Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/8mw7isNC1JsfuVzcMjN4KzYP6Bk.roa
File: 8mw7isNC1JsfuVzcMjN4KzYP6Bk.roa (raw, json)
Hash identifier: rQ7b5sUJg2rlJQJVR3NYFRD7O/cog8MJ+8MgugRa6l8=
Subject key identifier: F2:6C:3B:8A:C3:42:D4:9B:1F:B9:5C:DC:32:33:78:2B:36:0F:E8:19
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 0185A6BBD04AF80DF35410FF0535F8A1209F
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/8mw7isNC1JsfuVzcMjN4KzYP6Bk.roa
Signing time: Thu 12 Jan 2023 16:06:44 +0000
ROA not before: Thu 12 Jan 2023 16:06:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.207.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:bb:d0:4a:f8:0d:f3:54:10:ff:05:35:f8:a1:20:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Jan 12 16:06:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f26c3b8ac342d49b1fb95cdc3233782b360fe819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:98:e0:32:b4:e9:76:9d:42:e8:9e:d5:e6:16:
2a:e2:95:b3:aa:52:3d:ca:46:f7:6f:e5:23:33:3d:
03:99:d9:2e:e8:5d:32:8f:a4:9a:95:cb:c5:aa:9a:
2d:15:fa:a0:7d:cf:5e:30:95:50:bb:0f:83:ad:24:
11:85:b7:a8:d5:41:c4:19:6e:42:4b:68:9a:84:da:
6a:d7:ca:4a:1e:07:23:be:e0:f2:dd:e6:7f:e2:34:
37:67:52:2c:37:a5:de:eb:e7:58:39:81:38:13:ff:
a8:cd:3c:d8:f7:18:f6:9a:c4:85:37:c0:49:75:b3:
5d:0f:a4:3a:e1:44:e5:42:9e:58:f3:cb:14:51:a1:
fa:02:e5:74:be:c5:e8:bb:ec:31:c0:81:ab:74:d7:
18:96:42:44:20:f2:c9:e3:41:31:12:c4:e4:28:31:
b8:02:f0:29:b2:90:06:7c:48:7a:27:35:eb:f7:86:
89:91:d0:25:d5:7a:46:22:81:db:d1:43:b7:98:69:
18:7a:95:db:17:6e:25:ce:c9:0b:a2:59:92:b9:d2:
1b:e1:e1:47:7a:63:26:af:f7:6d:aa:4d:02:f8:77:
f2:7f:3e:35:89:26:83:5b:ed:94:30:44:10:06:0d:
38:e5:7f:54:e8:79:88:5f:35:96:2c:40:1a:0d:2f:
cc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:6C:3B:8A:C3:42:D4:9B:1F:B9:5C:DC:32:33:78:2B:36:0F:E8:19
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/8mw7isNC1JsfuVzcMjN4KzYP6Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.135.0/24
Signature Algorithm: sha256WithRSAEncryption
32:d2:3e:e7:03:90:8e:df:1b:4c:61:5c:71:47:8e:b0:ec:11:
95:25:89:c2:18:3f:2e:11:af:b3:9a:ef:1e:e1:7d:40:49:c8:
7a:66:5e:12:ec:e5:d5:f5:34:7a:ab:3f:f8:cf:96:3f:ea:74:
e9:cf:3f:56:f0:06:dd:2b:b8:bc:59:e9:f7:c9:93:57:f3:21:
e9:e4:75:fc:77:02:02:f0:53:02:42:63:f1:62:f1:16:38:bf:
5f:5e:b0:78:ff:5e:98:f3:b3:63:3e:19:96:0c:0d:73:60:7b:
ed:0d:8b:15:9a:3c:46:bf:e8:53:ac:d1:0e:a8:5c:39:de:e1:
ac:a9:94:36:8b:33:46:90:da:94:9c:ac:a9:5e:2d:09:b8:f8:
55:80:38:7d:a2:d3:c8:9f:72:8a:ea:91:bc:9c:e9:70:5a:b5:
bb:4f:6a:e8:d0:94:9b:1a:b1:b2:fa:0f:25:b2:02:d8:1d:40:
76:85:1a:f6:cc:53:4a:50:66:ae:03:51:c7:54:fa:9b:e1:eb:
50:27:76:b5:96:a0:88:db:46:8c:30:2e:2e:e8:f3:19:b6:f0:
01:9d:4c:fe:d1:fd:61:68:b8:7e:cf:1c:f1:77:dc:c1:fc:7e:
13:a1:5d:d0:6f:3d:53:ab:0e:d2:dd:d3:a2:55:75:33:f8:a6:
05:aa:6e:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWmu9BK+A3zVBD/BTX4oSCfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NDc4OTNmYjViMzQ4ZTY4YTY2ZDU1YTI4ZjI3OGNiZjM5
MzFkZjQwHhcNMjMwMTEyMTYwNjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjZjM2I4YWMzNDJkNDliMWZiOTVjZGMzMjMzNzgyYjM2MGZlODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi5jgMrTpdp1C6J7V5hYq4pWzqlI9
ykb3b+UjMz0Dmdku6F0yj6SalcvFqpotFfqgfc9eMJVQuw+DrSQRhbeo1UHEGW5C
S2iahNpq18pKHgcjvuDy3eZ/4jQ3Z1IsN6Xe6+dYOYE4E/+ozTzY9xj2msSFN8BJ
dbNdD6Q64UTlQp5Y88sUUaH6AuV0vsXou+wxwIGrdNcYlkJEIPLJ40ExEsTkKDG4
AvApspAGfEh6JzXr94aJkdAl1XpGIoHb0UO3mGkYepXbF24lzskLolmSudIb4eFH
emMmr/dtqk0C+Hfyfz41iSaDW+2UMEQQBg045X9U6HmIXzWWLEAaDS/MUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPJsO4rDQtSbH7lc3DIzeCs2D+gZMB8GA1UdIwQY
MBaAFKZHiT+1s0jmimbVWijyeMvzkx30MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGtlSlA3V3pTT2FLWnRWYUtQSjR5X09USGZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kYThjYjEtMWJmYy00M2ZkLWEwZDIt
ZDYyNDQ5NmRkY2M4LzEvOG13N2lzTkMxSnNmdVZ6Y01qTjRLellQNkJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9kYThjYjEtMWJmYy00M2ZkLWEwZDItZDYyNDQ5NmRkY2M4
LzEvcGtlSlA3V3pTT2FLWnRWYUtQSjR5X09USGZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc+HMA0G
CSqGSIb3DQEBCwUAA4IBAQAy0j7nA5CO3xtMYVxxR46w7BGVJYnCGD8uEa+zmu8e
4X1ASch6Zl4S7OXV9TR6qz/4z5Y/6nTpzz9W8AbdK7i8Wen3yZNX8yHp5HX8dwIC
8FMCQmPxYvEWOL9fXrB4/16Y87NjPhmWDA1zYHvtDYsVmjxGv+hTrNEOqFw53uGs
qZQ2izNGkNqUnKypXi0JuPhVgDh9otPIn3KK6pG8nOlwWrW7T2ro0JSbGrGy+g8l
sgLYHUB2hRr2zFNKUGauA1HHVPqb4etQJ3a1lqCI20aMMC4u6PMZtvABnUz+0f1h
aLh+zxzxd9zB/H4ToV3Qbz1Tqw7S3dOiVXUz+KYFqm46
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net