Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/8b0b19-fbfa-4357-b290-9ea751d59ab7/1/r3PwgsHZaxv1ENx-uNq81c2z8-Q.roa
File: r3PwgsHZaxv1ENx-uNq81c2z8-Q.roa (raw, json)
Hash identifier: 6e0wy1NjZxYwyzWgwWE9GVLdJAx7/R/jsiVH+Dav7PY=
Subject key identifier: AF:73:F0:82:C1:D9:6B:1B:F5:10:DC:7E:B8:DA:BC:D5:CD:B3:F3:E4
Certificate issuer: /CN=514c552bb9444c00f94f2f0594cba352fc2cbbbc
Certificate serial: 01856F42BEFEBDE7F7E777C7268888136043
Authority key identifier: 51:4C:55:2B:B9:44:4C:00:F9:4F:2F:05:94:CB:A3:52:FC:2C:BB:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUxVK7lETAD5Ty8FlMujUvwsu7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/8b0b19-fbfa-4357-b290-9ea751d59ab7/1/r3PwgsHZaxv1ENx-uNq81c2z8-Q.roa
Signing time: Sun 01 Jan 2023 21:35:23 +0000
ROA not before: Sun 01 Jan 2023 21:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49709
IP address blocks: 185.172.180.0/22 maxlen: 24
185.193.0.0/22 maxlen: 24
2a0b:1d00::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:be:fe:bd:e7:f7:e7:77:c7:26:88:88:13:60:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514c552bb9444c00f94f2f0594cba352fc2cbbbc
Validity
Not Before: Jan 1 21:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af73f082c1d96b1bf510dc7eb8dabcd5cdb3f3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ee:81:82:37:58:7e:f0:0a:f3:3d:d8:83:d6:
70:a6:e2:14:62:6b:2a:b6:4c:f5:45:47:96:da:45:
9e:3b:57:fc:00:fa:2a:e6:92:50:38:46:b3:b2:78:
ec:8d:04:26:1f:04:91:00:e4:be:28:cd:fb:0a:0d:
06:7d:4d:91:41:4b:39:44:fb:34:e5:a2:13:e6:77:
f1:ac:ef:2a:bd:de:e2:b3:c9:30:83:3e:f4:fd:6f:
8b:bd:27:48:ae:b1:25:8f:fa:cc:a5:d4:d5:69:8e:
94:a2:23:c9:45:a9:0a:2d:4a:8d:1b:ab:f8:37:d2:
d2:07:52:bc:6e:4e:ff:5a:11:e9:cc:61:0e:c3:3c:
28:9e:ec:c6:92:15:b5:ea:80:0d:dd:08:df:ab:55:
47:75:92:5d:30:79:36:f2:bb:fc:a7:7b:e3:ea:39:
20:7f:ce:1a:61:91:4f:2d:e2:6f:81:9b:d7:54:0c:
98:cd:e9:98:fd:24:c8:64:da:0e:34:fc:de:b1:8e:
75:47:b9:5e:ff:44:be:99:67:ff:96:b2:89:29:91:
22:e6:1c:97:53:e1:4f:86:1b:3a:02:07:85:80:47:
17:5d:6b:5e:64:75:a4:ea:89:f1:62:9e:54:6a:e5:
0b:f3:27:20:be:04:d0:2f:78:13:13:ed:8a:b1:ea:
d8:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:73:F0:82:C1:D9:6B:1B:F5:10:DC:7E:B8:DA:BC:D5:CD:B3:F3:E4
X509v3 Authority Key Identifier:
keyid:51:4C:55:2B:B9:44:4C:00:F9:4F:2F:05:94:CB:A3:52:FC:2C:BB:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUxVK7lETAD5Ty8FlMujUvwsu7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/8b0b19-fbfa-4357-b290-9ea751d59ab7/1/r3PwgsHZaxv1ENx-uNq81c2z8-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/8b0b19-fbfa-4357-b290-9ea751d59ab7/1/UUxVK7lETAD5Ty8FlMujUvwsu7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.180.0/22
185.193.0.0/22
IPv6:
2a0b:1d00::/29
Signature Algorithm: sha256WithRSAEncryption
34:ef:53:5e:e8:c5:80:eb:1a:55:d7:87:8e:87:bb:3f:d3:73:
ea:47:fe:c7:b0:c0:f6:72:0a:41:85:ca:78:28:d6:7b:bc:60:
b3:05:ff:4e:e1:c5:ff:02:6e:da:0c:d3:2a:2d:2b:01:68:d3:
36:a5:35:df:1c:ff:a6:31:f9:ed:e9:a7:27:28:28:7c:e6:e2:
07:94:cb:9d:7e:05:70:1f:0f:56:d0:df:87:1e:41:c1:e2:52:
34:3f:a6:41:86:e9:6f:90:be:a0:a1:b3:a7:42:23:2e:e9:54:
e3:3d:e4:e9:bb:16:74:12:7f:30:40:11:81:27:bd:d1:dd:34:
f3:3a:79:ee:ee:b2:05:9f:33:c7:0b:39:96:e2:f9:19:b4:36:
0c:1a:23:6d:11:20:0e:42:50:c8:8a:55:15:a8:cb:c0:a3:95:
f6:f4:da:38:94:7f:52:d9:ac:c6:18:6d:55:f8:4a:20:91:7d:
54:a8:58:30:26:78:fe:ec:ba:f7:32:35:39:ae:ef:2d:ad:62:
a8:6e:dd:e9:61:3e:a4:14:f1:18:8f:08:64:cd:f7:e5:f0:7b:
6f:23:bf:dc:1e:66:1a:1a:25:10:0a:8e:11:87:95:ae:87:32:
a0:84:13:d4:68:88:a2:35:36:3c:24:aa:e7:da:76:37:50:a6:
87:ef:58:cc
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYVvQr7+vef353fHJoiIE2BDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNGM1NTJiYjk0NDRjMDBmOTRmMmYwNTk0Y2JhMzUyZmMy
Y2JiYmMwHhcNMjMwMTAxMjEzNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjczZjA4MmMxZDk2YjFiZjUxMGRjN2ViOGRhYmNkNWNkYjNmM2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlO6BgjdYfvAK8z3Yg9ZwpuIUYmsq
tkz1RUeW2kWeO1f8APoq5pJQOEazsnjsjQQmHwSRAOS+KM37Cg0GfU2RQUs5RPs0
5aIT5nfxrO8qvd7is8kwgz70/W+LvSdIrrElj/rMpdTVaY6UoiPJRakKLUqNG6v4
N9LSB1K8bk7/WhHpzGEOwzwonuzGkhW16oAN3Qjfq1VHdZJdMHk28rv8p3vj6jkg
f84aYZFPLeJvgZvXVAyYzemY/STIZNoONPzesY51R7le/0S+mWf/lrKJKZEi5hyX
U+FPhhs6AgeFgEcXXWteZHWk6onxYp5UauUL8ycgvgTQL3gTE+2KserYUwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFK9z8ILB2Wsb9RDcfrjavNXNs/PkMB8GA1UdIwQY
MBaAFFFMVSu5REwA+U8vBZTLo1L8LLu8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVV4Vks3bEVUQUQ1VHk4RmxNdWpVdndzdTd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84YjBiMTktZmJmYS00MzU3LWIyOTAt
OWVhNzUxZDU5YWI3LzEvcjNQd2dzSFpheHYxRU54LXVOcTgxYzJ6OC1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS84YjBiMTktZmJmYS00MzU3LWIyOTAtOWVhNzUxZDU5YWI3
LzEvVVV4Vks3bEVUQUQ1VHk4RmxNdWpVdndzdTd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuay0AwQC
ucEAMA0EAgACMAcDBQMqCx0AMA0GCSqGSIb3DQEBCwUAA4IBAQA071Ne6MWA6xpV
14eOh7s/03PqR/7HsMD2cgpBhcp4KNZ7vGCzBf9O4cX/Am7aDNMqLSsBaNM2pTXf
HP+mMfnt6acnKCh85uIHlMudfgVwHw9W0N+HHkHB4lI0P6ZBhulvkL6gobOnQiMu
6VTjPeTpuxZ0En8wQBGBJ73R3TTzOnnu7rIFnzPHCzmW4vkZtDYMGiNtESAOQlDI
ilUVqMvAo5X29No4lH9S2azGGG1V+EogkX1UqFgwJnj+7Lr3MjU5ru8trWKobt3p
YT6kFPEYjwhkzffl8HtvI7/cHmYaGiUQCo4Rh5WuhzKghBPUaIiiNTY8JKrn2nY3
UKaH71jM
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:44 2024 by rpki-client on console.sobornost.net