Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f3829a-9527-444b-bd72-3ef3fd969957/1/h7sAGD5WicBDNWxbfFh5u3zeNnw.roa
File: h7sAGD5WicBDNWxbfFh5u3zeNnw.roa (raw, json)
Hash identifier: y9E31ode+3u6RDZvLmjY9crpWLEK3vwLKw683jv5gVQ=
Subject key identifier: 87:BB:00:18:3E:56:89:C0:43:35:6C:5B:7C:58:79:BB:7C:DE:36:7C
Certificate issuer: /CN=d766fc6f1b8e2b604f7fb73c29fd5d689a0ea81d
Certificate serial: 018A9A8CC20DA2CB4255A82B7D703E5A4B8A
Authority key identifier: D7:66:FC:6F:1B:8E:2B:60:4F:7F:B7:3C:29:FD:5D:68:9A:0E:A8:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12b8bxuOK2BPf7c8Kf1daJoOqB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f3829a-9527-444b-bd72-3ef3fd969957/1/h7sAGD5WicBDNWxbfFh5u3zeNnw.roa
Signing time: Fri 15 Sep 2023 20:33:50 +0000
ROA not before: Fri 15 Sep 2023 20:33:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202163
IP address blocks: 185.51.13.0/24 maxlen: 24
185.51.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9a:8c:c2:0d:a2:cb:42:55:a8:2b:7d:70:3e:5a:4b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d766fc6f1b8e2b604f7fb73c29fd5d689a0ea81d
Validity
Not Before: Sep 15 20:33:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87bb00183e5689c043356c5b7c5879bb7cde367c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:2c:4c:80:8c:8e:5b:c9:87:fa:21:93:f3:
76:42:32:14:10:23:11:a2:ed:fd:d6:ae:24:6c:67:
bf:27:2d:88:4b:f7:60:e3:89:0e:15:9f:ad:7e:e0:
da:ce:d3:d3:2a:f3:76:84:5e:0f:e5:0a:23:82:45:
39:8a:2d:b8:75:85:fc:6b:ad:e1:8a:1e:2e:e2:4f:
7e:82:bd:62:63:32:0a:16:32:29:2e:d7:f1:09:02:
16:52:d2:b1:24:7c:df:e5:c2:30:e9:70:fb:f1:86:
e6:3b:67:8c:86:66:6b:01:40:bb:da:62:91:a6:56:
07:b8:bc:6c:3e:08:e3:e6:14:a5:ad:e4:46:95:71:
c7:cd:0a:5c:6a:e7:e2:e4:08:b8:1f:d0:59:78:0e:
4e:e9:7d:c2:ba:6a:97:df:a7:e6:fb:66:66:fa:01:
1c:cf:ff:3b:8d:70:9a:c5:a5:8f:6e:d2:6f:52:46:
4a:47:02:d0:a7:ee:49:9c:34:41:dd:3e:6c:fd:d9:
74:5d:82:76:7e:ad:90:d3:8d:60:c6:2f:2b:35:ae:
78:4b:52:80:78:3b:f7:f0:fe:1b:ef:07:cb:18:ef:
c0:62:ae:a2:ea:4d:ec:a9:c4:54:26:1c:e2:38:b5:
8d:c9:64:3a:1f:ce:3e:83:62:18:05:c2:1c:76:1b:
df:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:BB:00:18:3E:56:89:C0:43:35:6C:5B:7C:58:79:BB:7C:DE:36:7C
X509v3 Authority Key Identifier:
keyid:D7:66:FC:6F:1B:8E:2B:60:4F:7F:B7:3C:29:FD:5D:68:9A:0E:A8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12b8bxuOK2BPf7c8Kf1daJoOqB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f3829a-9527-444b-bd72-3ef3fd969957/1/h7sAGD5WicBDNWxbfFh5u3zeNnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f3829a-9527-444b-bd72-3ef3fd969957/1/12b8bxuOK2BPf7c8Kf1daJoOqB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.13.0-185.51.14.255
Signature Algorithm: sha256WithRSAEncryption
ab:32:7c:98:82:91:3b:c4:1b:c5:62:f3:06:bb:1a:6e:c4:8f:
45:f3:a9:91:1a:92:60:2b:c2:38:81:fc:fc:14:22:cf:61:e5:
40:d4:b2:9f:9e:67:08:30:ae:d3:df:c8:a7:03:bd:ef:e4:2f:
4a:7f:f3:ef:eb:1d:4a:d7:d2:5b:73:46:1d:52:a2:5c:93:ad:
77:56:12:d1:64:3c:6a:c2:a2:7c:ce:04:c5:f4:43:2d:35:b1:
e1:8f:8a:bc:10:3a:9e:47:c9:2f:a4:10:70:05:c4:78:86:15:
d0:6c:28:bd:a0:ad:8d:e2:db:5b:3c:18:cd:b5:da:32:08:ea:
e4:a0:ca:2e:57:9b:0b:04:52:98:c9:2c:0f:48:0e:22:e7:c8:
ef:78:b8:38:2a:d9:82:f3:41:5f:cb:ae:ab:3e:39:10:4b:33:
2d:4f:ab:43:70:51:43:74:cc:cd:97:ab:83:6d:c8:44:53:0a:
75:8a:b5:9b:c7:20:ed:07:56:18:ac:bd:2c:2b:9a:ac:95:70:
a9:c3:5f:6a:7d:70:f1:31:6f:76:f7:d7:01:f1:69:d7:51:c6:
8d:76:6d:dd:73:f3:b8:63:4b:40:6a:31:37:b6:67:98:d3:da:
8c:69:68:a1:67:fe:4c:02:64:ac:02:6c:8b:40:60:b6:a9:40:
91:b3:1c:ea
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYqajMINostCVagrfXA+WkuKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NjZmYzZmMWI4ZTJiNjA0ZjdmYjczYzI5ZmQ1ZDY4OWEw
ZWE4MWQwHhcNMjMwOTE1MjAzMzUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2JiMDAxODNlNTY4OWMwNDMzNTZjNWI3YzU4NzliYjdjZGUzNjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnIsTICMjlvJh/ohk/N2QjIUECMR
ou391q4kbGe/Jy2IS/dg44kOFZ+tfuDaztPTKvN2hF4P5QojgkU5ii24dYX8a63h
ih4u4k9+gr1iYzIKFjIpLtfxCQIWUtKxJHzf5cIw6XD78YbmO2eMhmZrAUC72mKR
plYHuLxsPgjj5hSlreRGlXHHzQpcaufi5Ai4H9BZeA5O6X3CumqX36fm+2Zm+gEc
z/87jXCaxaWPbtJvUkZKRwLQp+5JnDRB3T5s/dl0XYJ2fq2Q041gxi8rNa54S1KA
eDv38P4b7wfLGO/AYq6i6k3sqcRUJhziOLWNyWQ6H84+g2IYBcIcdhvfgQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFIe7ABg+VonAQzVsW3xYebt83jZ8MB8GA1UdIwQY
MBaAFNdm/G8bjitgT3+3PCn9XWiaDqgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJiOGJ4dU9LMkJQZjdjOEtmMWRhSm9PcUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mMzgyOWEtOTUyNy00NDRiLWJkNzIt
M2VmM2ZkOTY5OTU3LzEvaDdzQUdENVdpY0JETld4YmZGaDV1M3plTm53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mMzgyOWEtOTUyNy00NDRiLWJkNzItM2VmM2ZkOTY5OTU3
LzEvMTJiOGJ4dU9LMkJQZjdjOEtmMWRhSm9PcUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAC5Mw0D
BAC5Mw4wDQYJKoZIhvcNAQELBQADggEBAKsyfJiCkTvEG8Vi8wa7Gm7Ej0XzqZEa
kmArwjiB/PwUIs9h5UDUsp+eZwgwrtPfyKcDve/kL0p/8+/rHUrX0ltzRh1SolyT
rXdWEtFkPGrConzOBMX0Qy01seGPirwQOp5HyS+kEHAFxHiGFdBsKL2grY3i21s8
GM212jII6uSgyi5XmwsEUpjJLA9IDiLnyO94uDgq2YLzQV/Lrqs+ORBLMy1Pq0Nw
UUN0zM2Xq4NtyERTCnWKtZvHIO0HVhisvSwrmqyVcKnDX2p9cPExb3b31wHxaddR
xo12bd1z87hjS0BqMTe2Z5jT2oxpaKFn/kwCZKwCbItAYLapQJGzHOo=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:09 2023 by rpki-client on console.sobornost.net