Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/S54Z96HQ7Fgyd0IVt6liGi77uh0.roa
File: S54Z96HQ7Fgyd0IVt6liGi77uh0.roa (raw, json)
Hash identifier: b1kiMeEvGQUhp/R4pclhrcRgPqp4YhlzdjPJPKAPi1E=
Subject key identifier: 4B:9E:19:F7:A1:D0:EC:58:32:77:42:15:B7:A9:62:1A:2E:FB:BA:1D
Certificate issuer: /CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Certificate serial: 01856BAEA4EEE1D88A274D73E90C6BA652A7
Authority key identifier: 52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/S54Z96HQ7Fgyd0IVt6liGi77uh0.roa
Signing time: Sun 01 Jan 2023 04:54:45 +0000
ROA not before: Sun 01 Jan 2023 04:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60200
IP address blocks: 185.34.172.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:a4:ee:e1:d8:8a:27:4d:73:e9:0c:6b:a6:52:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52ecb0e85d0b7feea4a82ac9448d47c3ec0af053
Validity
Not Before: Jan 1 04:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b9e19f7a1d0ec5832774215b7a9621a2efbba1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:38:11:09:7c:5c:b6:ec:84:1c:8b:c0:dd:69:
a5:17:b6:ae:da:87:3f:32:e6:ae:a4:ce:20:75:3b:
f0:f6:af:1b:c9:30:24:f9:e8:f1:cb:de:77:21:e4:
c6:10:b5:c4:c6:e7:7d:40:4a:38:cc:e2:cd:0a:04:
62:4a:1e:47:4a:bb:06:e9:de:9d:29:32:c3:49:99:
1f:3e:07:fa:d2:0d:a3:b0:86:82:94:2c:8f:95:31:
be:e2:7c:7a:60:d6:48:17:a5:33:ae:50:1a:d0:4a:
d5:76:bf:9b:bc:62:05:6f:57:04:c2:0c:c3:d7:54:
2f:74:3d:bf:b2:5a:45:a7:0a:36:7e:16:ee:36:7d:
c3:c7:c6:64:c4:30:c0:c1:d0:b4:1a:46:0c:4c:d3:
87:98:ab:ad:7f:89:31:ea:d5:a7:12:bb:32:08:cd:
13:17:e4:9d:fa:15:bd:c9:29:22:e7:9e:fc:7a:72:
7e:76:1d:73:21:f1:20:3b:47:58:b8:2a:87:06:0b:
f5:2f:cb:56:da:ba:f0:f9:fb:d1:9d:6c:db:ec:ef:
bc:80:22:97:fc:8e:d1:0e:a4:fd:5c:d8:d0:61:80:
5e:63:f0:2a:9b:d7:5e:7e:66:8e:b3:69:c4:ff:b8:
d8:4b:cf:32:3e:54:c9:36:84:ba:03:7f:f1:ef:22:
93:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9E:19:F7:A1:D0:EC:58:32:77:42:15:B7:A9:62:1A:2E:FB:BA:1D
X509v3 Authority Key Identifier:
keyid:52:EC:B0:E8:5D:0B:7F:EE:A4:A8:2A:C9:44:8D:47:C3:EC:0A:F0:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/S54Z96HQ7Fgyd0IVt6liGi77uh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/db3e56-e832-491d-b530-ca4f66b09068/1/Uuyw6F0Lf-6kqCrJRI1Hw-wK8FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.172.0/22
Signature Algorithm: sha256WithRSAEncryption
03:8a:a6:a8:80:31:68:57:03:7b:0c:c8:4d:82:be:a6:60:1e:
bb:38:40:69:19:2a:52:8c:48:b2:b8:11:aa:0f:b7:e6:21:18:
bf:bb:54:dd:67:52:33:35:ba:70:dd:ca:8b:11:e1:23:dd:18:
87:08:38:82:b1:f6:4f:8b:e2:f2:8f:be:6f:06:52:9e:5a:99:
82:d0:a1:b5:af:f5:f8:76:2f:cb:ba:1c:8c:37:4b:32:70:16:
86:99:4b:6f:64:03:ae:1f:23:a4:33:87:e3:20:20:12:2b:23:
fa:c5:51:99:22:3e:e4:61:3d:e0:8f:d5:a7:49:9f:d0:90:ed:
60:c1:a7:8d:e9:3f:7d:3d:88:ba:2a:24:92:7b:28:11:95:2e:
5e:a2:f4:3c:9a:fc:42:fd:af:ef:f0:c1:8c:e7:86:ad:d9:5f:
49:30:85:ec:3b:eb:ef:64:59:14:7f:b3:88:48:0e:4e:54:3c:
ab:85:98:15:ec:4d:81:42:7a:c4:2c:b2:d7:95:4f:09:b5:b3:
45:2c:a7:5b:cc:dc:86:68:00:ba:39:6c:2a:11:57:3f:a2:db:
4c:a0:fb:26:24:9f:f1:cc:25:e7:5b:32:31:b6:ed:9a:68:ab:
20:b3:4a:69:f4:fb:f9:6d:a3:5c:4a:3c:9a:74:e3:bb:2e:cb:
ae:4e:67:ba
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrrqTu4diKJ01z6QxrplKnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZWNiMGU4NWQwYjdmZWVhNGE4MmFjOTQ0OGQ0N2MzZWMw
YWYwNTMwHhcNMjMwMTAxMDQ1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjllMTlmN2ExZDBlYzU4MzI3NzQyMTViN2E5NjIxYTJlZmJiYTFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDgRCXxctuyEHIvA3WmlF7au2oc/
MuaupM4gdTvw9q8byTAk+ejxy953IeTGELXExud9QEo4zOLNCgRiSh5HSrsG6d6d
KTLDSZkfPgf60g2jsIaClCyPlTG+4nx6YNZIF6UzrlAa0ErVdr+bvGIFb1cEwgzD
11QvdD2/slpFpwo2fhbuNn3Dx8ZkxDDAwdC0GkYMTNOHmKutf4kx6tWnErsyCM0T
F+Sd+hW9ySki5578enJ+dh1zIfEgO0dYuCqHBgv1L8tW2rrw+fvRnWzb7O+8gCKX
/I7RDqT9XNjQYYBeY/Aqm9defmaOs2nE/7jYS88yPlTJNoS6A3/x7yKTVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEueGfeh0OxYMndCFbepYhou+7odMB8GA1UdIwQY
MBaAFFLssOhdC3/upKgqyUSNR8PsCvBTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXV5dzZGMExmLTZrcUNySlJJMUh3LXdLOEZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9kYjNlNTYtZTgzMi00OTFkLWI1MzAt
Y2E0ZjY2YjA5MDY4LzEvUzU0Wjk2SFE3Rmd5ZDBJVnQ2bGlHaTc3dWgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9kYjNlNTYtZTgzMi00OTFkLWI1MzAtY2E0ZjY2YjA5MDY4
LzEvVXV5dzZGMExmLTZrcUNySlJJMUh3LXdLOEZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuSKsMA0G
CSqGSIb3DQEBCwUAA4IBAQADiqaogDFoVwN7DMhNgr6mYB67OEBpGSpSjEiyuBGq
D7fmIRi/u1TdZ1IzNbpw3cqLEeEj3RiHCDiCsfZPi+Lyj75vBlKeWpmC0KG1r/X4
di/LuhyMN0sycBaGmUtvZAOuHyOkM4fjICASKyP6xVGZIj7kYT3gj9WnSZ/QkO1g
waeN6T99PYi6KiSSeygRlS5eovQ8mvxC/a/v8MGM54at2V9JMIXsO+vvZFkUf7OI
SA5OVDyrhZgV7E2BQnrELLLXlU8JtbNFLKdbzNyGaAC6OWwqEVc/ottMoPsmJJ/x
zCXnWzIxtu2aaKsgs0pp9Pv5baNcSjyadOO7LsuuTme6
-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:34 2024 by rpki-client on console.sobornost.net