Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f434e3-ca89-4a6d-a2ae-8b3e40063858/1/oTYFGtOxSIBqXawdP9AFbymXBh0.roa
File: oTYFGtOxSIBqXawdP9AFbymXBh0.roa (raw, json)
Hash identifier: +dlQBkpZmp5reKQD1+zQXA1uzM3YDyzTyplRbOpyjGY=
Subject key identifier: A1:36:05:1A:D3:B1:48:80:6A:5D:AC:1D:3F:D0:05:6F:29:97:06:1D
Certificate issuer: /CN=34ff00ae2a6feeed6a4987cbc913467fdfef83e8
Certificate serial: 0188FC29C711501BCB7ABF5C5BC4C883870E
Authority key identifier: 34:FF:00:AE:2A:6F:EE:ED:6A:49:87:CB:C9:13:46:7F:DF:EF:83:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NP8Aripv7u1qSYfLyRNGf9_vg-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f434e3-ca89-4a6d-a2ae-8b3e40063858/1/oTYFGtOxSIBqXawdP9AFbymXBh0.roa
Signing time: Tue 27 Jun 2023 09:22:56 +0000
ROA not before: Tue 27 Jun 2023 09:22:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 193.200.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:29:c7:11:50:1b:cb:7a:bf:5c:5b:c4:c8:83:87:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34ff00ae2a6feeed6a4987cbc913467fdfef83e8
Validity
Not Before: Jun 27 09:22:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a136051ad3b148806a5dac1d3fd0056f2997061d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:87:74:1b:40:6a:dc:16:34:20:54:ce:53:
42:0f:bd:75:d6:fa:eb:69:28:7b:80:6c:c3:5f:76:
cb:4f:5f:36:eb:4b:1e:08:a0:0a:1d:47:c2:45:3f:
79:87:7b:32:16:1c:c9:20:0f:2a:74:45:ed:cd:b6:
7b:4f:1d:44:76:d5:1b:11:0f:1f:b3:74:2c:6d:de:
19:70:cb:71:34:b5:d6:0f:ed:62:3f:c2:37:5d:a6:
0b:9e:9b:00:ce:5a:59:e4:0b:d3:24:0e:2a:ef:3e:
d3:b5:33:bc:11:b4:e4:e6:03:98:30:4f:ca:e1:7b:
13:87:b9:53:b5:88:32:e0:b1:7e:95:12:ae:c2:ca:
3e:a4:a2:41:6c:de:36:a2:f6:4f:4c:5a:e0:37:7f:
18:4d:7f:7b:40:a1:b8:80:58:13:47:64:1b:85:ee:
a2:d1:d5:b6:2b:f1:19:32:d0:1b:22:d3:6d:50:65:
fc:b7:1f:15:5e:2d:e3:da:fe:e9:f3:6a:c6:13:75:
c7:6f:e0:d2:3c:fa:46:37:7b:19:63:ee:a4:54:95:
f1:be:d5:98:5b:52:d0:2a:09:db:55:3c:a4:fb:44:
84:e6:ab:eb:dd:e8:49:e7:03:e2:85:b3:ce:fe:06:
c7:62:da:15:8e:c8:8c:c2:e6:3b:f3:e5:4a:f3:47:
11:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:36:05:1A:D3:B1:48:80:6A:5D:AC:1D:3F:D0:05:6F:29:97:06:1D
X509v3 Authority Key Identifier:
keyid:34:FF:00:AE:2A:6F:EE:ED:6A:49:87:CB:C9:13:46:7F:DF:EF:83:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NP8Aripv7u1qSYfLyRNGf9_vg-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f434e3-ca89-4a6d-a2ae-8b3e40063858/1/oTYFGtOxSIBqXawdP9AFbymXBh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f434e3-ca89-4a6d-a2ae-8b3e40063858/1/NP8Aripv7u1qSYfLyRNGf9_vg-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.6.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:5a:f5:7f:05:59:4d:92:f9:85:16:d4:88:78:7f:90:cd:d4:
d0:2a:9f:71:0b:3a:cc:9d:30:c5:59:a8:49:e1:30:b2:f9:b2:
62:9a:46:50:83:cf:69:81:a7:26:09:18:a1:d0:54:92:fa:61:
37:69:75:93:76:a3:63:e5:12:bc:09:cd:1e:17:42:74:17:77:
88:e5:0a:e0:c7:76:a6:01:da:b7:b0:a2:c4:39:15:a2:9c:4d:
ea:f2:04:54:92:a4:12:19:99:f7:65:36:7a:d1:0d:48:db:4b:
eb:69:63:b3:3c:64:e3:04:a1:32:65:ef:b1:f7:eb:c2:f1:d2:
5f:92:a6:6b:1d:33:6a:05:68:45:c1:bb:95:04:f0:14:26:02:
5e:50:e9:c5:5f:b3:1a:02:76:9a:af:35:fd:42:71:d7:c0:58:
d4:50:45:31:51:2d:05:ec:96:5a:e6:4e:ee:23:b3:30:50:a6:
ff:09:ca:b6:02:ef:a6:32:0b:bc:fe:f2:4e:38:32:ca:69:22:
0d:f0:bb:3b:fc:d5:c6:b4:49:71:61:96:0f:4a:dd:7d:d6:23:
cf:86:93:50:17:e4:ad:f3:47:a8:ba:84:d6:66:80:8f:6d:e9:
3e:f0:a7:af:87:bd:98:ec:74:15:bf:7e:ed:34:6c:c1:d0:f1:
ee:02:5a:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYj8KccRUBvLer9cW8TIg4cOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZmYwMGFlMmE2ZmVlZWQ2YTQ5ODdjYmM5MTM0NjdmZGZl
ZjgzZTgwHhcNMjMwNjI3MDkyMjU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTM2MDUxYWQzYjE0ODgwNmE1ZGFjMWQzZmQwMDU2ZjI5OTcwNjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4CHdBtAatwWNCBUzlNCD7111vrr
aSh7gGzDX3bLT18260seCKAKHUfCRT95h3syFhzJIA8qdEXtzbZ7Tx1EdtUbEQ8f
s3Qsbd4ZcMtxNLXWD+1iP8I3XaYLnpsAzlpZ5AvTJA4q7z7TtTO8EbTk5gOYME/K
4XsTh7lTtYgy4LF+lRKuwso+pKJBbN42ovZPTFrgN38YTX97QKG4gFgTR2Qbhe6i
0dW2K/EZMtAbItNtUGX8tx8VXi3j2v7p82rGE3XHb+DSPPpGN3sZY+6kVJXxvtWY
W1LQKgnbVTyk+0SE5qvr3ehJ5wPihbPO/gbHYtoVjsiMwuY78+VK80cRSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKE2BRrTsUiAal2sHT/QBW8plwYdMB8GA1UdIwQY
MBaAFDT/AK4qb+7takmHy8kTRn/f74PoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlA4QXJpcHY3dTFxU1lmTHlSTkdmOV92Zy1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9mNDM0ZTMtY2E4OS00YTZkLWEyYWUt
OGIzZTQwMDYzODU4LzEvb1RZRkd0T3hTSUJxWGF3ZFA5QUZieW1YQmgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9mNDM0ZTMtY2E4OS00YTZkLWEyYWUtOGIzZTQwMDYzODU4
LzEvTlA4QXJpcHY3dTFxU1lmTHlSTkdmOV92Zy1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcgGMA0G
CSqGSIb3DQEBCwUAA4IBAQALWvV/BVlNkvmFFtSIeH+QzdTQKp9xCzrMnTDFWahJ
4TCy+bJimkZQg89pgacmCRih0FSS+mE3aXWTdqNj5RK8Cc0eF0J0F3eI5Qrgx3am
Adq3sKLEORWinE3q8gRUkqQSGZn3ZTZ60Q1I20vraWOzPGTjBKEyZe+x9+vC8dJf
kqZrHTNqBWhFwbuVBPAUJgJeUOnFX7MaAnaarzX9QnHXwFjUUEUxUS0F7JZa5k7u
I7MwUKb/Ccq2Au+mMgu8/vJOODLKaSIN8Ls7/NXGtElxYZYPSt191iPPhpNQF+St
80eouoTWZoCPbek+8Kevh72Y7HQVv37tNGzB0PHuAlqY
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:17 2023 by rpki-client on console.sobornost.net