Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/uxa2pSoYvmP-DnOz3UxJruC8yOY.roa
File: uxa2pSoYvmP-DnOz3UxJruC8yOY.roa (raw, json)
Hash identifier: xzd3gB9IzT8SyndwlnrZWFLbUBiPkl1mqvP56KZPLdE=
Subject key identifier: BB:16:B6:A5:2A:18:BE:63:FE:0E:73:B3:DD:4C:49:AE:E0:BC:C8:E6
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 01856F38F770D6B2C04281BC703EBC569CC3
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/uxa2pSoYvmP-DnOz3UxJruC8yOY.roa
Signing time: Sun 01 Jan 2023 21:24:42 +0000
ROA not before: Sun 01 Jan 2023 21:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:38:f7:70:d6:b2:c0:42:81:bc:70:3e:bc:56:9c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Jan 1 21:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb16b6a52a18be63fe0e73b3dd4c49aee0bcc8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:53:ee:46:ed:7d:c7:0d:7b:a4:d8:31:61:b2:
ab:05:1b:a1:bb:1d:db:4b:8b:9b:57:ea:9f:ee:2c:
2c:79:21:52:0b:ea:fe:5f:f7:ec:90:1f:4e:70:d1:
e4:b8:93:1c:4b:00:d2:83:36:f2:4b:a9:36:0b:8b:
5f:d4:9b:6c:0f:33:43:70:33:30:a1:83:df:d3:1c:
84:50:f5:29:2e:c7:2d:43:ad:c1:85:99:3e:d8:d5:
21:9a:56:c6:81:1d:df:c9:3b:9f:54:0c:4e:06:2d:
03:79:4d:8f:f3:3f:e9:3a:db:a3:88:e5:a1:bb:36:
9b:fe:e0:07:78:46:84:5a:cd:64:a5:aa:28:bd:25:
f1:3d:f2:86:7c:df:15:49:c1:5d:88:3b:22:e0:3a:
b8:2a:e3:7d:12:ec:df:b8:79:8e:47:e5:0b:20:76:
09:c9:97:d8:61:33:76:ac:f6:9f:d4:01:29:e4:9e:
28:79:cf:c4:c9:b0:eb:f6:d1:c3:a1:ee:98:61:f6:
10:73:f6:83:93:ed:a4:11:7b:f6:68:33:33:66:5a:
e1:0f:76:36:d0:8d:0b:7a:81:d6:9d:9b:b2:54:d2:
0c:3a:1c:cd:24:b0:18:82:90:7e:6e:ea:94:b2:7f:
71:dc:8f:4b:1a:15:0c:74:9d:5b:f7:bf:90:94:ca:
25:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:16:B6:A5:2A:18:BE:63:FE:0E:73:B3:DD:4C:49:AE:E0:BC:C8:E6
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/uxa2pSoYvmP-DnOz3UxJruC8yOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.181.32.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:da:dc:b9:7a:3b:a6:de:64:61:b2:94:fc:c4:ed:58:6b:23:
fa:e8:1b:f5:d7:86:54:da:39:b1:cb:93:0d:85:3a:7c:3f:db:
5c:48:eb:65:54:bd:cf:e6:c8:05:0b:a6:ab:18:84:55:b8:46:
5f:4e:f3:d7:da:a7:67:32:f0:63:09:24:8e:03:3a:22:61:03:
3c:dd:bc:98:e8:af:25:c8:92:6a:47:24:15:b3:6f:2c:36:18:
21:6e:17:d2:1b:84:45:0b:ea:34:38:d8:15:f3:f4:a6:bf:eb:
c0:2f:28:ce:56:ac:be:8d:c6:87:23:99:99:fa:10:20:5f:f8:
17:0d:f8:b5:fe:9b:50:06:6e:d2:a3:d2:4e:c9:b9:f9:26:29:
a5:58:80:39:e3:d5:ba:95:65:c7:cd:15:40:75:62:b6:9a:96:
55:ee:d9:ac:55:dc:54:d4:20:e5:a9:b4:bd:9d:e1:a1:9e:56:
3e:7d:44:46:31:a4:15:46:97:0b:8c:b6:5f:8f:5e:a9:83:08:
92:d2:b9:07:b7:28:6d:bf:61:88:39:46:e6:25:0f:93:be:3c:
c0:f6:c0:90:3a:fc:1c:a3:ac:85:b9:15:1c:db:05:6b:76:cd:
5a:c9:75:6c:93:46:19:80:b9:3f:9b:9d:d5:ac:47:01:96:39:
c5:7c:d8:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvOPdw1rLAQoG8cD68VpzDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2NjAzNGNhNmExNmJiZDAxNDRhYmRmNWNmMjQ1OGY5Njhi
MTU4OWMwHhcNMjMwMTAxMjEyNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjE2YjZhNTJhMThiZTYzZmUwZTczYjNkZDRjNDlhZWUwYmNjOGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgVPuRu19xw17pNgxYbKrBRuhux3b
S4ubV+qf7iwseSFSC+r+X/fskB9OcNHkuJMcSwDSgzbyS6k2C4tf1JtsDzNDcDMw
oYPf0xyEUPUpLsctQ63BhZk+2NUhmlbGgR3fyTufVAxOBi0DeU2P8z/pOtujiOWh
uzab/uAHeEaEWs1kpaoovSXxPfKGfN8VScFdiDsi4Dq4KuN9EuzfuHmOR+ULIHYJ
yZfYYTN2rPaf1AEp5J4oec/EybDr9tHDoe6YYfYQc/aDk+2kEXv2aDMzZlrhD3Y2
0I0LeoHWnZuyVNIMOhzNJLAYgpB+buqUsn9x3I9LGhUMdJ1b97+QlMoljQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLsWtqUqGL5j/g5zs91MSa7gvMjmMB8GA1UdIwQY
MBaAFGZgNMpqFrvQFEq99c8kWPlosVicMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDIt
NWQ0OGJjZDdjMWRjLzEvdXhhMnBTb1l2bVAtRG5PejNVeEpydUM4eU9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDItNWQ0OGJjZDdjMWRj
LzEvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnrUgMA0G
CSqGSIb3DQEBCwUAA4IBAQCb2ty5ejum3mRhspT8xO1YayP66Bv114ZU2jmxy5MN
hTp8P9tcSOtlVL3P5sgFC6arGIRVuEZfTvPX2qdnMvBjCSSOAzoiYQM83byY6K8l
yJJqRyQVs28sNhghbhfSG4RFC+o0ONgV8/Smv+vALyjOVqy+jcaHI5mZ+hAgX/gX
Dfi1/ptQBm7So9JOybn5JimlWIA549W6lWXHzRVAdWK2mpZV7tmsVdxU1CDlqbS9
neGhnlY+fURGMaQVRpcLjLZfj16pgwiS0rkHtyhtv2GIOUbmJQ+TvjzA9sCQOvwc
o6yFuRUc2wVrds1ayXVsk0YZgLk/m53VrEcBljnFfNif
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:06 2023 by rpki-client on console.sobornost.net