Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/iJvxrp3QWLUdJKR1KOhe5Ya1ICo.roa
File: iJvxrp3QWLUdJKR1KOhe5Ya1ICo.roa (raw, json)
Hash identifier: b1AzEaPc7qpPZzX87H3DGYBVbWRRwUKYdH9Hwsc2SpM=
Subject key identifier: 88:9B:F1:AE:9D:D0:58:B5:1D:24:A4:75:28:E8:5E:E5:86:B5:20:2A
Certificate issuer: /CN=826be1fb71af48d6b318510aa8bdf9a815f33db8
Certificate serial: 01856E6663CD6010BDD3D14F82D4D6843FA7
Authority key identifier: 82:6B:E1:FB:71:AF:48:D6:B3:18:51:0A:A8:BD:F9:A8:15:F3:3D:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmvh-3GvSNazGFEKqL35qBXzPbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/iJvxrp3QWLUdJKR1KOhe5Ya1ICo.roa
Signing time: Sun 01 Jan 2023 17:34:42 +0000
ROA not before: Sun 01 Jan 2023 17:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 192.166.225.0/24 maxlen: 24
192.166.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:63:cd:60:10:bd:d3:d1:4f:82:d4:d6:84:3f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826be1fb71af48d6b318510aa8bdf9a815f33db8
Validity
Not Before: Jan 1 17:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=889bf1ae9dd058b51d24a47528e85ee586b5202a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a4:d9:5e:81:7d:22:56:52:53:0a:d5:e6:6c:
e0:db:44:7e:27:66:83:35:e0:bd:65:b4:4f:44:fe:
1e:2d:65:7e:57:0a:1a:ff:ed:9f:ad:60:b2:3d:15:
18:c0:df:38:4b:9b:14:61:b1:75:ae:98:1e:76:5f:
91:49:ee:b8:0b:f7:a2:a9:6a:73:d2:93:75:c2:4a:
14:be:e3:1b:3a:bd:38:d0:05:5a:07:36:d8:ed:1c:
72:86:6b:36:0a:cd:b9:7e:0a:f7:80:fd:40:1b:81:
12:8a:6c:dd:f7:75:29:da:92:ed:5f:48:ca:c1:7a:
93:30:59:1c:2b:5b:71:7d:2d:26:b8:9d:69:0a:e3:
61:73:42:ad:05:92:05:95:6b:10:85:65:61:50:79:
97:72:df:96:b9:08:1b:55:ae:bc:86:25:4e:17:da:
3e:27:5c:7a:6e:d3:4b:98:67:cd:0b:6a:65:76:7c:
fb:0a:f9:98:cb:5b:32:c6:08:39:e3:00:9b:75:7a:
67:9b:c8:b6:23:c2:ff:46:91:9c:7a:3c:38:c2:54:
37:b3:64:53:28:b3:02:dd:46:1d:f6:f1:73:fb:e6:
33:dd:91:25:b1:37:ba:6f:c0:27:a4:77:7e:ba:a7:
9d:6a:d5:ef:ed:45:53:76:74:19:69:78:69:39:d9:
55:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9B:F1:AE:9D:D0:58:B5:1D:24:A4:75:28:E8:5E:E5:86:B5:20:2A
X509v3 Authority Key Identifier:
keyid:82:6B:E1:FB:71:AF:48:D6:B3:18:51:0A:A8:BD:F9:A8:15:F3:3D:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmvh-3GvSNazGFEKqL35qBXzPbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/iJvxrp3QWLUdJKR1KOhe5Ya1ICo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/ac689b-0e36-49fd-8f9c-ded720142744/1/gmvh-3GvSNazGFEKqL35qBXzPbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.224.0/23
Signature Algorithm: sha256WithRSAEncryption
28:e7:ea:b0:ac:83:d7:c6:67:3d:3f:02:29:58:85:a6:d2:0d:
dc:6f:fb:b8:0d:37:b5:3f:86:b5:ae:8d:54:0f:43:e7:68:6e:
8a:ec:d9:7b:ae:e1:a1:4f:c3:77:d7:10:7e:c4:7c:15:bc:bd:
ce:f2:79:67:1e:5e:76:b2:48:45:6a:2c:51:fc:f5:05:c1:5d:
80:b6:41:28:36:af:f8:68:c0:41:db:13:a8:43:59:aa:8f:cb:
49:eb:aa:f1:24:46:57:71:86:67:76:f1:f5:f2:62:90:db:49:
23:87:97:99:1f:d9:94:1b:37:ed:04:8d:76:2a:fd:4a:51:70:
a3:b0:6a:ef:78:63:36:33:89:70:c9:1a:4a:79:f9:ef:a3:34:
3b:32:e3:99:96:9d:50:8b:ec:0d:71:ff:dd:2a:fd:66:75:50:
d8:73:4d:39:07:f7:5c:f3:36:7c:51:3a:97:b8:2f:77:56:5e:
d3:70:6a:0f:42:d6:ff:14:37:c7:29:0f:0d:f5:17:a9:71:69:
c7:1d:27:00:32:b0:31:09:ee:45:e9:f3:6c:6c:03:e0:3d:02:
18:bd:fc:f4:c9:fb:00:cb:50:be:b4:2d:ea:0d:2d:f4:41:ad:
b2:f6:8e:03:50:4b:a1:35:3e:18:97:37:06:7c:85:48:7d:c6:
df:bf:6f:1b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuZmPNYBC909FPgtTWhD+nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNmJlMWZiNzFhZjQ4ZDZiMzE4NTEwYWE4YmRmOWE4MTVm
MzNkYjgwHhcNMjMwMTAxMTczNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODliZjFhZTlkZDA1OGI1MWQyNGE0NzUyOGU4NWVlNTg2YjUyMDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaTZXoF9IlZSUwrV5mzg20R+J2aD
NeC9ZbRPRP4eLWV+Vwoa/+2frWCyPRUYwN84S5sUYbF1rpgedl+RSe64C/eiqWpz
0pN1wkoUvuMbOr040AVaBzbY7Rxyhms2Cs25fgr3gP1AG4ESimzd93Up2pLtX0jK
wXqTMFkcK1txfS0muJ1pCuNhc0KtBZIFlWsQhWVhUHmXct+WuQgbVa68hiVOF9o+
J1x6btNLmGfNC2pldnz7CvmYy1syxgg54wCbdXpnm8i2I8L/RpGcejw4wlQ3s2RT
KLMC3UYd9vFz++Yz3ZElsTe6b8AnpHd+uqedatXv7UVTdnQZaXhpOdlVCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIib8a6d0Fi1HSSkdSjoXuWGtSAqMB8GA1UdIwQY
MBaAFIJr4ftxr0jWsxhRCqi9+agV8z24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ212aC0zR3ZTTmF6R0ZFS3FMMzVxQlh6UGJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9hYzY4OWItMGUzNi00OWZkLThmOWMt
ZGVkNzIwMTQyNzQ0LzEvaUp2eHJwM1FXTFVkSktSMUtPaGU1WWExSUNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9hYzY4OWItMGUzNi00OWZkLThmOWMtZGVkNzIwMTQyNzQ0
LzEvZ212aC0zR3ZTTmF6R0ZFS3FMMzVxQlh6UGJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwKbgMA0G
CSqGSIb3DQEBCwUAA4IBAQAo5+qwrIPXxmc9PwIpWIWm0g3cb/u4DTe1P4a1ro1U
D0PnaG6K7Nl7ruGhT8N31xB+xHwVvL3O8nlnHl52skhFaixR/PUFwV2AtkEoNq/4
aMBB2xOoQ1mqj8tJ66rxJEZXcYZndvH18mKQ20kjh5eZH9mUGzftBI12Kv1KUXCj
sGrveGM2M4lwyRpKefnvozQ7MuOZlp1Qi+wNcf/dKv1mdVDYc005B/dc8zZ8UTqX
uC93Vl7TcGoPQtb/FDfHKQ8N9RepcWnHHScAMrAxCe5F6fNsbAPgPQIYvfz0yfsA
y1C+tC3qDS30Qa2y9o4DUEuhNT4YlzcGfIVIfcbfv28b
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:56 2024 by rpki-client on console.sobornost.net