Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/hs8_9eb_XA30MDoFcWt4aBzK86Q.roa
File: hs8_9eb_XA30MDoFcWt4aBzK86Q.roa (raw, json)
Hash identifier: C6H1UsAddpMHmPbZQavpuKh+VmJnPpXAUckpfPXQrRA=
Subject key identifier: 86:CF:3F:F5:E6:FF:5C:0D:F4:30:3A:05:71:6B:78:68:1C:CA:F3:A4
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 01856CE613C07D9171FB88E1CC6ED9C35E30
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/hs8_9eb_XA30MDoFcWt4aBzK86Q.roa
Signing time: Sun 01 Jan 2023 10:34:55 +0000
ROA not before: Sun 01 Jan 2023 10:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207902
IP address blocks: 194.113.112.0/23 maxlen: 23
194.113.118.0/23 maxlen: 23
2a0e:7900::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:13:c0:7d:91:71:fb:88:e1:cc:6e:d9:c3:5e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Jan 1 10:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86cf3ff5e6ff5c0df4303a05716b78681ccaf3a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:50:6f:1d:76:83:4c:fc:a5:ac:ae:91:fa:7b:
84:fd:ce:e4:42:ad:c0:fd:2f:a1:f8:36:88:58:18:
8c:da:61:d9:dd:4a:4d:98:d5:c5:03:b6:dd:e9:c3:
31:8a:84:83:d0:52:07:a0:fb:2a:33:ae:82:2b:b8:
57:33:d9:09:59:58:a7:a4:b5:d2:36:1b:db:96:29:
52:6c:b7:47:f8:9b:e3:ee:db:45:87:cb:84:bf:14:
e3:d2:30:f0:6e:6c:1d:57:7a:81:22:0f:73:ba:c7:
5b:83:8d:4e:56:2a:99:80:a4:98:f4:de:9b:fd:5c:
e9:ac:5b:ef:a4:f6:73:7d:dd:b4:16:05:e0:5c:ab:
8d:96:96:40:d0:b0:34:3a:91:ef:cb:63:14:e9:c1:
30:1f:8f:9f:9f:2b:f7:66:8d:eb:0f:c9:7b:b9:66:
53:54:b0:a0:09:40:2c:80:9c:db:6b:94:80:15:1c:
2f:be:cf:b2:27:5a:fd:78:f2:d4:3a:9d:3a:29:9c:
9d:9b:cd:4c:c6:4b:f2:71:d8:09:a9:e9:f5:3c:5e:
2c:63:71:38:b3:26:61:02:38:03:81:93:bd:25:ad:
fb:c3:a7:7f:69:07:97:01:30:74:69:d9:c9:fb:00:
12:1f:ce:f7:76:42:79:3a:ad:fd:1b:dd:f7:fa:47:
54:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:CF:3F:F5:E6:FF:5C:0D:F4:30:3A:05:71:6B:78:68:1C:CA:F3:A4
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/hs8_9eb_XA30MDoFcWt4aBzK86Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.112.0/23
194.113.118.0/23
IPv6:
2a0e:7900::/29
Signature Algorithm: sha256WithRSAEncryption
27:00:06:c4:55:8a:d5:f1:51:ad:44:39:37:84:6e:8b:03:37:
a3:fa:96:f3:53:32:3d:3e:d9:fa:18:eb:d9:71:86:d3:8d:64:
77:f2:35:1d:86:40:f7:30:7e:26:50:e6:a4:b2:93:81:15:a2:
3a:17:7c:7f:ab:02:6b:d4:89:62:14:f1:46:63:d1:d7:29:2c:
4f:ad:0a:77:c2:5f:d8:06:cc:70:2c:56:0b:25:00:c1:77:93:
24:86:8a:68:93:50:f2:44:98:0a:c9:4f:97:45:97:a8:0a:88:
bd:c3:16:86:73:d0:25:b2:1d:c1:3f:5c:76:75:0f:c9:df:9c:
e9:eb:69:a0:01:62:1f:f7:74:ad:1e:06:50:0c:6c:81:02:fd:
0c:dd:39:ac:5c:71:ce:05:fb:3d:e6:55:a8:35:2b:ed:35:93:
d0:5e:80:82:8d:fc:44:a8:e1:bd:36:07:3b:73:3e:01:ae:3b:
ab:ec:d6:9f:6f:24:72:e8:e3:4f:67:d4:5b:0d:07:10:56:82:
5b:97:37:67:e0:e6:0c:9c:33:80:e5:f5:90:df:17:2c:25:73:
f9:30:1f:db:67:81:d2:15:49:f0:33:5a:a8:bd:94:2e:b2:ec:
a7:fc:27:34:a8:2e:a6:ff:c0:3c:b8:19:c8:d9:c5:5c:c2:b5:
2e:e9:42:16
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYVs5hPAfZFx+4jhzG7Zw14wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZTRiYWY5OWFiODQwMTI5MTMzMjg1ZmU5YWQ3YjgzZmQx
MzBjMzkwHhcNMjMwMTAxMTAzNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmNmM2ZmNWU2ZmY1YzBkZjQzMDNhMDU3MTZiNzg2ODFjY2FmM2E0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVBvHXaDTPylrK6R+nuE/c7kQq3A
/S+h+DaIWBiM2mHZ3UpNmNXFA7bd6cMxioSD0FIHoPsqM66CK7hXM9kJWVinpLXS
NhvblilSbLdH+Jvj7ttFh8uEvxTj0jDwbmwdV3qBIg9zusdbg41OViqZgKSY9N6b
/VzprFvvpPZzfd20FgXgXKuNlpZA0LA0OpHvy2MU6cEwH4+fnyv3Zo3rD8l7uWZT
VLCgCUAsgJzba5SAFRwvvs+yJ1r9ePLUOp06KZydm81MxkvycdgJqen1PF4sY3E4
syZhAjgDgZO9Ja37w6d/aQeXATB0adnJ+wASH873dkJ5Oq39G933+kdU1wIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFIbPP/Xm/1wN9DA6BXFreGgcyvOkMB8GA1UdIwQY
MBaAFHLkuvmauEASkTMoX+mte4P9Eww5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VTNi1acTRRQktSTXloZjZhMTdnXzBURERrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi82NmI3NGMtODFjMS00MTBlLTk1N2Qt
YThkNjVkY2NiOTZiLzEvaHM4XzllYl9YQTMwTURvRmNXdDRhQnpLODZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi82NmI3NGMtODFjMS00MTBlLTk1N2QtYThkNjVkY2NiOTZi
LzEvY3VTNi1acTRRQktSTXloZjZhMTdnXzBURERrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBwnFwAwQB
wnF2MA0EAgACMAcDBQMqDnkAMA0GCSqGSIb3DQEBCwUAA4IBAQAnAAbEVYrV8VGt
RDk3hG6LAzej+pbzUzI9Ptn6GOvZcYbTjWR38jUdhkD3MH4mUOakspOBFaI6F3x/
qwJr1IliFPFGY9HXKSxPrQp3wl/YBsxwLFYLJQDBd5Mkhopok1DyRJgKyU+XRZeo
Coi9wxaGc9Alsh3BP1x2dQ/J35zp62mgAWIf93StHgZQDGyBAv0M3TmsXHHOBfs9
5lWoNSvtNZPQXoCCjfxEqOG9Ngc7cz4Brjur7NafbyRy6ONPZ9RbDQcQVoJblzdn
4OYMnDOA5fWQ3xcsJXP5MB/bZ4HSFUnwM1qovZQusuyn/Cc0qC6m/8A8uBnI2cVc
wrUu6UIW
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net