Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5d6745-e0d6-40d0-84ed-c34953edc7e5/1/l_SznxxhGUVxftorgzg-R-G7T5c.roa
File: l_SznxxhGUVxftorgzg-R-G7T5c.roa (raw, json)
Hash identifier: cL4OEuki8bCWDsVemJD0iSMsKbuOiPO2U/wgH+p8aEQ=
Subject key identifier: 97:F4:B3:9F:1C:61:19:45:71:7E:DA:2B:83:38:3E:47:E1:BB:4F:97
Certificate issuer: /CN=be3c54d1edca692f44c9da383402c24fde723507
Certificate serial: 01856D4183145CE9A68C0E51E9C35FB190BE
Authority key identifier: BE:3C:54:D1:ED:CA:69:2F:44:C9:DA:38:34:02:C2:4F:DE:72:35:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjxU0e3KaS9Eydo4NALCT95yNQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5d6745-e0d6-40d0-84ed-c34953edc7e5/1/l_SznxxhGUVxftorgzg-R-G7T5c.roa
Signing time: Sun 01 Jan 2023 12:14:48 +0000
ROA not before: Sun 01 Jan 2023 12:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 193.42.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:83:14:5c:e9:a6:8c:0e:51:e9:c3:5f:b1:90:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3c54d1edca692f44c9da383402c24fde723507
Validity
Not Before: Jan 1 12:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97f4b39f1c611945717eda2b83383e47e1bb4f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ce:95:8e:fc:5f:1c:ac:f1:45:df:c1:18:7c:
03:42:69:f8:84:83:16:36:5f:11:81:e0:c7:ef:e2:
25:66:ce:90:85:3d:93:5e:31:65:ce:58:1a:3a:f4:
87:fe:a8:c7:23:49:aa:03:dd:4f:38:57:94:f9:bb:
dc:a9:16:07:94:1d:7f:35:f2:cd:18:ef:94:49:49:
d8:56:fc:0f:db:d0:e4:5f:77:16:ab:00:84:18:1a:
c9:45:8a:5f:1c:fc:ce:e8:91:88:53:91:f0:45:c2:
39:d5:7a:4e:de:54:73:6e:20:7f:ce:93:ff:71:7b:
4d:72:7c:f6:a2:ae:c9:26:88:b6:b6:2e:0d:10:1b:
64:d7:41:8c:c1:04:44:80:9e:51:a7:17:ae:82:be:
f2:df:a4:34:37:a9:46:fb:35:65:aa:2e:a0:52:c4:
f6:b0:b0:0b:6b:34:ff:12:80:38:c6:51:64:28:58:
da:15:f6:7d:25:dc:8f:0b:a7:af:f5:0e:d8:9a:5f:
bb:12:a9:d0:c1:03:00:e8:2b:66:4a:5a:70:e1:3d:
3a:c2:68:9a:18:4b:7b:1e:ce:fe:0e:1e:d3:c3:24:
7d:2a:0c:90:da:44:e4:fd:6d:89:b8:82:ba:e6:00:
d6:36:08:da:3e:6a:55:c1:9c:90:86:a2:9b:42:32:
ce:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F4:B3:9F:1C:61:19:45:71:7E:DA:2B:83:38:3E:47:E1:BB:4F:97
X509v3 Authority Key Identifier:
keyid:BE:3C:54:D1:ED:CA:69:2F:44:C9:DA:38:34:02:C2:4F:DE:72:35:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjxU0e3KaS9Eydo4NALCT95yNQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5d6745-e0d6-40d0-84ed-c34953edc7e5/1/l_SznxxhGUVxftorgzg-R-G7T5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5d6745-e0d6-40d0-84ed-c34953edc7e5/1/vjxU0e3KaS9Eydo4NALCT95yNQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.221.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:80:ad:83:9b:63:7b:b7:e9:75:16:78:7d:80:86:e4:52:25:
1e:6b:bb:45:f6:2c:e2:c4:45:2f:7c:62:bb:95:16:8e:33:11:
76:6a:96:fc:58:eb:ad:1f:a4:76:64:04:22:dc:b8:09:1d:f3:
96:44:7f:2c:18:50:fc:6d:06:25:bb:e8:1f:a5:95:76:1e:b1:
7b:bb:10:cd:2d:b6:0f:ec:3f:5a:4e:f8:1a:02:dd:a4:45:10:
4b:d2:c5:63:a9:05:96:50:5f:5b:dc:fe:99:c1:ce:13:e1:4a:
eb:f0:a5:75:7e:de:29:21:73:ae:60:65:93:4f:88:30:c2:f5:
38:da:ac:64:ee:bb:93:4a:cd:75:a4:c1:79:32:db:4a:0e:0e:
e6:a0:95:be:a4:56:5a:d5:4f:bb:17:a0:75:ee:b2:7c:10:9d:
04:34:52:c5:13:73:05:13:b8:5c:5c:78:65:91:bd:1c:c9:b3:
a9:1c:21:50:6e:8b:d2:a9:7d:3a:10:5a:43:1f:31:29:0f:bf:
8d:7b:69:6d:53:c4:43:ef:dc:9c:28:25:0d:fb:f3:cd:23:19:
18:9d:df:d8:d7:6e:23:76:92:c4:66:a6:c8:28:78:da:52:e6:
23:51:cc:7f:94:cc:7f:0e:4d:ce:ba:15:85:2e:73:ca:03:6a:
45:c0:3e:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtQYMUXOmmjA5R6cNfsZC+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlM2M1NGQxZWRjYTY5MmY0NGM5ZGEzODM0MDJjMjRmZGU3
MjM1MDcwHhcNMjMwMTAxMTIxNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2Y0YjM5ZjFjNjExOTQ1NzE3ZWRhMmI4MzM4M2U0N2UxYmI0Zjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk86VjvxfHKzxRd/BGHwDQmn4hIMW
Nl8RgeDH7+IlZs6QhT2TXjFlzlgaOvSH/qjHI0mqA91POFeU+bvcqRYHlB1/NfLN
GO+USUnYVvwP29DkX3cWqwCEGBrJRYpfHPzO6JGIU5HwRcI51XpO3lRzbiB/zpP/
cXtNcnz2oq7JJoi2ti4NEBtk10GMwQREgJ5Rpxeugr7y36Q0N6lG+zVlqi6gUsT2
sLALazT/EoA4xlFkKFjaFfZ9JdyPC6ev9Q7Yml+7EqnQwQMA6CtmSlpw4T06wmia
GEt7Hs7+Dh7TwyR9KgyQ2kTk/W2JuIK65gDWNgjaPmpVwZyQhqKbQjLOwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJf0s58cYRlFcX7aK4M4Pkfhu0+XMB8GA1UdIwQY
MBaAFL48VNHtymkvRMnaODQCwk/ecjUHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmp4VTBlM0thUzlFeWRvNE5BTENUOTV5TlFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS81ZDY3NDUtZTBkNi00MGQwLTg0ZWQt
YzM0OTUzZWRjN2U1LzEvbF9Tem54eGhHVVZ4ZnRvcmd6Zy1SLUc3VDVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS81ZDY3NDUtZTBkNi00MGQwLTg0ZWQtYzM0OTUzZWRjN2U1
LzEvdmp4VTBlM0thUzlFeWRvNE5BTENUOTV5TlFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSrdMA0G
CSqGSIb3DQEBCwUAA4IBAQAKgK2Dm2N7t+l1Fnh9gIbkUiUea7tF9izixEUvfGK7
lRaOMxF2apb8WOutH6R2ZAQi3LgJHfOWRH8sGFD8bQYlu+gfpZV2HrF7uxDNLbYP
7D9aTvgaAt2kRRBL0sVjqQWWUF9b3P6Zwc4T4Urr8KV1ft4pIXOuYGWTT4gwwvU4
2qxk7ruTSs11pMF5MttKDg7moJW+pFZa1U+7F6B17rJ8EJ0ENFLFE3MFE7hcXHhl
kb0cybOpHCFQbovSqX06EFpDHzEpD7+Ne2ltU8RD79ycKCUN+/PNIxkYnd/Y124j
dpLEZqbIKHjaUuYjUcx/lMx/Dk3OuhWFLnPKA2pFwD6J
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:50 2024 by rpki-client on console.sobornost.net