Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/8j2yVRg93FDW6pX2pNbLCUwFIHM.roa
File: 8j2yVRg93FDW6pX2pNbLCUwFIHM.roa (raw, json)
Hash identifier: Rqu+LJLls8nntdTOPr3cWe3SuBV8x/FlqZPD4nTFvxw=
Subject key identifier: F2:3D:B2:55:18:3D:DC:50:D6:EA:95:F6:A4:D6:CB:09:4C:05:20:73
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 01857155603B7BA198464E9B9AB52D6C3071
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/8j2yVRg93FDW6pX2pNbLCUwFIHM.roa
Signing time: Mon 02 Jan 2023 07:14:58 +0000
ROA not before: Mon 02 Jan 2023 07:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 194.213.126.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:60:3b:7b:a1:98:46:4e:9b:9a:b5:2d:6c:30:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: Jan 2 07:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f23db255183ddc50d6ea95f6a4d6cb094c052073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f8:03:ae:50:a1:22:de:9e:98:a9:8f:b2:3b:
2a:d2:37:94:2e:22:60:5b:55:7d:08:20:b0:46:52:
e5:93:73:50:49:4b:1f:da:6b:4d:68:3d:35:44:4e:
1e:0c:89:88:c7:36:d2:55:58:3c:50:4b:6f:73:81:
47:81:2c:b3:5c:7e:99:bb:13:3b:51:47:56:7b:27:
5c:c5:73:51:f4:b5:7a:5d:c1:bd:ea:d8:4d:a7:90:
98:32:4c:b6:6b:9a:7a:0a:ae:4c:60:57:b0:b7:82:
8c:db:ca:db:ce:eb:e5:38:25:2a:a1:5f:02:97:b5:
0e:f1:ce:da:dd:9a:c3:80:07:8c:cd:96:30:6b:d8:
dc:36:b6:e9:21:5a:f9:ff:ed:43:67:9e:26:8d:33:
78:96:d1:0c:02:5c:40:79:45:e1:dc:9c:cd:ab:62:
1c:a0:bc:01:2b:61:72:f9:f2:0b:21:da:78:51:66:
73:8e:8b:a0:45:f4:74:a9:68:1b:5f:35:4c:a5:96:
a4:a5:28:a6:79:fe:fe:b3:5f:4b:0b:06:c9:4d:57:
9d:1e:85:2c:6f:94:40:63:01:93:74:13:7b:a3:c1:
2d:a7:30:60:e0:9c:01:2e:79:5b:e8:64:72:38:af:
0d:41:35:ae:d9:36:b3:b0:07:22:3a:35:72:5d:1d:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:3D:B2:55:18:3D:DC:50:D6:EA:95:F6:A4:D6:CB:09:4C:05:20:73
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/8j2yVRg93FDW6pX2pNbLCUwFIHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.126.0/23
Signature Algorithm: sha256WithRSAEncryption
74:48:1d:82:e0:f3:3f:61:a3:fb:48:80:01:9d:c0:fc:2b:0a:
8b:2a:6a:37:1d:2e:7f:8c:cd:40:28:56:6f:cd:58:6a:b0:7c:
9f:95:ce:26:83:63:44:bb:30:fb:b0:64:71:09:9f:89:44:42:
0a:94:6d:ff:ad:b4:80:80:1c:85:97:d2:72:ba:44:c2:00:d2:
74:dd:8a:1b:0c:46:c1:77:06:35:34:82:5f:19:72:96:6f:9c:
ca:03:2b:2a:bb:4b:0f:7a:9a:f1:ba:18:23:89:f6:1e:58:32:
cf:df:9f:22:ba:2d:4e:55:7a:cd:90:27:b8:eb:d5:21:28:d7:
b6:ee:b2:b2:9a:71:08:67:f6:2e:9b:14:01:1b:1d:fb:b2:08:
f9:ae:f5:36:8b:cc:79:53:f4:25:d1:20:24:ae:90:52:92:62:
6d:90:49:cb:f6:c3:b6:0f:c4:25:15:ac:01:ce:d3:0e:08:3a:
17:27:95:1e:d1:5f:3a:bc:7c:0a:d8:a0:34:78:6a:a0:aa:5b:
11:29:81:7b:c9:50:62:63:7f:e0:08:2d:c8:4c:19:48:5a:fd:
61:6b:be:8f:72:c8:f6:76:03:64:46:60:56:09:f1:6a:15:5d:
60:b7:89:76:ed:61:c6:91:15:1b:66:df:ba:54:9e:60:d0:80:
13:f3:13:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxVWA7e6GYRk6bmrUtbDBxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YmVlMGViZDA2YjRiODEyZjllMTM3MTZlMjVmMWMzYzNk
MTRjYzYwHhcNMjMwMTAyMDcxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjNkYjI1NTE4M2RkYzUwZDZlYTk1ZjZhNGQ2Y2IwOTRjMDUyMDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvgDrlChIt6emKmPsjsq0jeULiJg
W1V9CCCwRlLlk3NQSUsf2mtNaD01RE4eDImIxzbSVVg8UEtvc4FHgSyzXH6ZuxM7
UUdWeydcxXNR9LV6XcG96thNp5CYMky2a5p6Cq5MYFewt4KM28rbzuvlOCUqoV8C
l7UO8c7a3ZrDgAeMzZYwa9jcNrbpIVr5/+1DZ54mjTN4ltEMAlxAeUXh3JzNq2Ic
oLwBK2Fy+fILIdp4UWZzjougRfR0qWgbXzVMpZakpSimef7+s19LCwbJTVedHoUs
b5RAYwGTdBN7o8EtpzBg4JwBLnlb6GRyOK8NQTWu2TazsAciOjVyXR3uTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPI9slUYPdxQ1uqV9qTWywlMBSBzMB8GA1UdIwQY
MBaAFBS+4OvQa0uBL54TcW4l8cPD0UzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUt
ZDFiYjZiNGRkNzAxLzEvOGoyeVZSZzkzRkRXNnBYMnBOYkxDVXdGSUhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUtZDFiYjZiNGRkNzAx
LzEvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwtV+MA0G
CSqGSIb3DQEBCwUAA4IBAQB0SB2C4PM/YaP7SIABncD8KwqLKmo3HS5/jM1AKFZv
zVhqsHyflc4mg2NEuzD7sGRxCZ+JREIKlG3/rbSAgByFl9JyukTCANJ03YobDEbB
dwY1NIJfGXKWb5zKAysqu0sPeprxuhgjifYeWDLP358iui1OVXrNkCe469UhKNe2
7rKymnEIZ/YumxQBGx37sgj5rvU2i8x5U/Ql0SAkrpBSkmJtkEnL9sO2D8QlFawB
ztMOCDoXJ5Ue0V86vHwK2KA0eGqgqlsRKYF7yVBiY3/gCC3ITBlIWv1ha76Pcsj2
dgNkRmBWCfFqFV1gt4l27WHGkRUbZt+6VJ5g0IAT8xOm
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net