Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/WgvxFetG8p-ac8QrQS6t5-MWlz4.roa
File: WgvxFetG8p-ac8QrQS6t5-MWlz4.roa (raw, json)
Hash identifier: S1E2txPCsyvi3Ztxn2/wgTscS+sv7dQrM5Qj0N50AaY=
Subject key identifier: 5A:0B:F1:15:EB:46:F2:9F:9A:73:C4:2B:41:2E:AD:E7:E3:16:97:3E
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 018EF07B74EBC63D8E9D59B2F96E16D04618
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/WgvxFetG8p-ac8QrQS6t5-MWlz4.roa
Signing time: Thu 18 Apr 2024 09:13:26 +0000
ROA not before: Thu 18 Apr 2024 09:13:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202940
IP address blocks: 82.166.240.0/22 maxlen: 24
82.166.244.0/23 maxlen: 24
199.203.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 10:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:7b:74:eb:c6:3d:8e:9d:59:b2:f9:6e:16:d0:46:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Apr 18 09:13:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a0bf115eb46f29f9a73c42b412eade7e316973e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d6:1a:04:00:21:14:bb:44:00:78:0d:86:2a:
ef:25:ee:e9:04:b4:b7:32:7f:64:25:18:54:47:d0:
db:56:31:b2:0e:cb:b3:57:44:7c:3d:29:18:92:01:
3e:df:a6:0b:56:63:88:ee:3c:dd:2b:64:8e:12:c0:
dd:02:2e:ad:b3:48:fa:8b:ab:6d:92:9c:81:10:b1:
b1:34:a3:2b:0e:56:d2:92:3f:fc:8a:58:4e:c2:82:
25:82:f0:8b:da:34:1d:45:6e:bb:40:41:9d:78:98:
1f:c0:a9:3d:2a:19:81:52:e5:6b:4d:5e:c0:d4:9a:
0c:35:bb:54:4b:4f:b8:c1:7d:20:1f:25:43:be:6c:
2e:f4:24:82:1b:c3:08:ba:5b:e3:58:a0:74:fd:f3:
70:ac:41:50:59:6e:b8:f6:34:96:b7:3c:9b:cf:fb:
70:b0:64:f8:f4:32:b1:b6:ba:cc:5d:9b:43:d6:cb:
58:ab:b9:ac:91:77:a2:a7:e1:e9:d1:5d:f0:17:f2:
25:e1:b3:7a:3a:1f:7b:9e:c8:9d:b8:4a:cf:17:fe:
75:bb:73:c0:ad:80:53:43:49:d4:a3:67:57:9d:c7:
88:1a:0a:9b:36:6a:06:a3:57:06:48:06:49:54:9f:
b2:dd:7d:30:6a:d6:a7:0c:38:b5:ef:d0:87:ae:bf:
9a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0B:F1:15:EB:46:F2:9F:9A:73:C4:2B:41:2E:AD:E7:E3:16:97:3E
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/WgvxFetG8p-ac8QrQS6t5-MWlz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.166.240.0-82.166.245.255
199.203.76.0/24
Signature Algorithm: sha256WithRSAEncryption
45:74:6f:c4:66:b3:59:54:75:c6:e0:65:9b:fc:34:56:84:11:
b2:6b:77:19:47:26:2c:5b:12:af:8d:8d:b8:f0:f8:22:5d:43:
a9:f6:b6:75:ec:3c:c7:80:fa:0c:e5:6b:62:01:c4:67:54:bc:
1c:08:7a:54:9f:6b:98:1f:ef:3a:8a:1b:1e:f5:58:b2:32:f8:
fd:e8:7b:11:3c:e3:10:20:0d:95:ac:39:c8:5f:2a:e5:10:dc:
14:7e:f8:02:94:41:cb:62:b1:0e:91:3e:2d:60:6d:49:46:56:
48:e4:81:12:46:d9:c9:8b:f7:65:bf:a4:86:05:9a:61:c1:63:
9a:22:46:f7:de:c3:85:a2:fa:dd:6a:61:d8:12:34:64:d1:7c:
fa:17:40:5e:42:1e:a5:e1:27:fa:65:0a:92:50:9c:0d:e3:0a:
5d:33:ea:df:9b:0f:c7:0c:65:5d:b6:53:5f:5a:f5:4c:ac:ed:
3a:02:80:76:20:0e:52:14:43:f8:f8:4b:84:77:2b:71:fb:b4:
1f:7a:5f:83:7e:37:20:92:d8:0d:72:f1:2c:89:d3:86:5d:bd:
ce:61:68:e6:18:67:d2:23:cd:36:cb:a0:ac:2f:ea:b3:5f:6a:
cf:d0:14:14:57:8f:f0:fe:38:e9:8b:a9:b2:bf:ec:4f:7c:3b:
fa:42:28:94
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAY7we3Trxj2OnVmy+W4W0EYYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjQwNDE4MDkxMzI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTBiZjExNWViNDZmMjlmOWE3M2M0MmI0MTJlYWRlN2UzMTY5NzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNYaBAAhFLtEAHgNhirvJe7pBLS3
Mn9kJRhUR9DbVjGyDsuzV0R8PSkYkgE+36YLVmOI7jzdK2SOEsDdAi6ts0j6i6tt
kpyBELGxNKMrDlbSkj/8ilhOwoIlgvCL2jQdRW67QEGdeJgfwKk9KhmBUuVrTV7A
1JoMNbtUS0+4wX0gHyVDvmwu9CSCG8MIulvjWKB0/fNwrEFQWW649jSWtzybz/tw
sGT49DKxtrrMXZtD1stYq7mskXeip+Hp0V3wF/Il4bN6Oh97nsiduErPF/51u3PA
rYBTQ0nUo2dXnceIGgqbNmoGo1cGSAZJVJ+y3X0watanDDi179CHrr+awwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFFoL8RXrRvKfmnPEK0EurefjFpc+MB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvV2d2eEZldEc4cC1hYzhRclFTNnQ1LU1XbHo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBARSpvAD
BAFSpvQDBADHy0wwDQYJKoZIhvcNAQELBQADggEBAEV0b8Rms1lUdcbgZZv8NFaE
EbJrdxlHJixbEq+Njbjw+CJdQ6n2tnXsPMeA+gzla2IBxGdUvBwIelSfa5gf7zqK
Gx71WLIy+P3oexE84xAgDZWsOchfKuUQ3BR++AKUQctisQ6RPi1gbUlGVkjkgRJG
2cmL92W/pIYFmmHBY5oiRvfew4Wi+t1qYdgSNGTRfPoXQF5CHqXhJ/plCpJQnA3j
Cl0z6t+bD8cMZV22U19a9Uys7ToCgHYgDlIUQ/j4S4R3K3H7tB96X4N+NyCS2A1y
8SyJ04Zdvc5haOYYZ9IjzTbLoKwv6rNfas/QFBRXj/D+OOmLqbK/7E98O/pCKJQ=
-----END CERTIFICATE-----
Generated at Thu Apr 18 18:13:37 2024 by rpki-client on console.sobornost.net