Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EKuR8ssndtWhfi7XEboI8tNbRL0.roa
File: EKuR8ssndtWhfi7XEboI8tNbRL0.roa (raw, json)
Hash identifier: eliZXjeZUdaulRSTTGD/mY5QKsY1F3zKY8iZFW6M3w8=
Subject key identifier: 10:AB:91:F2:CB:27:76:D5:A1:7E:2E:D7:11:BA:08:F2:D3:5B:44:BD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BAB79A6B24B953FC1215BDF6B96ACC8FF
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EKuR8ssndtWhfi7XEboI8tNbRL0.roa
Signing time: Tue 07 Nov 2023 20:29:18 +0000
ROA not before: Tue 07 Nov 2023 20:29:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a10:ccc0:111::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a10:ccc0:110::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ab:79:a6:b2:4b:95:3f:c1:21:5b:df:6b:96:ac:c8:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 7 20:29:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10ab91f2cb2776d5a17e2ed711ba08f2d35b44bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0a:08:a6:17:18:1a:81:a3:c4:8d:6f:c6:e6:
c8:f4:36:7c:f1:b0:9c:5a:3b:3b:fa:d7:a8:c2:83:
f7:4b:2b:3d:b0:5b:dc:72:a2:c1:ce:fb:b3:f7:d7:
b5:75:cd:21:a6:44:6a:2d:ef:c9:e2:63:c6:92:8e:
96:96:64:de:9b:dc:9d:56:9a:60:67:3c:52:f7:25:
d7:eb:d2:7d:96:40:fe:db:08:eb:96:16:45:7c:ed:
fa:63:1c:64:88:1f:b8:5c:38:86:15:d4:7f:31:17:
bb:b4:df:d5:da:5f:17:75:2a:ec:dd:47:ce:64:03:
da:13:59:76:85:18:25:58:1c:7a:06:b0:f1:13:24:
b2:f8:81:be:b9:f7:80:9e:33:7b:be:75:28:23:64:
58:13:fe:69:1d:06:66:84:d6:d5:23:ea:7d:77:b0:
1c:f8:69:ff:9e:4c:83:3c:8c:37:30:2f:03:cf:b3:
fc:35:4b:75:0a:55:aa:e2:a5:f6:ff:3d:a3:6d:08:
77:ad:ad:cd:93:dc:87:90:b6:58:74:b7:91:6d:b6:
90:2f:20:14:ed:30:37:6a:31:5a:76:93:e9:a0:a2:
8c:c4:e2:71:52:9d:cd:8a:2b:83:67:ea:7a:79:23:
b5:fc:49:a9:a3:21:60:e2:fb:0f:43:a6:bd:18:63:
ec:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AB:91:F2:CB:27:76:D5:A1:7E:2E:D7:11:BA:08:F2:D3:5B:44:BD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/EKuR8ssndtWhfi7XEboI8tNbRL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/47
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
bd:4f:af:70:71:b3:09:ea:ee:6c:4a:34:03:e3:f4:7d:5c:27:
9d:98:05:a2:fa:bc:b7:9e:92:8c:69:6c:d7:ca:04:8b:28:61:
2a:21:28:fa:37:5e:08:b7:1d:ef:0a:2a:a6:9f:9e:67:23:78:
f6:b3:56:ad:e1:a3:5c:62:79:78:31:9f:6b:f8:cd:22:8a:e1:
ad:e9:ad:85:2e:89:46:0c:07:68:26:76:f2:77:77:48:c4:65:
ce:a8:ec:1a:30:e8:89:72:1d:15:2d:50:30:e1:e6:a4:18:c0:
97:03:a9:25:1b:7b:8e:e7:2f:20:27:c6:cd:eb:79:d4:a6:d5:
74:28:08:f1:6b:43:fd:6c:b4:a0:57:c8:5f:f6:84:fb:e5:44:
4a:50:ef:96:fe:72:5b:0d:6f:80:39:cd:a9:f7:26:80:df:2b:
95:ba:7e:13:9b:08:ad:76:d1:2f:76:45:7b:a3:54:f0:eb:60:
4a:a1:43:62:3e:e7:b4:40:fa:c9:99:f9:3b:5f:d1:aa:54:a1:
f3:6d:cf:2f:70:24:18:73:bb:4d:32:76:7f:9a:7b:c8:70:ba:
9f:92:76:6e:b8:f6:51:8e:68:17:e6:58:c6:45:fa:37:c2:ef:
1f:52:4e:52:46:8e:f9:59:46:2c:1f:35:aa:7c:f4:bb:de:6a:
7e:e4:ab:5c
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAYureaayS5U/wSFb32uWrMj/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMTA3MjAyOTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMGFiOTFmMmNiMjc3NmQ1YTE3ZTJlZDcxMWJhMDhmMmQzNWI0NGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwoIphcYGoGjxI1vxubI9DZ88bCc
Wjs7+teowoP3Sys9sFvccqLBzvuz99e1dc0hpkRqLe/J4mPGko6WlmTem9ydVppg
ZzxS9yXX69J9lkD+2wjrlhZFfO36YxxkiB+4XDiGFdR/MRe7tN/V2l8XdSrs3UfO
ZAPaE1l2hRglWBx6BrDxEySy+IG+ufeAnjN7vnUoI2RYE/5pHQZmhNbVI+p9d7Ac
+Gn/nkyDPIw3MC8Dz7P8NUt1ClWq4qX2/z2jbQh3ra3Nk9yHkLZYdLeRbbaQLyAU
7TA3ajFadpPpoKKMxOJxUp3NiiuDZ+p6eSO1/EmpoyFg4vsPQ6a9GGPs0QIDAQAB
o4ICjjCCAoowHQYDVR0OBBYEFBCrkfLLJ3bVoX4u1xG6CPLTW0S9MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvRUt1Ujhzc25kdFdoZmk3WEVib0k4dE5iUkwwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGjBggrBgEFBQcBBwEB/wSBkzCBkDCBjQQCAAIwgYYDBgAq
DDuH/wMHACoOl8AHUAMHACoOl8AHbzASAwcAKg6XwAeRAwcAKg6XwAeSAwYCKg6X
xKwDBwAqDrEHCfQDBwAqDrEHCfYDBwAqDrEHDfIDBwAqDrEHGHADBwAqDrEHG54D
BwAqDrEHJ4sDBwEqEMzAARADBwAqEMzDzM4DBgIqEMzHkDANBgkqhkiG9w0BAQsF
AAOCAQEAvU+vcHGzCerubEo0A+P0fVwnnZgFovq8t56SjGls18oEiyhhKiEo+jde
CLcd7woqpp+eZyN49rNWreGjXGJ5eDGfa/jNIorhremthS6JRgwHaCZ28nd3SMRl
zqjsGjDoiXIdFS1QMOHmpBjAlwOpJRt7jucvICfGzet51KbVdCgI8WtD/Wy0oFfI
X/aE++VESlDvlv5yWw1vgDnNqfcmgN8rlbp+E5sIrXbRL3ZFe6NU8OtgSqFDYj7n
tED6yZn5O1/RqlSh823PL3AkGHO7TTJ2f5p7yHC6n5J2brj2UY5oF+ZYxkX6N8Lv
H1JOUkaO+VlGLB81qnz0u95qfuSrXA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:14 2023 by rpki-client on console.sobornost.net