Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/1p6qa-f3gRMTkurJAf9Z_U2nmKg.roa
File: 1p6qa-f3gRMTkurJAf9Z_U2nmKg.roa (raw, json)
Hash identifier: YRXH3nmlL7I+w+3kXYOauIbi1nAjOPG7GCRLJOigYG4=
Subject key identifier: D6:9E:AA:6B:E7:F7:81:13:13:92:EA:C9:01:FF:59:FD:4D:A7:98:A8
Certificate issuer: /CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d
Certificate serial: 0186382CD94D345A2F1027684392D506AA37
Authority key identifier: B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/1p6qa-f3gRMTkurJAf9Z_U2nmKg.roa
Signing time: Thu 09 Feb 2023 21:55:08 +0000
ROA not before: Thu 09 Feb 2023 21:55:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40964
IP address blocks: 89.107.132.0/23 maxlen: 23
89.107.130.0/23 maxlen: 23
89.107.128.0/23 maxlen: 23
89.107.134.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:38:2c:d9:4d:34:5a:2f:10:27:68:43:92:d5:06:aa:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd35ccff6c2b86a1fad8f103bc20070d09e50d
Validity
Not Before: Feb 9 21:55:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d69eaa6be7f781131392eac901ff59fd4da798a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:68:02:4f:11:dc:7c:b1:9e:f6:1f:0c:d9:2f:
75:b3:06:79:9f:e1:05:eb:b8:ad:d4:87:ee:08:8e:
a2:12:de:a1:15:0e:62:bf:e1:dd:1f:d5:33:a5:9c:
4a:a1:0f:c9:8a:56:80:32:35:e1:76:12:de:12:37:
70:c2:ca:ef:63:63:d5:17:d4:30:10:e4:cd:8c:57:
a0:14:8a:c7:08:03:13:b4:6d:fb:3f:bd:b2:4c:72:
8a:5e:0f:ae:30:37:ed:97:5c:d6:e9:97:b0:36:96:
7a:b4:fb:5a:87:db:bc:55:ac:24:3f:e5:c5:c6:02:
41:d8:34:4f:34:e1:fe:a4:df:f4:19:20:75:59:03:
60:90:12:e9:e0:70:80:85:52:34:70:98:8d:06:98:
2c:03:82:d9:61:2f:d3:e3:b1:a5:f0:f0:72:aa:77:
1f:cb:e0:8f:dc:60:9b:46:cb:58:28:1d:c5:9a:bb:
93:39:fd:e4:68:bd:27:47:05:d9:a5:1e:97:ad:fc:
0a:79:e4:d3:fe:5b:a3:73:33:a6:1d:47:2d:3e:17:
f5:42:45:44:5d:dd:72:de:60:c4:bb:a1:e3:a4:d5:
73:69:27:53:22:92:e7:43:b3:6e:60:59:e4:c9:ca:
3c:38:d8:17:b0:20:4e:b9:1e:53:f9:5b:38:5d:1e:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9E:AA:6B:E7:F7:81:13:13:92:EA:C9:01:FF:59:FD:4D:A7:98:A8
X509v3 Authority Key Identifier:
keyid:B3:DD:35:CC:FF:6C:2B:86:A1:FA:D8:F1:03:BC:20:07:0D:09:E5:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s901zP9sK4ah-tjxA7wgBw0J5Q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/1p6qa-f3gRMTkurJAf9Z_U2nmKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/44d4a3-7a84-4499-8b71-2b105051ba59/1/s901zP9sK4ah-tjxA7wgBw0J5Q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.128.0/21
Signature Algorithm: sha256WithRSAEncryption
41:fc:e8:93:c2:f9:84:84:b5:d3:4a:0c:b9:0b:42:44:a2:ee:
92:2b:51:c7:3b:eb:fc:4f:a4:dc:77:16:63:0a:3f:57:1c:3f:
6b:76:0d:92:24:32:43:7b:96:04:9e:0e:de:27:f8:ab:53:c2:
57:71:02:79:ae:e0:7b:31:52:d4:4f:83:2c:7c:58:0b:72:3f:
7a:b2:b3:64:82:dc:2c:12:e2:be:8e:a9:0a:a4:4f:28:4a:ad:
97:ec:c0:07:73:fe:ec:7b:26:f7:a3:53:13:2c:f1:83:6e:6e:
a8:42:05:08:a1:7a:aa:6c:45:39:d4:55:1c:f2:ac:78:4b:8d:
87:64:2b:46:20:4b:dd:32:33:af:62:ea:47:b5:64:18:74:d8:
1a:cb:22:f3:d3:b7:8a:65:c2:cd:5e:16:98:ce:3f:21:ed:50:
4b:bc:67:82:8b:7b:b7:76:8f:c6:6c:94:41:00:df:e3:ae:e4:
6a:9d:97:86:00:34:91:de:ab:82:55:21:e3:cb:88:be:c7:cb:
d5:53:60:be:6c:0a:6f:de:c1:b6:5c:35:9d:55:19:43:32:e1:
15:f8:2a:42:a4:fd:41:7a:30:88:00:59:34:30:ae:44:a2:4e:
60:07:39:34:ee:3b:b2:81:43:5b:6e:4d:be:f4:55:b8:65:d1:
5e:ee:51:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYY4LNlNNFovECdoQ5LVBqo3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzZGQzNWNjZmY2YzJiODZhMWZhZDhmMTAzYmMyMDA3MGQw
OWU1MGQwHhcNMjMwMjA5MjE1NTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjllYWE2YmU3Zjc4MTEzMTM5MmVhYzkwMWZmNTlmZDRkYTc5OGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGgCTxHcfLGe9h8M2S91swZ5n+EF
67it1IfuCI6iEt6hFQ5iv+HdH9UzpZxKoQ/JilaAMjXhdhLeEjdwwsrvY2PVF9Qw
EOTNjFegFIrHCAMTtG37P72yTHKKXg+uMDftl1zW6ZewNpZ6tPtah9u8VawkP+XF
xgJB2DRPNOH+pN/0GSB1WQNgkBLp4HCAhVI0cJiNBpgsA4LZYS/T47Gl8PByqncf
y+CP3GCbRstYKB3FmruTOf3kaL0nRwXZpR6XrfwKeeTT/lujczOmHUctPhf1QkVE
Xd1y3mDEu6HjpNVzaSdTIpLnQ7NuYFnkyco8ONgXsCBOuR5T+Vs4XR7hLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNaeqmvn94ETE5LqyQH/Wf1Np5ioMB8GA1UdIwQY
MBaAFLPdNcz/bCuGofrY8QO8IAcNCeUNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczkwMXpQOXNLNGFoLXRqeEE3d2dCdzBKNVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80NGQ0YTMtN2E4NC00NDk5LThiNzEt
MmIxMDUwNTFiYTU5LzEvMXA2cWEtZjNnUk1Ua3VySkFmOVpfVTJubUtnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny80NGQ0YTMtN2E4NC00NDk5LThiNzEtMmIxMDUwNTFiYTU5
LzEvczkwMXpQOXNLNGFoLXRqeEE3d2dCdzBKNVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWWuAMA0G
CSqGSIb3DQEBCwUAA4IBAQBB/OiTwvmEhLXTSgy5C0JEou6SK1HHO+v8T6TcdxZj
Cj9XHD9rdg2SJDJDe5YEng7eJ/irU8JXcQJ5ruB7MVLUT4MsfFgLcj96srNkgtws
EuK+jqkKpE8oSq2X7MAHc/7seyb3o1MTLPGDbm6oQgUIoXqqbEU51FUc8qx4S42H
ZCtGIEvdMjOvYupHtWQYdNgayyLz07eKZcLNXhaYzj8h7VBLvGeCi3u3do/GbJRB
AN/jruRqnZeGADSR3quCVSHjy4i+x8vVU2C+bApv3sG2XDWdVRlDMuEV+CpCpP1B
ejCIAFk0MK5Eok5gBzk07juygUNbbk2+9FW4ZdFe7lHJ
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:15 2023 by rpki-client on console.sobornost.net