Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/WOsMFTrLZYLv6iTgYuC94V1Jb1g.roa
File: WOsMFTrLZYLv6iTgYuC94V1Jb1g.roa (raw, json)
Hash identifier: kCiymVOZjRQGH4dCqzxO5iroiUDfsjPXMCwrjabBWvM=
Subject key identifier: 58:EB:0C:15:3A:CB:65:82:EF:EA:24:E0:62:E0:BD:E1:5D:49:6F:58
Certificate issuer: /CN=6b34fa53d1d84dbabe698d5bbccaedf109d157ae
Certificate serial: 01856D7867394257CA70F014FDDF2A624DDB
Authority key identifier: 6B:34:FA:53:D1:D8:4D:BA:BE:69:8D:5B:BC:CA:ED:F1:09:D1:57:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/azT6U9HYTbq-aY1bvMrt8QnRV64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/WOsMFTrLZYLv6iTgYuC94V1Jb1g.roa
Signing time: Sun 01 Jan 2023 13:14:45 +0000
ROA not before: Sun 01 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8762
IP address blocks: 147.95.200.0/24 maxlen: 24
147.95.0.0/16 maxlen: 16
147.95.128.0/20 maxlen: 20
147.95.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:67:39:42:57:ca:70:f0:14:fd:df:2a:62:4d:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b34fa53d1d84dbabe698d5bbccaedf109d157ae
Validity
Not Before: Jan 1 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58eb0c153acb6582efea24e062e0bde15d496f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:10:02:ab:d2:06:a6:ce:b5:62:63:96:16:
5c:4c:47:f2:83:60:28:9c:22:29:f9:58:a0:1c:37:
8c:d6:ac:c7:87:63:30:04:38:06:a6:6c:6e:83:16:
9c:64:7b:14:6e:03:ba:4f:1f:d7:86:ff:d4:c6:8f:
db:fa:ac:a9:67:84:b2:51:e0:77:21:e9:0d:90:ae:
54:52:d8:36:ea:f5:25:d3:54:c0:c6:cc:21:b0:41:
87:09:de:98:dd:91:b0:27:95:92:5a:41:10:33:92:
bd:75:51:bb:7c:37:2a:91:4e:21:04:84:d0:ed:0c:
b0:62:2f:79:c3:04:a6:6b:7b:d9:82:91:84:67:43:
59:51:b1:6a:98:74:49:7d:35:c6:00:f1:6b:24:88:
3d:2f:ac:05:c1:6f:a1:e2:c8:f3:77:61:6a:c1:f7:
66:cd:89:9a:00:bc:02:b7:63:cd:89:3d:54:a2:de:
22:36:08:51:18:36:87:80:a6:23:f2:16:7d:b5:cd:
f4:eb:d0:b4:80:dd:04:3c:cb:be:fb:36:30:53:67:
09:48:57:a9:cb:d8:53:58:e7:39:5e:40:81:2a:70:
07:e2:ec:73:6b:28:f4:6e:cb:70:12:9c:70:cf:85:
85:c5:91:de:fc:09:2f:c3:fc:00:cd:17:4a:dc:f6:
47:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:EB:0C:15:3A:CB:65:82:EF:EA:24:E0:62:E0:BD:E1:5D:49:6F:58
X509v3 Authority Key Identifier:
keyid:6B:34:FA:53:D1:D8:4D:BA:BE:69:8D:5B:BC:CA:ED:F1:09:D1:57:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/azT6U9HYTbq-aY1bvMrt8QnRV64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/WOsMFTrLZYLv6iTgYuC94V1Jb1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/528de1-8f68-4cb9-b6ce-ffaaa299af61/1/azT6U9HYTbq-aY1bvMrt8QnRV64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.95.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7f:d1:c9:86:f9:2a:c5:3f:b1:af:a8:29:86:af:fb:98:8b:2d:
05:95:d6:76:03:c5:a8:3d:d8:09:45:ea:42:7f:3a:74:1d:25:
06:0b:ec:c8:26:c4:36:2b:67:0e:5c:24:43:b5:53:65:3f:31:
48:6d:5f:ab:33:b6:2f:12:f0:f3:83:56:c7:4a:b8:3b:86:23:
7d:8d:30:1e:9a:9a:b1:90:97:92:f4:07:a8:0c:09:94:22:76:
d5:68:65:d9:d9:b1:61:27:bb:a3:8e:0f:8e:5c:b4:fc:31:79:
5f:dd:fd:e0:f8:d5:aa:b3:28:d0:27:11:a3:16:ae:db:66:29:
de:3c:b0:dd:99:5f:55:04:2a:74:5a:e8:58:27:98:0f:c9:a6:
86:54:5e:a1:25:ee:ca:ed:7b:1d:3b:4b:3f:9e:20:fb:26:77:
fb:10:e3:e6:59:eb:0c:d0:2e:e1:6a:6b:e9:c1:45:64:25:55:
d3:94:31:41:a4:c9:0a:d2:93:17:24:f5:bd:c8:e4:24:63:e7:
19:29:52:a8:24:6a:a2:d0:d3:b7:34:35:61:92:ce:a6:24:9a:
56:f0:4c:59:96:4d:82:e4:ea:bc:46:c8:4a:ef:8d:d6:9f:14:
12:7f:d4:39:4a:af:79:f0:38:4c:a9:98:38:1c:54:62:fa:bc:
90:8a:ce:f0
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVteGc5QlfKcPAU/d8qYk3bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiMzRmYTUzZDFkODRkYmFiZTY5OGQ1YmJjY2FlZGYxMDlk
MTU3YWUwHhcNMjMwMTAxMTMxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGViMGMxNTNhY2I2NTgyZWZlYTI0ZTA2MmUwYmRlMTVkNDk2ZjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHwQAqvSBqbOtWJjlhZcTEfyg2Ao
nCIp+VigHDeM1qzHh2MwBDgGpmxugxacZHsUbgO6Tx/Xhv/Uxo/b+qypZ4SyUeB3
IekNkK5UUtg26vUl01TAxswhsEGHCd6Y3ZGwJ5WSWkEQM5K9dVG7fDcqkU4hBITQ
7QywYi95wwSma3vZgpGEZ0NZUbFqmHRJfTXGAPFrJIg9L6wFwW+h4sjzd2Fqwfdm
zYmaALwCt2PNiT1Uot4iNghRGDaHgKYj8hZ9tc3069C0gN0EPMu++zYwU2cJSFep
y9hTWOc5XkCBKnAH4uxzayj0bstwEpxwz4WFxZHe/Akvw/wAzRdK3PZHWwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFFjrDBU6y2WC7+ok4GLgveFdSW9YMB8GA1UdIwQY
MBaAFGs0+lPR2E26vmmNW7zK7fEJ0VeuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXpUNlU5SFlUYnEtYVkxYnZNcnQ4UW5SVjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi81MjhkZTEtOGY2OC00Y2I5LWI2Y2Ut
ZmZhYWEyOTlhZjYxLzEvV09zTUZUckxaWUx2NmlUZ1l1Qzk0VjFKYjFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi81MjhkZTEtOGY2OC00Y2I5LWI2Y2UtZmZhYWEyOTlhZjYx
LzEvYXpUNlU5SFlUYnEtYVkxYnZNcnQ4UW5SVjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAk18wDQYJ
KoZIhvcNAQELBQADggEBAH/RyYb5KsU/sa+oKYav+5iLLQWV1nYDxag92AlF6kJ/
OnQdJQYL7MgmxDYrZw5cJEO1U2U/MUhtX6szti8S8PODVsdKuDuGI32NMB6amrGQ
l5L0B6gMCZQidtVoZdnZsWEnu6OOD45ctPwxeV/d/eD41aqzKNAnEaMWrttmKd48
sN2ZX1UEKnRa6FgnmA/JpoZUXqEl7srtex07Sz+eIPsmd/sQ4+ZZ6wzQLuFqa+nB
RWQlVdOUMUGkyQrSkxck9b3I5CRj5xkpUqgkaqLQ07c0NWGSzqYkmlbwTFmWTYLk
6rxGyErvjdafFBJ/1DlKr3nwOEypmDgcVGL6vJCKzvA=
-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:10 2024 by rpki-client on console.sobornost.net