Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/D6PfGliwQElcd08lwBT5AiWXils.roa
File: D6PfGliwQElcd08lwBT5AiWXils.roa (raw, json)
Hash identifier: c9S0u0t6isC4EL4vj41Jo3TX2eeQeAPZqsdLO4irlEw=
Subject key identifier: 0F:A3:DF:1A:58:B0:40:49:5C:77:4F:25:C0:14:F9:02:25:97:8A:5B
Certificate issuer: /CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Certificate serial: 01857230E7106A093CB671C019084BF34A5D
Authority key identifier: E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/D6PfGliwQElcd08lwBT5AiWXils.roa
Signing time: Mon 02 Jan 2023 11:14:45 +0000
ROA not before: Mon 02 Jan 2023 11:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50181
IP address blocks: 77.243.222.0/23 maxlen: 23
77.243.220.0/23 maxlen: 23
46.31.176.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:e7:10:6a:09:3c:b6:71:c0:19:08:4b:f3:4a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Validity
Not Before: Jan 2 11:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fa3df1a58b040495c774f25c014f90225978a5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:65:8f:8b:c9:b7:24:b3:93:8b:16:31:20:76:
98:a6:f7:80:8f:83:87:41:26:f2:68:8d:55:6e:ca:
b3:5e:e3:b8:8a:0d:67:0a:63:74:e6:ee:31:13:6d:
4b:eb:7b:0c:06:5e:a7:38:43:09:8c:25:5c:0f:33:
6f:74:e9:e3:a8:af:a2:2c:bf:1c:f0:20:97:73:ea:
0a:5f:80:0f:fe:c5:13:90:9c:66:f7:80:d9:b6:51:
6f:c1:af:3e:3f:7c:94:ea:c6:d2:d1:ef:a8:74:fd:
a0:3d:07:e1:d2:1e:5b:82:aa:cb:e4:1a:b3:37:06:
15:68:f8:a5:b1:d0:d1:7f:b0:49:58:3c:63:5c:bc:
36:d5:63:6f:1b:d1:28:9e:65:2b:5d:d4:a5:02:33:
81:3d:c6:73:d6:8b:1a:7c:77:5d:d5:6d:ac:08:b2:
5d:bc:e7:d5:7b:97:ea:49:f7:2c:43:7e:91:2b:41:
de:60:79:56:fc:ce:92:1e:65:d4:9b:80:23:62:90:
6a:3c:94:5d:f0:94:3b:83:d3:06:74:ae:d6:fe:f2:
38:bb:04:6e:44:0f:55:62:34:14:7c:63:59:b0:fe:
e7:b8:ec:fd:b1:88:5e:eb:08:f9:28:9b:ca:c5:82:
c9:91:ea:f4:ee:bd:81:72:be:c8:26:83:66:37:ed:
6b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A3:DF:1A:58:B0:40:49:5C:77:4F:25:C0:14:F9:02:25:97:8A:5B
X509v3 Authority Key Identifier:
keyid:E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/D6PfGliwQElcd08lwBT5AiWXils.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.176.0/23
77.243.220.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:73:22:36:59:d6:84:53:73:58:9b:2c:ed:78:58:f4:3a:ca:
c9:31:2a:6d:20:a6:db:ab:dd:c6:1d:a8:f7:e0:8b:26:0e:16:
c9:6d:b8:63:eb:a5:ba:14:ab:03:94:dd:17:c1:1f:c1:b0:ca:
eb:d4:18:93:ec:e4:6d:a6:a5:70:ae:15:27:8e:c8:fe:c1:c8:
d4:6f:5e:92:30:3c:50:1a:4f:72:e1:f7:de:cd:d6:ab:8c:2c:
fd:61:bf:df:4e:70:26:3a:ab:b2:05:ba:2e:fc:43:fc:47:17:
10:d3:ed:5f:33:ab:63:6e:76:0f:65:a1:f5:c6:05:f4:c6:86:
e2:b2:da:35:fd:4a:64:ff:bb:3d:be:41:77:59:67:07:02:cd:
9e:e4:fb:59:f0:4c:85:cc:5c:e7:5e:d8:4b:37:b9:ed:57:af:
66:15:8a:e3:94:c4:3c:ba:35:43:7a:63:e9:f1:d6:f0:b5:3d:
c7:8f:0a:7d:95:a1:fd:74:9c:71:b9:6c:4e:30:b4:4d:fa:51:
26:56:aa:8c:f1:84:f3:04:4f:68:58:f0:27:05:b4:98:d5:fb:
25:8c:61:49:dc:a3:ac:16:97:76:0e:6c:ea:1f:44:d4:6a:64:
48:58:3f:cb:c6:6a:40:72:69:24:32:87:01:b7:71:c6:21:17:
65:9d:2d:1c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVyMOcQagk8tnHAGQhL80pdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxYWMwMzIyYjNlYWI2NTcyZWNlMmEwYWM1YWJmMTY0YTVi
YmZmMjAwHhcNMjMwMTAyMTExNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmEzZGYxYTU4YjA0MDQ5NWM3NzRmMjVjMDE0ZjkwMjI1OTc4YTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgmWPi8m3JLOTixYxIHaYpveAj4OH
QSbyaI1VbsqzXuO4ig1nCmN05u4xE21L63sMBl6nOEMJjCVcDzNvdOnjqK+iLL8c
8CCXc+oKX4AP/sUTkJxm94DZtlFvwa8+P3yU6sbS0e+odP2gPQfh0h5bgqrL5Bqz
NwYVaPilsdDRf7BJWDxjXLw21WNvG9EonmUrXdSlAjOBPcZz1osafHdd1W2sCLJd
vOfVe5fqSfcsQ36RK0HeYHlW/M6SHmXUm4AjYpBqPJRd8JQ7g9MGdK7W/vI4uwRu
RA9VYjQUfGNZsP7nuOz9sYhe6wj5KJvKxYLJker07r2Bcr7IJoNmN+1rLQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFA+j3xpYsEBJXHdPJcAU+QIll4pbMB8GA1UdIwQY
MBaAFOGsAyKz6rZXLs4qCsWr8WSlu/8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9mZjAwMzYtODMxMy00YjNkLWFkN2Yt
OGQ4MWZkYzZmMTcwLzEvRDZQZkdsaXdRRWxjZDA4bHdCVDVBaVdYaWxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9mZjAwMzYtODMxMy00YjNkLWFkN2YtOGQ4MWZkYzZmMTcw
LzEvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLh+wAwQC
TfPcMA0GCSqGSIb3DQEBCwUAA4IBAQBbcyI2WdaEU3NYmyzteFj0OsrJMSptIKbb
q93GHaj34IsmDhbJbbhj66W6FKsDlN0XwR/BsMrr1BiT7ORtpqVwrhUnjsj+wcjU
b16SMDxQGk9y4ffezdarjCz9Yb/fTnAmOquyBbou/EP8RxcQ0+1fM6tjbnYPZaH1
xgX0xobisto1/Upk/7s9vkF3WWcHAs2e5PtZ8EyFzFznXthLN7ntV69mFYrjlMQ8
ujVDemPp8dbwtT3Hjwp9laH9dJxxuWxOMLRN+lEmVqqM8YTzBE9oWPAnBbSY1fsl
jGFJ3KOsFpd2DmzqH0TUamRIWD/LxmpAcmkkMocBt3HGIRdlnS0c
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:19 2024 by rpki-client on console.sobornost.net