Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/hjwrXR4NwcHpwEHGfkoFMy0zsGs.roa
File: hjwrXR4NwcHpwEHGfkoFMy0zsGs.roa (raw, json)
Hash identifier: AuoaBpXan6is9hUKIBjcQucvP/9kd8UF5b/0R7sERrY=
Subject key identifier: 86:3C:2B:5D:1E:0D:C1:C1:E9:C0:41:C6:7E:4A:05:33:2D:33:B0:6B
Certificate issuer: /CN=ff4705a363dc1d8d0ea51c9b9a1ecbd3807bd054
Certificate serial: 01893A160DB8DCEA731952E3B0C248D123EE
Authority key identifier: FF:47:05:A3:63:DC:1D:8D:0E:A5:1C:9B:9A:1E:CB:D3:80:7B:D0:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0cFo2PcHY0OpRybmh7L04B70FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/hjwrXR4NwcHpwEHGfkoFMy0zsGs.roa
Signing time: Sun 09 Jul 2023 09:57:50 +0000
ROA not before: Sun 09 Jul 2023 09:57:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199346
IP address blocks: 185.12.158.0/23 maxlen: 24
81.24.248.0/21 maxlen: 24
2a03:2240::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3a:16:0d:b8:dc:ea:73:19:52:e3:b0:c2:48:d1:23:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff4705a363dc1d8d0ea51c9b9a1ecbd3807bd054
Validity
Not Before: Jul 9 09:57:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=863c2b5d1e0dc1c1e9c041c67e4a05332d33b06b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:dd:e4:1a:69:63:24:55:14:a8:49:56:e4:
30:50:78:a5:32:b5:bc:0a:53:71:9c:e2:f1:dc:6d:
20:71:96:79:a6:06:93:38:b9:03:0a:75:82:0b:dd:
99:6a:4c:64:80:99:c5:3c:cb:d0:3f:d8:70:e4:aa:
9d:07:bf:eb:ea:8c:72:8e:d8:8a:19:87:0c:b7:4d:
b0:44:69:6a:dd:b6:f7:44:8e:cd:6e:5d:e5:53:47:
83:1e:66:f9:ad:94:1d:a6:92:e5:f9:dc:8a:21:5c:
28:7c:c1:98:74:c9:ba:ed:7a:21:ab:4f:be:05:22:
21:30:8b:19:8e:a3:39:25:29:c7:b2:dc:7e:d2:ee:
e5:71:80:42:90:67:65:fe:bc:2e:0d:13:94:c7:8b:
04:11:4c:a2:dc:e8:c5:f3:09:33:4b:27:fa:14:5a:
bb:10:5a:70:fc:52:56:a5:a1:cc:39:2b:90:dc:ce:
73:7f:a3:8a:f8:53:58:0a:b1:bb:09:d7:e1:92:05:
7a:3d:bd:39:35:23:cc:9c:ff:fb:62:40:49:ee:dd:
b3:45:d7:7b:ea:cc:46:90:13:04:89:fc:39:d5:f3:
f8:08:4f:3c:42:2e:7c:e4:53:e3:ed:ac:9a:db:dd:
02:ee:9c:c6:0d:70:58:4e:c3:40:c7:21:af:9d:0a:
0f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3C:2B:5D:1E:0D:C1:C1:E9:C0:41:C6:7E:4A:05:33:2D:33:B0:6B
X509v3 Authority Key Identifier:
keyid:FF:47:05:A3:63:DC:1D:8D:0E:A5:1C:9B:9A:1E:CB:D3:80:7B:D0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0cFo2PcHY0OpRybmh7L04B70FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/hjwrXR4NwcHpwEHGfkoFMy0zsGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/_0cFo2PcHY0OpRybmh7L04B70FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.24.248.0/21
185.12.158.0/23
IPv6:
2a03:2240::/32
Signature Algorithm: sha256WithRSAEncryption
8b:70:7a:8a:bd:88:c8:d5:2d:ac:09:8b:02:df:06:86:b9:b9:
35:4c:a7:ef:a8:88:6d:b7:b5:79:a9:5f:4d:6f:40:02:38:34:
91:9a:9f:86:ae:84:1b:68:57:e2:7b:a7:57:9b:e9:ca:93:57:
30:47:b5:e1:38:a6:c6:e4:2a:67:0d:4d:ca:43:77:89:b6:e8:
4f:d7:1d:33:85:a1:5c:8d:62:c8:7b:66:78:e7:a8:d5:90:12:
29:d7:48:cf:10:c9:3d:3d:52:25:ba:24:26:73:21:9d:34:01:
59:05:09:79:47:f7:df:ff:ac:d2:d3:74:3b:90:dc:aa:ff:73:
63:08:43:0e:85:e9:e4:85:fb:32:9d:4b:fb:67:a1:9c:41:b3:
9a:b1:bb:cb:57:6b:5b:93:f4:99:e4:51:f9:99:b1:4a:c4:34:
09:e6:88:b4:c7:d1:09:6d:4b:e0:4d:da:27:a1:80:11:4a:41:
92:ab:21:7a:f7:9b:e7:75:05:2d:c5:db:cd:d7:62:02:4a:69:
5e:ae:e0:dc:6b:d0:6d:25:a2:02:7d:95:e5:83:af:c9:bd:86:
59:83:ad:e0:0f:ed:ea:11:a2:0b:99:86:9c:45:56:35:6a:46:
9d:1c:b0:7f:a6:44:21:d0:e3:b4:16:66:7e:f1:79:17:0b:6f:
81:5a:63:7c
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYk6Fg243OpzGVLjsMJI0SPuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNDcwNWEzNjNkYzFkOGQwZWE1MWM5YjlhMWVjYmQzODA3
YmQwNTQwHhcNMjMwNzA5MDk1NzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjNjMmI1ZDFlMGRjMWMxZTljMDQxYzY3ZTRhMDUzMzJkMzNiMDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBXd5BppYyRVFKhJVuQwUHilMrW8
ClNxnOLx3G0gcZZ5pgaTOLkDCnWCC92ZakxkgJnFPMvQP9hw5KqdB7/r6oxyjtiK
GYcMt02wRGlq3bb3RI7Nbl3lU0eDHmb5rZQdppLl+dyKIVwofMGYdMm67Xohq0++
BSIhMIsZjqM5JSnHstx+0u7lcYBCkGdl/rwuDROUx4sEEUyi3OjF8wkzSyf6FFq7
EFpw/FJWpaHMOSuQ3M5zf6OK+FNYCrG7CdfhkgV6Pb05NSPMnP/7YkBJ7t2zRdd7
6sxGkBMEifw51fP4CE88Qi585FPj7aya290C7pzGDXBYTsNAxyGvnQoP+wIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFIY8K10eDcHB6cBBxn5KBTMtM7BrMB8GA1UdIwQY
MBaAFP9HBaNj3B2NDqUcm5oey9OAe9BUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzBjRm8yUGNIWTBPcFJ5Ym1oN0wwNEI3MEZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wNWIzZDEtMTE2Zi00ZDYwLWExNzYt
NTZiYmUzOGY3NDA3LzEvaGp3clhSNE53Y0hwd0VIR2Zrb0ZNeTB6c0dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wNWIzZDEtMTE2Zi00ZDYwLWExNzYtNTZiYmUzOGY3NDA3
LzEvXzBjRm8yUGNIWTBPcFJ5Ym1oN0wwNEI3MEZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDURj4AwQB
uQyeMA0EAgACMAcDBQAqAyJAMA0GCSqGSIb3DQEBCwUAA4IBAQCLcHqKvYjI1S2s
CYsC3waGubk1TKfvqIhtt7V5qV9Nb0ACODSRmp+GroQbaFfie6dXm+nKk1cwR7Xh
OKbG5CpnDU3KQ3eJtuhP1x0zhaFcjWLIe2Z456jVkBIp10jPEMk9PVIluiQmcyGd
NAFZBQl5R/ff/6zS03Q7kNyq/3NjCEMOhenkhfsynUv7Z6GcQbOasbvLV2tbk/SZ
5FH5mbFKxDQJ5oi0x9EJbUvgTdonoYARSkGSqyF695vndQUtxdvN12ICSmleruDc
a9BtJaICfZXlg6/JvYZZg63gD+3qEaILmYacRVY1akadHLB/pkQh0OO0FmZ+8XkX
C2+BWmN8
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:45 2023 by rpki-client on console.sobornost.net