Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/OK7ejC6gjjl2j8TTg2JfAB9EgjI.roa
File: OK7ejC6gjjl2j8TTg2JfAB9EgjI.roa (raw, json)
Hash identifier: Xy1W8WJ3uYPmaVtNIj1RSgguslMTqOfwbXJ0UHu5A7Y=
Subject key identifier: 38:AE:DE:8C:2E:A0:8E:39:76:8F:C4:D3:83:62:5F:00:1F:44:82:32
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018570B98CE2714D0DE1604648C6CCEEB3EA
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/OK7ejC6gjjl2j8TTg2JfAB9EgjI.roa
Signing time: Mon 02 Jan 2023 04:24:46 +0000
ROA not before: Mon 02 Jan 2023 04:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201917
IP address blocks: 194.20.64.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:8c:e2:71:4d:0d:e1:60:46:48:c6:cc:ee:b3:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Jan 2 04:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38aede8c2ea08e39768fc4d383625f001f448232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5e:be:44:1a:c3:4a:42:d1:7b:11:0b:50:d2:
e5:6c:b5:d4:db:0e:5f:88:90:19:29:59:77:2a:44:
97:68:35:b4:64:99:43:e6:01:24:43:1e:83:82:b1:
38:2b:17:d1:6e:04:22:9d:c3:f5:cc:7f:50:e9:d0:
82:30:c1:dd:b9:1a:2d:b2:67:52:b6:dd:fc:e3:bb:
be:2c:70:1e:ed:94:ea:20:5c:ee:89:6a:7e:4f:5c:
1c:5c:77:fd:39:a1:08:bb:7d:9d:cf:a9:3b:48:09:
7f:a7:51:c5:22:59:03:b8:0d:a0:1c:18:75:df:b6:
a5:9e:73:90:f6:26:7d:10:b0:b1:bd:8c:c8:38:1e:
f4:46:17:97:f5:29:f1:67:28:a8:8c:3b:70:37:b3:
c1:13:02:45:69:c9:d8:7c:57:96:14:65:93:78:40:
e9:ae:c6:3e:cd:35:bb:16:65:63:72:28:4b:db:6e:
d1:db:a2:c6:b1:ca:fa:47:45:6e:f6:77:5c:f6:0f:
5b:84:61:fe:30:73:d9:66:fe:ba:60:9d:b7:7f:9d:
19:4b:23:d1:74:19:b0:e7:9d:90:24:14:38:d8:3d:
ff:f5:a5:7d:70:13:13:6c:14:35:35:9d:d0:29:b4:
30:dc:92:11:9d:6b:06:21:7e:bb:67:bf:dc:b7:0d:
d5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AE:DE:8C:2E:A0:8E:39:76:8F:C4:D3:83:62:5F:00:1F:44:82:32
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/OK7ejC6gjjl2j8TTg2JfAB9EgjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.64.0/20
Signature Algorithm: sha256WithRSAEncryption
02:db:47:74:b9:97:bf:14:ea:cd:ba:9c:e9:14:ba:ba:8a:2d:
18:90:7a:c2:fb:2b:34:52:11:57:c9:e5:e2:7e:3f:67:43:14:
41:ca:67:cd:54:44:8f:d4:65:da:83:55:da:f2:c1:f7:ec:a5:
d4:63:e9:cf:36:fa:04:e8:13:bb:d9:67:57:78:3a:5b:1d:96:
16:04:8f:f6:fc:17:8a:96:3a:57:62:40:8f:61:ff:87:8d:9c:
6d:41:95:ba:9a:b9:1b:78:38:60:a2:ae:77:15:ae:26:8d:b3:
2d:2f:c9:d3:8b:33:48:ce:5b:3e:df:48:2c:5a:37:2d:2b:2b:
99:eb:56:5c:ff:99:e0:e9:74:60:a3:94:4e:7b:2d:89:64:1b:
93:ea:d9:2b:8f:58:dc:21:12:23:a0:ac:56:bf:eb:92:f8:69:
de:ee:10:6f:c7:68:90:0a:b7:23:57:36:ec:16:77:14:39:16:
83:c5:5a:bf:f2:55:e7:c6:88:31:17:ad:d5:56:ca:43:b8:e9:
61:a9:4f:56:0c:16:67:ee:38:33:81:c4:fe:9e:b7:5c:af:6a:
53:19:07:0e:93:96:8d:6f:9a:fc:ca:f7:46:c8:32:f5:f1:b4:
79:4a:e8:d1:4d:bf:5b:33:4c:e6:da:83:5c:c7:98:f5:f8:22:
5e:2a:20:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwuYzicU0N4WBGSMbM7rPqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MzliN2ExMjM0MTdhYTcxOTMyNTk0NmFhODllMGYzMGFi
MGNhMDkwHhcNMjMwMTAyMDQyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOGFlZGU4YzJlYTA4ZTM5NzY4ZmM0ZDM4MzYyNWYwMDFmNDQ4MjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgV6+RBrDSkLRexELUNLlbLXU2w5f
iJAZKVl3KkSXaDW0ZJlD5gEkQx6DgrE4KxfRbgQincP1zH9Q6dCCMMHduRotsmdS
tt3847u+LHAe7ZTqIFzuiWp+T1wcXHf9OaEIu32dz6k7SAl/p1HFIlkDuA2gHBh1
37alnnOQ9iZ9ELCxvYzIOB70RheX9SnxZyiojDtwN7PBEwJFacnYfFeWFGWTeEDp
rsY+zTW7FmVjcihL227R26LGscr6R0Vu9ndc9g9bhGH+MHPZZv66YJ23f50ZSyPR
dBmw552QJBQ42D3/9aV9cBMTbBQ1NZ3QKbQw3JIRnWsGIX67Z7/ctw3VxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDiu3owuoI45do/E04NiXwAfRIIyMB8GA1UdIwQY
MBaAFHU5t6EjQXqnGTJZRqqJ4PMKsMoJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFRtM29TTkJlcWNaTWxsR3Fvbmc4d3F3eWdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi84MDdlZDUtNTBiMy00ZTVmLTkzNjct
NWI1ZTMzY2U3MGFkLzEvT0s3ZWpDNmdqamwyajhUVGcySmZBQjlFZ2pJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi84MDdlZDUtNTBiMy00ZTVmLTkzNjctNWI1ZTMzY2U3MGFk
LzEvZFRtM29TTkJlcWNaTWxsR3Fvbmc4d3F3eWdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwhRAMA0G
CSqGSIb3DQEBCwUAA4IBAQAC20d0uZe/FOrNupzpFLq6ii0YkHrC+ys0UhFXyeXi
fj9nQxRBymfNVESP1GXag1Xa8sH37KXUY+nPNvoE6BO72WdXeDpbHZYWBI/2/BeK
ljpXYkCPYf+HjZxtQZW6mrkbeDhgoq53Fa4mjbMtL8nTizNIzls+30gsWjctKyuZ
61Zc/5ng6XRgo5ROey2JZBuT6tkrj1jcIRIjoKxWv+uS+Gne7hBvx2iQCrcjVzbs
FncUORaDxVq/8lXnxogxF63VVspDuOlhqU9WDBZn7jgzgcT+nrdcr2pTGQcOk5aN
b5r8yvdGyDL18bR5SujRTb9bM0zm2oNcx5j1+CJeKiB2
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:49 2024 by rpki-client on console.sobornost.net