Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/Up_nQdNxuWVzZSYh_S6MC6sPET8.roa
File: Up_nQdNxuWVzZSYh_S6MC6sPET8.roa (raw, json)
Hash identifier: /NMYDjws0hC/CyWNUSRyNTjArPzHO4uJ0jShk+8sf+Q=
Subject key identifier: 52:9F:E7:41:D3:71:B9:65:73:65:26:21:FD:2E:8C:0B:AB:0F:11:3F
Certificate issuer: /CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Certificate serial: 01856C0A2AB6287BBA47590FF6E249E5C5B3
Authority key identifier: 34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/Up_nQdNxuWVzZSYh_S6MC6sPET8.roa
Signing time: Sun 01 Jan 2023 06:34:43 +0000
ROA not before: Sun 01 Jan 2023 06:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399114
IP address blocks: 185.162.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:2a:b6:28:7b:ba:47:59:0f:f6:e2:49:e5:c5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Validity
Not Before: Jan 1 06:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=529fe741d371b96573652621fd2e8c0bab0f113f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:df:86:fb:c8:0c:7e:fb:4a:f2:f5:3f:00:39:
ab:97:14:ee:9f:29:09:70:e8:10:45:49:38:ca:2d:
8a:22:28:19:46:9d:6c:89:c9:c8:09:c0:cb:d6:06:
66:07:56:7c:aa:a9:4f:38:ba:32:92:ac:e0:7f:76:
bb:74:17:48:4c:5d:89:af:8a:6c:8e:7b:cc:1c:dc:
71:e2:3c:ec:0d:4b:c8:82:6e:fc:94:4f:9d:ad:13:
55:b2:79:a4:fb:e7:9a:81:1d:0f:ae:72:a4:5c:48:
d7:1e:bd:d6:1c:e6:db:5a:c2:c8:ed:b0:5d:94:a9:
13:84:db:0c:49:f7:db:37:cb:05:a5:8a:b2:63:d0:
22:c0:ee:18:9b:5c:4b:aa:ce:f0:55:8e:3f:c2:dd:
67:85:db:63:b8:e9:b7:0c:08:81:6a:d9:c3:0b:b6:
e7:87:fe:72:30:87:5d:c5:4d:1c:35:23:d3:4e:9a:
f7:9b:d0:99:fe:52:14:25:f0:44:fc:55:97:04:28:
ae:ab:94:bb:36:5b:1b:2c:e7:c1:92:42:e3:34:61:
48:a2:51:63:67:28:b4:03:7b:da:44:c8:7d:9d:f4:
a8:d0:e5:c6:63:81:7b:bd:db:83:79:cf:ee:c0:f2:
82:29:1f:b7:d6:37:29:2c:98:0b:55:6c:d5:2f:2c:
27:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:9F:E7:41:D3:71:B9:65:73:65:26:21:FD:2E:8C:0B:AB:0F:11:3F
X509v3 Authority Key Identifier:
keyid:34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/Up_nQdNxuWVzZSYh_S6MC6sPET8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.75.0/24
Signature Algorithm: sha256WithRSAEncryption
55:bd:e8:b7:51:50:39:73:17:9f:c7:12:67:67:d9:75:85:e9:
be:a8:3e:a1:b7:66:19:85:d6:47:4a:c2:ef:44:85:a3:a3:c9:
98:cc:c3:c0:f1:45:fc:7b:54:92:a7:bd:94:53:fb:94:e3:f1:
be:06:3b:59:68:a5:9b:08:1a:7b:75:4a:4e:b6:e8:f6:fd:5f:
4b:c3:56:78:8e:de:01:ce:84:79:d2:66:03:37:cb:77:31:24:
f2:f0:d0:0d:bc:f0:75:29:ca:d2:dd:a9:99:2a:51:15:28:f3:
fc:fb:5c:3b:dd:07:b4:1a:c5:d6:89:7c:92:9b:90:95:fa:79:
94:80:24:62:01:e3:4a:b6:4d:84:de:fe:70:14:c8:1b:01:83:
9b:44:42:4a:67:4c:5d:ff:06:36:fa:d6:9b:75:9f:66:e5:3b:
54:7a:d9:19:58:b5:ca:fc:88:08:9d:1f:c4:12:34:8f:c9:a0:
e2:b4:67:e6:2a:c9:86:94:88:19:bb:a9:0b:65:ec:e4:41:1c:
f2:59:d3:be:d9:f0:05:2f:59:50:7a:bc:41:f4:3c:6b:49:ff:
3a:88:ff:1e:7d:31:26:c4:54:18:fa:67:f1:7a:39:57:9e:f1:
84:0c:23:78:2d:29:8a:75:92:a4:03:c5:b8:d5:97:18:fa:c1:
86:03:c9:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsCiq2KHu6R1kP9uJJ5cWzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MDZkMmM0MzljY2JjYjc4YTgyZDVjYjJiNGMzZmY2ZTk5
MzRiOTYwHhcNMjMwMTAxMDYzNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjlmZTc0MWQzNzFiOTY1NzM2NTI2MjFmZDJlOGMwYmFiMGYxMTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6t+G+8gMfvtK8vU/ADmrlxTunykJ
cOgQRUk4yi2KIigZRp1sicnICcDL1gZmB1Z8qqlPOLoykqzgf3a7dBdITF2Jr4ps
jnvMHNxx4jzsDUvIgm78lE+drRNVsnmk++eagR0PrnKkXEjXHr3WHObbWsLI7bBd
lKkThNsMSffbN8sFpYqyY9AiwO4Ym1xLqs7wVY4/wt1nhdtjuOm3DAiBatnDC7bn
h/5yMIddxU0cNSPTTpr3m9CZ/lIUJfBE/FWXBCiuq5S7NlsbLOfBkkLjNGFIolFj
Zyi0A3vaRMh9nfSo0OXGY4F7vduDec/uwPKCKR+31jcpLJgLVWzVLywn5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFKf50HTcbllc2UmIf0ujAurDxE/MB8GA1UdIwQY
MBaAFDQG0sQ5zLy3ioLVyytMP/bpk0uWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkFiU3hEbk12TGVLZ3RYTEswd185dW1UUzVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wYTNhMGYtNjBmOC00YTFjLWJiYTAt
N2I4ODBjMDYzMzY3LzEvVXBfblFkTnh1V1Z6WlNZaF9TNk1DNnNQRVQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8wYTNhMGYtNjBmOC00YTFjLWJiYTAtN2I4ODBjMDYzMzY3
LzEvTkFiU3hEbk12TGVLZ3RYTEswd185dW1UUzVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaJLMA0G
CSqGSIb3DQEBCwUAA4IBAQBVvei3UVA5cxefxxJnZ9l1hem+qD6ht2YZhdZHSsLv
RIWjo8mYzMPA8UX8e1SSp72UU/uU4/G+BjtZaKWbCBp7dUpOtuj2/V9Lw1Z4jt4B
zoR50mYDN8t3MSTy8NANvPB1KcrS3amZKlEVKPP8+1w73Qe0GsXWiXySm5CV+nmU
gCRiAeNKtk2E3v5wFMgbAYObREJKZ0xd/wY2+tabdZ9m5TtUetkZWLXK/IgInR/E
EjSPyaDitGfmKsmGlIgZu6kLZezkQRzyWdO+2fAFL1lQerxB9DxrSf86iP8efTEm
xFQY+mfxejlXnvGEDCN4LSmKdZKkA8W41ZcY+sGGA8kF
-----END CERTIFICATE-----
Generated at Tue Jan 2 16:35:44 2024 by rpki-client on console.sobornost.net