:0f:
87:a8:31:8b:4d:f9:b7:22:43:a4:b5:87:7d:d5:5c:45:8b:88:
19:2c:68:33:a8:50:ba:40:a8:0a:b1:57:9a:47:4a:29:89:43:
2f:98:fc:9a:45:eb:53:5d:21:1f:55:a4:b9:c1:d2:2e:a3:7b:
9d:a1:6c:a0:d2:83:a5:cb:c4:d7:c9:ce:12:53:b8:90:a3:18:
b9:16:fc:cf:5b:c4:41:df:f9:d0:a6:a6:85:4b:54:bb:e4:e2:
30:6b:59:b9:2e:37:47:eb:8f:9f:e2:09:1e:a9:14:78:18:e8:
ff:86:da:6a:30:ad:b1:36:3e:3c:f4:57:3c:d1:95:eb:9f:7c:
bb:5a:2d:5b:50:cc:9e:31:5e:fb:5c:42:cb:f8:38:78:c2:37:
92:72:0e:db:e9:a1:cb:e4:6c:3e:76:12:bd:10:77:0f:76:27:
98:f1:61:61:7c:17:ed:f3:6a:3d:8a:6b:3c:04:8b:7f:3f:72:
e5:bf:6a:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsr0CW0RvaYdlbte4GSL+UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZDVjZTY5ZmNjZjBjNmJiOGUyYjI2NjdlMWUzOGZiOTQw
ZjNkMjYwHhcNMjMwMTAxMDkzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGExNWU3NmZkZWZmNGJiY2U3Y2U3MjRkYTUxMTRiNzQ5MzBkZDg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiSTaMk0xGwEcFbXJP2ILH3Jsh6gk
QfGDN8Ii90hBT6WyFcU+alvl3oYkB/NjzyRbv98MmwQfSTUzM/yDM6Bng7NGuzUk
Ezl/JHtC6Z+WPBi/1Xg59EiXh4Ki8FaPkErcSGJrPRrLrQHZCiqvK/oy74HuUxRL
4dy7QLnKpRA46Eglt4j/SOqkr9fex5tV0+TPxROCLpmYMCnyXXn5XVvk+TzImEuW
A2n1Gv6CAMpbgEGVxzJQr+rZ4xt48FN924Lad9L1ZgkN/jMRPvi4zgyjJHN5YLez
xAAs1ROK50QWaiWDbJ86VNyZunq9/u0rOTH13zA7eFC1KX2NajVWeCj/uwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLChXnb97/S7znznJNpRFLdJMN2IMB8GA1UdIwQY
MBaAFMXVzmn8zwxruOKyZn4eOPuUDz0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUt
NDcxZGI3ZWI3MTllLzEvc0tGZWR2M3Y5THZPZk9jazJsRVV0MGt3M1lnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUtNDcxZGI3ZWI3MTll
LzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRz6MA0G
CSqGSIb3DQEBCwUAA4IBAQB2loQF23prsqFDEqSCSPVVUq+F/RSMYAgZ0rT47Nk2
/VD11anZT3v7cyftH/yuwG0uDV0VtfgGE+c+l5QoEpyw9v+pMNkzBA+HqDGLTfm3
IkOktYd91VxFi4gZLGgzqFC6QKgKsVeaR0opiUMvmPyaRetTXSEfVaS5wdIuo3ud
oWyg0oOly8TXyc4SU7iQoxi5FvzPW8RB3/nQpqaFS1S75OIwa1m5LjdH64+f4gke
qRR4GOj/htpqMK2xNj489Fc80ZXrn3y7Wi1bUMyeMV77XELL+Dh4wjeScg7b6aHL
5Gw+dhK9EHcPdieY8WFhfBft82o9ims8BIt/P3Llv2p4
-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:05 2024 by rpki-client on console.sobornost.net