Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/D50oz2Syvb5kcFejZbYjR90p9mw.roa
File: D50oz2Syvb5kcFejZbYjR90p9mw.roa (raw, json)
Hash identifier: uy7+wAZKvywOz5glmcf+XnOiCkbu4AnXimLusEKQQ/k=
Subject key identifier: 0F:9D:28:CF:64:B2:BD:BE:64:70:57:A3:65:B6:23:47:DD:29:F6:6C
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 01896E617059D5F6739C994BC97023010FAE
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/D50oz2Syvb5kcFejZbYjR90p9mw.roa
Signing time: Wed 19 Jul 2023 13:40:26 +0000
ROA not before: Wed 19 Jul 2023 13:40:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 89.34.239.0/24 maxlen: 24
94.176.212.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
77.81.103.0/24 maxlen: 24
89.43.35.0/24 maxlen: 24
89.43.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:61:70:59:d5:f6:73:9c:99:4b:c9:70:23:01:0f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Jul 19 13:40:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f9d28cf64b2bdbe647057a365b62347dd29f66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b0:54:a0:df:a6:0a:50:21:24:99:84:7d:53:
17:f7:18:a5:21:06:71:e4:e8:14:a3:05:89:f7:e1:
cf:de:0c:9c:1e:a5:49:83:c1:1a:25:8c:76:4e:06:
0b:97:3d:c8:5b:f8:b3:8c:13:3b:ea:85:25:51:54:
86:e4:2d:91:ab:52:4d:cb:f9:a8:08:61:1b:0d:59:
cc:0c:75:01:db:a6:e9:ce:aa:68:6d:fe:a3:c1:50:
86:38:54:32:ad:04:b6:a6:cd:6e:96:d6:b5:19:c8:
f6:9c:46:6e:a5:38:06:67:43:66:f9:cf:9c:86:c6:
f5:2d:a9:d4:d3:d8:fc:a8:c0:99:07:bc:c9:31:7a:
b2:4a:6c:0c:78:6a:26:a0:81:b7:17:bf:14:b2:73:
5b:f2:2f:c5:4b:17:11:74:6f:7f:64:01:65:e2:8b:
6d:e8:1a:5a:f4:72:5a:3e:66:c1:4d:28:94:46:f2:
2a:1d:e1:ff:79:41:37:5b:3e:1f:4c:b4:59:c6:78:
3d:05:e9:11:14:de:8e:b6:8b:64:c1:9c:dd:5c:8b:
31:4a:a9:79:b4:de:99:53:7a:8c:0e:32:b7:09:60:
6e:79:6b:fa:d7:52:b0:20:f5:bd:3d:7c:90:54:2c:
b5:b5:50:1f:58:9e:4f:be:13:cf:da:60:b3:5d:8e:
4f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:9D:28:CF:64:B2:BD:BE:64:70:57:A3:65:B6:23:47:DD:29:F6:6C
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/D50oz2Syvb5kcFejZbYjR90p9mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.174.0/24
77.81.103.0/24
89.34.239.0/24
89.43.34.0/23
94.176.212.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8e:37:cb:4f:a4:5a:95:dc:6f:0f:33:c2:8c:8b:99:17:b1:
0f:a0:59:4b:76:27:2c:37:7f:41:58:b2:29:52:a3:da:25:65:
e0:1e:da:2a:b3:07:17:91:2f:7f:73:f7:ad:be:18:37:33:43:
40:b2:f0:5b:cb:da:6f:0f:8e:76:f4:0a:e4:6c:c9:38:b6:c5:
1d:aa:82:06:85:5e:a9:7a:01:76:05:66:a5:00:48:68:5b:5d:
80:bc:12:cf:d4:6b:5c:61:21:3e:f5:3e:f1:a8:00:b0:ac:71:
6d:53:42:9a:2d:74:aa:5d:bf:bb:d6:11:87:db:ff:cd:4c:86:
3b:c4:c7:eb:34:ec:bb:d6:1a:68:63:cc:71:58:4a:37:27:17:
20:1d:9c:38:c0:1b:db:f1:6f:1e:9e:9a:61:8c:92:93:4f:66:
f6:57:2c:c4:7d:1f:fc:7d:1f:d8:d4:16:fc:79:25:61:89:39:
65:97:ed:24:6a:94:8e:1e:d6:a5:0e:b8:bb:bd:2e:44:c3:34:
c4:cc:9a:4b:59:f6:9e:27:2a:76:ab:cd:f3:bb:3f:61:cb:fc:
96:7c:48:5d:fb:47:46:32:3d:69:ac:ce:19:b0:96:8b:60:da:
4a:f9:57:1a:28:39:cd:f8:dd:13:b2:b1:f1:22:5b:f4:b7:ae:
15:6b:b9:d5
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYluYXBZ1fZznJlLyXAjAQ+uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZmE2NmZiODRhNzgxYTA1ODRmZDBkMWMyZGYzOWJkYTQ3
NjA1MTkwHhcNMjMwNzE5MTM0MDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjlkMjhjZjY0YjJiZGJlNjQ3MDU3YTM2NWI2MjM0N2RkMjlmNjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7BUoN+mClAhJJmEfVMX9xilIQZx
5OgUowWJ9+HP3gycHqVJg8EaJYx2TgYLlz3IW/izjBM76oUlUVSG5C2Rq1JNy/mo
CGEbDVnMDHUB26bpzqpobf6jwVCGOFQyrQS2ps1ulta1Gcj2nEZupTgGZ0Nm+c+c
hsb1LanU09j8qMCZB7zJMXqySmwMeGomoIG3F78UsnNb8i/FSxcRdG9/ZAFl4ott
6Bpa9HJaPmbBTSiURvIqHeH/eUE3Wz4fTLRZxng9BekRFN6OtotkwZzdXIsxSql5
tN6ZU3qMDjK3CWBueWv611KwIPW9PXyQVCy1tVAfWJ5PvhPP2mCzXY5P0QIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFA+dKM9ksr2+ZHBXo2W2I0fdKfZsMB8GA1UdIwQY
MBaAFGT6ZvuEp4GgWE/Q0cLfOb2kdgUZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlBwbS00U25nYUJZVDlEUnd0ODV2YVIyQlJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82NjNiNGQtYjgwZS00OTQ2LTg0YzQt
NzQwOGViOGJjNTg2LzEvRDUwb3oyU3l2YjVrY0ZlalpiWWpSOTBwOW13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi82NjNiNGQtYjgwZS00OTQ2LTg0YzQtNzQwOGViOGJjNTg2
LzEvWlBwbS00U25nYUJZVDlEUnd0ODV2YVIyQlJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAJZyuAwQA
TVFnAwQAWSLvAwQBWSsiAwQAXrDUMA0GCSqGSIb3DQEBCwUAA4IBAQByjjfLT6Ra
ldxvDzPCjIuZF7EPoFlLdicsN39BWLIpUqPaJWXgHtoqswcXkS9/c/etvhg3M0NA
svBby9pvD4529ArkbMk4tsUdqoIGhV6pegF2BWalAEhoW12AvBLP1GtcYSE+9T7x
qACwrHFtU0KaLXSqXb+71hGH2//NTIY7xMfrNOy71hpoY8xxWEo3JxcgHZw4wBvb
8W8enpphjJKTT2b2VyzEfR/8fR/Y1Bb8eSVhiTlll+0kapSOHtalDri7vS5EwzTE
zJpLWfaeJyp2q83zuz9hy/yWfEhd+0dGMj1prM4ZsJaLYNpK+VcaKDnN+N0TsrHx
Ilv0t64Va7nV
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:48 2023 by rpki-client on console.sobornost.net