Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/w4nGBxv33voKE8o7aAw5CMjqtFs.roa
File: w4nGBxv33voKE8o7aAw5CMjqtFs.roa (raw, json)
Hash identifier: Dxi20yD/yLfrtPTVCnutZmpNJghUTzmwXhkSxOF8Y/0=
Subject key identifier: C3:89:C6:07:1B:F7:DE:FA:0A:13:CA:3B:68:0C:39:08:C8:EA:B4:5B
Certificate issuer: /CN=713af8b790ac0923b24307ee008f261d10d9560b
Certificate serial: 01856EAFA57F610845FC92434B1228D97E9D
Authority key identifier: 71:3A:F8:B7:90:AC:09:23:B2:43:07:EE:00:8F:26:1D:10:D9:56:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cTr4t5CsCSOyQwfuAI8mHRDZVgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/w4nGBxv33voKE8o7aAw5CMjqtFs.roa
Signing time: Sun 01 Jan 2023 18:54:43 +0000
ROA not before: Sun 01 Jan 2023 18:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210115
IP address blocks: 77.87.32.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:a5:7f:61:08:45:fc:92:43:4b:12:28:d9:7e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=713af8b790ac0923b24307ee008f261d10d9560b
Validity
Not Before: Jan 1 18:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c389c6071bf7defa0a13ca3b680c3908c8eab45b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f7:03:a8:c0:76:21:03:ce:37:7d:91:59:c1:
69:d4:d5:9c:31:37:ed:5a:bd:80:64:53:50:5f:7a:
8c:c1:b7:b3:5d:00:ab:f7:87:ca:e1:f9:b5:58:21:
5a:62:a0:72:4d:ac:4b:6f:98:44:51:11:76:c4:30:
a5:72:05:91:1d:55:2c:79:f9:62:2b:74:1b:1a:39:
b2:f7:36:d2:07:c1:fe:9e:ae:49:94:81:9a:f6:95:
ed:6b:d0:6e:00:eb:41:c0:8b:39:28:80:7c:93:e3:
9a:5c:4b:13:84:da:f1:09:4b:98:49:69:30:06:bd:
29:e5:7a:da:70:a7:53:e9:f0:ba:74:29:71:76:05:
18:55:84:48:fb:eb:a6:bb:af:55:a8:f4:9a:7c:21:
89:f5:92:4e:e3:c2:44:92:84:a3:dd:9d:35:31:2b:
2b:a0:4f:e4:cd:3a:0d:77:53:77:10:1c:13:81:cc:
19:bb:1b:9e:ff:22:99:b5:8c:5d:4a:6d:a7:45:74:
e3:48:67:39:e2:6e:af:46:c3:30:5e:b6:94:98:6a:
72:71:ba:07:ff:d0:d3:69:c4:29:4e:8f:e4:a8:15:
ff:af:b7:96:de:96:97:10:c9:10:cf:72:74:5d:83:
8d:98:df:9b:6d:04:20:4e:51:a6:b6:06:75:22:1e:
83:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:89:C6:07:1B:F7:DE:FA:0A:13:CA:3B:68:0C:39:08:C8:EA:B4:5B
X509v3 Authority Key Identifier:
keyid:71:3A:F8:B7:90:AC:09:23:B2:43:07:EE:00:8F:26:1D:10:D9:56:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cTr4t5CsCSOyQwfuAI8mHRDZVgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/w4nGBxv33voKE8o7aAw5CMjqtFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/6fd5e3-cb6a-4d65-957c-47414766b6ba/1/cTr4t5CsCSOyQwfuAI8mHRDZVgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.32.0/21
Signature Algorithm: sha256WithRSAEncryption
67:7e:1b:94:7c:ea:04:93:76:8a:f3:11:2e:97:e3:31:00:31:
0f:49:53:7f:50:83:7c:a4:7f:af:11:c9:8c:a4:7e:4f:2f:4b:
44:f9:79:36:ac:0e:c5:2a:45:a1:d4:fc:11:dc:a4:8e:02:5d:
84:82:72:29:b4:5d:75:ad:dc:cf:f3:37:61:fa:8c:95:03:5c:
bc:ba:4a:57:15:3c:19:b4:a2:e5:4c:eb:c5:f1:d4:bd:ec:bb:
b7:04:1d:5a:c1:48:6b:1e:5e:34:71:29:89:58:bc:c3:95:94:
41:99:59:b6:2b:63:08:9a:df:0a:02:52:bb:29:f0:69:ff:4d:
4c:79:7b:dd:ae:3c:40:5d:4f:46:8e:c4:7a:24:5c:7b:c2:d2:
ae:62:aa:f4:fe:47:80:60:e3:bc:d7:55:81:37:0e:ae:f9:f4:
61:b0:de:fc:28:68:f0:75:da:a3:54:9e:94:e2:82:c1:53:8d:
c3:15:92:e1:8e:79:9f:15:32:c3:a2:b8:d3:74:3f:66:ff:61:
63:f3:db:7f:68:6e:3b:4f:59:80:74:29:2d:d7:34:e5:10:aa:
ce:86:86:54:ca:8f:21:fb:f3:1c:b6:f3:c3:97:ef:1e:ad:bc:
7f:58:a9:39:f5:81:cf:79:b9:21:d5:15:cd:6f:20:4a:1c:6b:
3c:19:5c:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVur6V/YQhF/JJDSxIo2X6dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxM2FmOGI3OTBhYzA5MjNiMjQzMDdlZTAwOGYyNjFkMTBk
OTU2MGIwHhcNMjMwMTAxMTg1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzg5YzYwNzFiZjdkZWZhMGExM2NhM2I2ODBjMzkwOGM4ZWFiNDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvcDqMB2IQPON32RWcFp1NWcMTft
Wr2AZFNQX3qMwbezXQCr94fK4fm1WCFaYqByTaxLb5hEURF2xDClcgWRHVUsefli
K3QbGjmy9zbSB8H+nq5JlIGa9pXta9BuAOtBwIs5KIB8k+OaXEsThNrxCUuYSWkw
Br0p5XracKdT6fC6dClxdgUYVYRI++umu69VqPSafCGJ9ZJO48JEkoSj3Z01MSsr
oE/kzToNd1N3EBwTgcwZuxue/yKZtYxdSm2nRXTjSGc54m6vRsMwXraUmGpycboH
/9DTacQpTo/kqBX/r7eW3paXEMkQz3J0XYONmN+bbQQgTlGmtgZ1Ih6DBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMOJxgcb9976ChPKO2gMOQjI6rRbMB8GA1UdIwQY
MBaAFHE6+LeQrAkjskMH7gCPJh0Q2VYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1RyNHQ1Q3NDU095UXdmdUFJOG1IUkRaVmdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS82ZmQ1ZTMtY2I2YS00ZDY1LTk1N2Mt
NDc0MTQ3NjZiNmJhLzEvdzRuR0J4djMzdm9LRThvN2FBdzVDTWpxdEZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS82ZmQ1ZTMtY2I2YS00ZDY1LTk1N2MtNDc0MTQ3NjZiNmJh
LzEvY1RyNHQ1Q3NDU095UXdmdUFJOG1IUkRaVmdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTVcgMA0G
CSqGSIb3DQEBCwUAA4IBAQBnfhuUfOoEk3aK8xEul+MxADEPSVN/UIN8pH+vEcmM
pH5PL0tE+Xk2rA7FKkWh1PwR3KSOAl2EgnIptF11rdzP8zdh+oyVA1y8ukpXFTwZ
tKLlTOvF8dS97Lu3BB1awUhrHl40cSmJWLzDlZRBmVm2K2MImt8KAlK7KfBp/01M
eXvdrjxAXU9GjsR6JFx7wtKuYqr0/keAYOO811WBNw6u+fRhsN78KGjwddqjVJ6U
4oLBU43DFZLhjnmfFTLDorjTdD9m/2Fj89t/aG47T1mAdCkt1zTlEKrOhoZUyo8h
+/MctvPDl+8erbx/WKk59YHPebkh1RXNbyBKHGs8GVwX
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:12 2024 by rpki-client on console.sobornost.net