Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/wOmtEq7ZiEKOwIjg5ysiOdVkQ1I.roa
File: wOmtEq7ZiEKOwIjg5ysiOdVkQ1I.roa (raw, json)
Hash identifier: nuOo+CBNxLZ1eAs7FKgLqgf5RgTz2VniIN9u+jSqavY=
Subject key identifier: C0:E9:AD:12:AE:D9:88:42:8E:C0:88:E0:E7:2B:22:39:D5:64:43:52
Certificate issuer: /CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d
Certificate serial: 01886750213AFF8EC0FBE5A63DE6AF366C49
Authority key identifier: C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/wOmtEq7ZiEKOwIjg5ysiOdVkQ1I.roa
Signing time: Mon 29 May 2023 11:41:24 +0000
ROA not before: Mon 29 May 2023 11:41:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59645
IP address blocks: 193.104.168.0/24 maxlen: 24
195.191.196.0/23 maxlen: 24
2a06:d1c1:e::/48 maxlen: 48
2a06:d1c0:dead::/48 maxlen: 48
2a06:d1c1:a::/48 maxlen: 48
2a06:d1c0:deae::/48 maxlen: 48
2a06:d1c0:a761::/48 maxlen: 48
2a06:d1c0:f761::/48 maxlen: 48
2a06:d1c0:deac::/48 maxlen: 48
2a06:d1c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:50:21:3a:ff:8e:c0:fb:e5:a6:3d:e6:af:36:6c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c64fa0ad8987149f05534724b45a2f4d5ebf475d
Validity
Not Before: May 29 11:41:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0e9ad12aed988428ec088e0e72b2239d5644352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b7:c3:d0:68:ff:47:c7:31:8d:19:4d:73:6f:
be:df:dc:48:e9:a6:47:a9:53:d5:db:68:8d:21:6c:
82:4d:c1:33:21:2c:dd:46:18:46:07:81:08:ea:89:
7f:66:bb:db:2c:ad:cf:58:a9:fb:af:ed:95:c6:d6:
d3:b4:7f:ae:42:8e:4a:d6:3a:31:32:a6:1c:1b:2e:
2a:f9:f0:6b:f9:f9:03:86:76:d4:45:34:0f:bd:29:
3d:23:88:f8:3c:06:01:6f:e7:ba:2d:e6:2d:e6:01:
9d:a4:52:6a:4e:1c:c4:a0:4a:c2:46:0d:f8:77:76:
d6:74:c8:90:da:04:e6:52:f7:fe:54:12:f7:a3:95:
6d:89:4e:5d:97:bd:d9:9a:53:30:fd:aa:03:58:91:
48:61:dd:6d:3c:33:b3:c0:b8:a3:36:3b:27:6d:40:
ed:2f:14:78:e6:bd:5c:78:24:7e:af:07:b1:fe:13:
dd:84:f1:ed:1c:31:f6:87:f8:26:67:e6:4f:75:83:
a2:2d:f2:f2:e4:3b:19:cb:60:a1:c4:45:17:81:b0:
f6:9e:84:b4:aa:60:c1:2d:35:f2:81:fb:fc:35:09:
b4:ea:49:b9:9c:38:57:80:59:9e:d3:36:ac:b3:88:
8d:ea:1c:dd:36:a8:de:ea:c5:b8:62:d0:68:5a:66:
ad:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E9:AD:12:AE:D9:88:42:8E:C0:88:E0:E7:2B:22:39:D5:64:43:52
X509v3 Authority Key Identifier:
keyid:C6:4F:A0:AD:89:87:14:9F:05:53:47:24:B4:5A:2F:4D:5E:BF:47:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xk-grYmHFJ8FU0cktFovTV6_R10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/wOmtEq7ZiEKOwIjg5ysiOdVkQ1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/24015f-091c-4c5d-b5c1-bcf77026939d/1/xk-grYmHFJ8FU0cktFovTV6_R10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.168.0/24
195.191.196.0/23
IPv6:
2a06:d1c0::/29
Signature Algorithm: sha256WithRSAEncryption
9d:a7:ca:9d:b8:20:8a:70:e1:a6:e4:66:48:85:f7:e0:16:54:
fa:f8:5b:44:a2:fb:06:b8:a3:2c:19:4f:60:b0:88:a7:ca:63:
a9:97:e8:17:e2:71:60:25:dc:bc:0d:5f:35:38:10:de:cf:9b:
95:b4:d2:ad:68:b2:f6:59:08:66:b8:14:87:71:b5:2e:1e:b7:
96:88:9c:8b:7f:a6:68:32:1a:15:a2:66:ed:63:01:fc:d5:c4:
55:67:c5:f6:dc:bb:c9:3a:c2:0e:0e:30:fe:70:4f:de:5a:35:
09:09:ed:09:dc:7d:fa:18:2f:84:89:55:cd:9d:a4:71:57:e7:
77:52:0c:5c:06:9a:fe:6a:7f:6b:1e:52:df:71:1b:25:2b:9f:
ad:19:76:92:f9:d5:69:52:c1:3a:29:67:2b:ac:5d:b1:04:bf:
de:62:a1:ad:17:8d:59:b3:a0:be:da:f2:cd:60:a9:42:7d:3b:
4b:38:d4:c1:72:f0:65:74:f3:ac:42:6a:45:aa:14:e7:f1:7c:
8d:05:0a:92:40:58:93:05:ff:c0:50:77:ba:7e:a4:5e:b1:e3:
70:91:fa:37:b2:a0:2f:98:2c:8b:29:e6:97:2a:42:4c:02:2c:
a8:61:d6:cf:df:77:4d:e7:c5:86:e0:f2:a5:69:27:63:e7:91:
ed:c7:4c:77
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYhnUCE6/47A++WmPeavNmxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NGZhMGFkODk4NzE0OWYwNTUzNDcyNGI0NWEyZjRkNWVi
ZjQ3NWQwHhcNMjMwNTI5MTE0MTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGU5YWQxMmFlZDk4ODQyOGVjMDg4ZTBlNzJiMjIzOWQ1NjQ0MzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLfD0Gj/R8cxjRlNc2++39xI6aZH
qVPV22iNIWyCTcEzISzdRhhGB4EI6ol/ZrvbLK3PWKn7r+2VxtbTtH+uQo5K1jox
MqYcGy4q+fBr+fkDhnbURTQPvSk9I4j4PAYBb+e6LeYt5gGdpFJqThzEoErCRg34
d3bWdMiQ2gTmUvf+VBL3o5VtiU5dl73ZmlMw/aoDWJFIYd1tPDOzwLijNjsnbUDt
LxR45r1ceCR+rwex/hPdhPHtHDH2h/gmZ+ZPdYOiLfLy5DsZy2ChxEUXgbD2noS0
qmDBLTXygfv8NQm06km5nDhXgFme0zass4iN6hzdNqje6sW4YtBoWmat2QIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFMDprRKu2YhCjsCI4OcrIjnVZENSMB8GA1UdIwQY
MBaAFMZPoK2JhxSfBVNHJLRaL01ev0ddMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGstZ3JZbUhGSjhGVTBja3RGb3ZUVjZfUjEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yNDAxNWYtMDkxYy00YzVkLWI1YzEt
YmNmNzcwMjY5MzlkLzEvd09tdEVxN1ppRUtPd0lqZzV5c2lPZFZrUTFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8yNDAxNWYtMDkxYy00YzVkLWI1YzEtYmNmNzcwMjY5Mzlk
LzEveGstZ3JZbUhGSjhGVTBja3RGb3ZUVjZfUjEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAwWioAwQB
w7/EMA0EAgACMAcDBQMqBtHAMA0GCSqGSIb3DQEBCwUAA4IBAQCdp8qduCCKcOGm
5GZIhffgFlT6+FtEovsGuKMsGU9gsIinymOpl+gX4nFgJdy8DV81OBDez5uVtNKt
aLL2WQhmuBSHcbUuHreWiJyLf6ZoMhoVombtYwH81cRVZ8X23LvJOsIODjD+cE/e
WjUJCe0J3H36GC+EiVXNnaRxV+d3UgxcBpr+an9rHlLfcRslK5+tGXaS+dVpUsE6
KWcrrF2xBL/eYqGtF41Zs6C+2vLNYKlCfTtLONTBcvBldPOsQmpFqhTn8XyNBQqS
QFiTBf/AUHe6fqReseNwkfo3sqAvmCyLKeaXKkJMAiyoYdbP33dN58WG4PKlaSdj
55Htx0x3
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:04 2023 by rpki-client on console.sobornost.net