Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/_QMsKo0hwymqMLfK67nfm3v0dKg.roa
File: _QMsKo0hwymqMLfK67nfm3v0dKg.roa (raw, json)
Hash identifier: 0eOms+jyvzVeGh1So52M2AwCxBOii0mowyFPx6PHryQ=
Subject key identifier: FD:03:2C:2A:8D:21:C3:29:AA:30:B7:CA:EB:B9:DF:9B:7B:F4:74:A8
Certificate issuer: /CN=d52ad4068948830d9e9e58ace5e1f170348e4024
Certificate serial: 01856F547B82F133D19AA8B60F3603BA1E34
Authority key identifier: D5:2A:D4:06:89:48:83:0D:9E:9E:58:AC:E5:E1:F1:70:34:8E:40:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1SrUBolIgw2enlis5eHxcDSOQCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/_QMsKo0hwymqMLfK67nfm3v0dKg.roa
Signing time: Sun 01 Jan 2023 21:54:45 +0000
ROA not before: Sun 01 Jan 2023 21:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207354
IP address blocks: 185.108.126.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:7b:82:f1:33:d1:9a:a8:b6:0f:36:03:ba:1e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d52ad4068948830d9e9e58ace5e1f170348e4024
Validity
Not Before: Jan 1 21:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd032c2a8d21c329aa30b7caebb9df9b7bf474a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:9c:04:a6:32:5c:6e:f8:6a:4d:b1:6e:b5:
6b:3d:95:6f:49:f7:b8:08:29:ae:08:a7:13:df:bc:
7d:1d:2a:38:b3:01:e1:76:68:20:53:a0:d9:ca:0e:
1a:88:e6:47:ab:6d:88:0b:37:a1:3c:92:89:e3:f7:
23:dc:cd:63:6f:3e:f2:c6:ad:d1:f0:67:51:e5:9d:
14:aa:9d:e3:b9:11:c3:ba:07:11:b1:5b:d9:b6:d0:
44:1d:fa:24:80:37:85:8a:3f:af:2a:cb:ee:b3:ab:
29:35:58:33:1d:09:84:cb:24:01:b3:0b:00:32:55:
de:7f:e8:fb:56:2f:33:45:2c:88:d2:4e:b2:33:14:
ca:b3:ad:4e:17:6f:e7:a0:77:05:05:bd:3b:9f:4c:
ae:ea:be:79:2e:11:ed:be:ba:f9:44:80:03:fe:9f:
92:d0:ca:24:7f:4e:bf:80:66:b0:95:33:ae:70:41:
4d:4a:9a:2d:3d:f6:2d:65:6d:c7:2c:73:6b:67:3c:
ef:dc:dd:cd:69:fb:4f:58:b6:63:37:69:e5:e3:2b:
fc:89:bb:33:4d:cb:6c:4d:9d:df:f0:45:d5:8a:31:
3f:6b:2d:a2:d9:fa:af:4d:3f:b4:de:f3:14:7a:7e:
ad:45:76:d4:ad:f4:d1:24:51:fc:7c:7a:87:58:46:
e6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:03:2C:2A:8D:21:C3:29:AA:30:B7:CA:EB:B9:DF:9B:7B:F4:74:A8
X509v3 Authority Key Identifier:
keyid:D5:2A:D4:06:89:48:83:0D:9E:9E:58:AC:E5:E1:F1:70:34:8E:40:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1SrUBolIgw2enlis5eHxcDSOQCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/_QMsKo0hwymqMLfK67nfm3v0dKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6db8e0-1780-401a-9cb7-b8cf04b54251/1/1SrUBolIgw2enlis5eHxcDSOQCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.126.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:22:67:de:5a:2b:b2:97:61:78:84:15:96:9b:b2:dc:ad:32:
c6:c9:6e:0d:c2:c8:9d:07:69:5b:07:66:81:d4:aa:cd:07:41:
18:a5:00:a7:b5:85:47:b4:6d:91:45:7e:7f:af:c8:14:88:97:
7d:31:35:ff:19:b6:8c:ba:59:45:1f:6d:28:0f:f3:f5:db:7d:
ea:8e:a4:28:05:37:83:be:ab:10:2b:49:cb:ba:cc:90:3d:77:
a2:4d:f1:98:d9:4a:73:84:e9:d8:ef:53:33:4e:36:47:85:be:
7b:d2:02:41:4a:0c:f7:0e:cd:7a:cc:23:51:ea:e5:67:8b:18:
fa:17:0b:f4:59:c7:96:1a:cd:77:f2:95:f3:80:c2:70:66:55:
c8:3f:8e:66:10:11:72:c6:51:d4:35:0b:62:55:5f:fe:6c:6f:
38:23:a8:36:08:73:f0:ee:8c:06:f2:b3:0a:37:31:74:6f:ee:
e7:78:88:f8:5b:95:8a:b2:16:6a:80:ef:b7:83:72:a2:98:7c:
70:73:5e:7b:a0:51:89:0a:db:6d:f0:7a:7c:5c:88:df:cf:7e:
40:60:70:ea:9e:bb:b1:f9:d6:03:6e:a0:71:58:de:e2:26:70:
e5:9a:ce:f8:a2:95:a9:18:38:1d:1d:72:b0:61:a5:0f:69:41:
c2:3d:f1:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVHuC8TPRmqi2DzYDuh40MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MmFkNDA2ODk0ODgzMGQ5ZTllNThhY2U1ZTFmMTcwMzQ4
ZTQwMjQwHhcNMjMwMTAxMjE1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDAzMmMyYThkMjFjMzI5YWEzMGI3Y2FlYmI5ZGY5YjdiZjQ3NGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4ecBKYyXG74ak2xbrVrPZVvSfe4
CCmuCKcT37x9HSo4swHhdmggU6DZyg4aiOZHq22ICzehPJKJ4/cj3M1jbz7yxq3R
8GdR5Z0Uqp3juRHDugcRsVvZttBEHfokgDeFij+vKsvus6spNVgzHQmEyyQBswsA
MlXef+j7Vi8zRSyI0k6yMxTKs61OF2/noHcFBb07n0yu6r55LhHtvrr5RIAD/p+S
0Mokf06/gGawlTOucEFNSpotPfYtZW3HLHNrZzzv3N3NaftPWLZjN2nl4yv8ibsz
TctsTZ3f8EXVijE/ay2i2fqvTT+03vMUen6tRXbUrfTRJFH8fHqHWEbmYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP0DLCqNIcMpqjC3yuu535t79HSoMB8GA1UdIwQY
MBaAFNUq1AaJSIMNnp5YrOXh8XA0jkAkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVNyVUJvbElndzJlbmxpczVlSHhjRFNPUUNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS82ZGI4ZTAtMTc4MC00MDFhLTljYjct
YjhjZjA0YjU0MjUxLzEvX1FNc0tvMGh3eW1xTUxmSzY3bmZtM3YwZEtnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS82ZGI4ZTAtMTc4MC00MDFhLTljYjctYjhjZjA0YjU0MjUx
LzEvMVNyVUJvbElndzJlbmxpczVlSHhjRFNPUUNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWx+MA0G
CSqGSIb3DQEBCwUAA4IBAQA9ImfeWiuyl2F4hBWWm7LcrTLGyW4NwsidB2lbB2aB
1KrNB0EYpQCntYVHtG2RRX5/r8gUiJd9MTX/GbaMullFH20oD/P1233qjqQoBTeD
vqsQK0nLusyQPXeiTfGY2UpzhOnY71MzTjZHhb570gJBSgz3Ds16zCNR6uVnixj6
Fwv0WceWGs138pXzgMJwZlXIP45mEBFyxlHUNQtiVV/+bG84I6g2CHPw7owG8rMK
NzF0b+7neIj4W5WKshZqgO+3g3KimHxwc157oFGJCttt8Hp8XIjfz35AYHDqnrux
+dYDbqBxWN7iJnDlms74opWpGDgdHXKwYaUPaUHCPfGK
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:55 2024 by rpki-client on console.sobornost.net