Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/a8VrY5YLtlyUBeKO4-Pkm8ED7-Y.roa
File: a8VrY5YLtlyUBeKO4-Pkm8ED7-Y.roa (raw, json)
Hash identifier: 0y7wO6bh3PKc7hYM1AAbg0K4c7k6DEjk8DIFPfaxV5g=
Subject key identifier: 6B:C5:6B:63:96:0B:B6:5C:94:05:E2:8E:E3:E3:E4:9B:C1:03:EF:E6
Certificate issuer: /CN=ab87734368d88315f11b329386cc5ef2bb875858
Certificate serial: 01856DEF78B3A9D9C7CA5B9827064AF1B998
Authority key identifier: AB:87:73:43:68:D8:83:15:F1:1B:32:93:86:CC:5E:F2:BB:87:58:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4dzQ2jYgxXxGzKThsxe8ruHWFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/a8VrY5YLtlyUBeKO4-Pkm8ED7-Y.roa
Signing time: Sun 01 Jan 2023 15:24:48 +0000
ROA not before: Sun 01 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198167
IP address blocks: 185.108.30.0/24 maxlen: 24
185.108.29.0/24 maxlen: 24
185.108.28.0/24 maxlen: 24
185.108.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:78:b3:a9:d9:c7:ca:5b:98:27:06:4a:f1:b9:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab87734368d88315f11b329386cc5ef2bb875858
Validity
Not Before: Jan 1 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6bc56b63960bb65c9405e28ee3e3e49bc103efe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:2f:7d:aa:25:a9:01:99:41:5e:33:3d:9d:
39:2b:ff:3e:79:75:c1:4f:7a:6c:07:61:e3:8c:fa:
ed:b8:39:90:0d:9a:28:0b:dd:95:64:9e:ac:a1:33:
91:23:bd:4c:f8:46:6b:c0:03:6e:1d:c4:4a:4f:e7:
e8:ef:cc:86:6f:5f:d7:18:63:15:d9:e4:c2:54:3e:
30:c7:67:e8:39:81:98:86:aa:b6:b8:48:99:34:2e:
43:0d:0d:e3:7b:f4:af:da:a8:8c:2f:c0:b1:d9:f8:
14:db:2b:9a:6b:12:4f:7c:e9:59:ec:e3:2b:73:b1:
5c:3f:5e:a3:6a:87:6c:33:6c:c9:ba:cb:7e:69:d9:
8c:af:32:74:2c:85:cf:dc:95:b3:b3:0b:30:ff:8f:
2a:64:4d:b9:6b:2c:13:f9:de:19:5d:f0:2c:ad:c2:
9e:0a:ae:23:a8:20:36:d0:7a:8d:3a:6a:71:4d:82:
d2:7d:91:71:d9:55:c6:07:f1:2f:e3:1c:5e:b3:d8:
b9:32:7f:61:f4:84:72:4f:bf:46:85:e1:3f:6f:49:
e4:3c:ea:69:ca:47:6e:7d:46:b7:57:c6:5b:a6:fa:
39:b2:89:a1:fe:26:5b:30:c2:95:a9:4e:ac:87:47:
3b:71:77:15:e9:8c:5d:04:aa:24:1d:46:d8:24:3a:
96:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C5:6B:63:96:0B:B6:5C:94:05:E2:8E:E3:E3:E4:9B:C1:03:EF:E6
X509v3 Authority Key Identifier:
keyid:AB:87:73:43:68:D8:83:15:F1:1B:32:93:86:CC:5E:F2:BB:87:58:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4dzQ2jYgxXxGzKThsxe8ruHWFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/a8VrY5YLtlyUBeKO4-Pkm8ED7-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/562548-7b3d-40b3-9c05-18585ed94a98/1/q4dzQ2jYgxXxGzKThsxe8ruHWFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.28.0/22
Signature Algorithm: sha256WithRSAEncryption
46:d1:2b:5a:c5:60:93:ea:6f:50:df:02:53:25:02:91:ee:7c:
1a:af:72:b5:75:c3:50:66:1a:dd:de:6c:72:81:a3:b4:90:a2:
fc:b3:85:8e:30:5c:d6:b5:f0:4c:39:a1:23:a7:57:10:1c:8a:
f9:65:76:30:39:ca:c2:d6:ba:04:e0:1f:a5:a1:c7:bd:a9:89:
94:44:1b:9c:e8:cd:72:76:c1:c8:94:5b:c4:3a:d7:fa:cb:b9:
52:ff:db:11:43:1d:80:5a:ab:71:ff:8d:8b:ba:05:dd:10:3d:
d8:3c:8a:8a:29:79:1b:05:64:40:39:94:f0:ac:de:6b:6e:d4:
82:b7:11:f2:e4:3b:2c:4d:8b:f1:54:76:22:db:02:84:b9:d7:
99:74:0f:a4:4b:4c:5b:a8:f2:a1:bc:62:40:a6:0a:85:6a:f0:
02:0e:40:c6:d8:59:55:5d:db:90:51:8e:07:8b:05:0e:07:8b:
e6:37:5e:c4:75:59:7f:a3:2e:07:4a:ff:fa:a2:d9:b2:81:2e:
f8:36:8b:2d:00:f4:93:ad:a4:d1:de:9f:64:27:9b:ba:04:78:
bf:2c:6c:4c:bb:e6:d6:ca:c5:bc:5e:73:09:c0:27:2b:a7:43:
eb:db:a5:e6:1e:20:c4:88:be:7a:8b:36:05:15:82:cb:10:61:
0b:6a:90:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt73izqdnHyluYJwZK8bmYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiODc3MzQzNjhkODgzMTVmMTFiMzI5Mzg2Y2M1ZWYyYmI4
NzU4NTgwHhcNMjMwMTAxMTUyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmM1NmI2Mzk2MGJiNjVjOTQwNWUyOGVlM2UzZTQ5YmMxMDNlZmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJgvfaolqQGZQV4zPZ05K/8+eXXB
T3psB2HjjPrtuDmQDZooC92VZJ6soTORI71M+EZrwANuHcRKT+fo78yGb1/XGGMV
2eTCVD4wx2foOYGYhqq2uEiZNC5DDQ3je/Sv2qiML8Cx2fgU2yuaaxJPfOlZ7OMr
c7FcP16jaodsM2zJust+admMrzJ0LIXP3JWzswsw/48qZE25aywT+d4ZXfAsrcKe
Cq4jqCA20HqNOmpxTYLSfZFx2VXGB/Ev4xxes9i5Mn9h9IRyT79GheE/b0nkPOpp
ykdufUa3V8Zbpvo5somh/iZbMMKVqU6sh0c7cXcV6YxdBKokHUbYJDqWDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGvFa2OWC7ZclAXijuPj5JvBA+/mMB8GA1UdIwQY
MBaAFKuHc0No2IMV8Rsyk4bMXvK7h1hYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTRkelEyallneFh4R3pLVGhzeGU4cnVIV0ZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS81NjI1NDgtN2IzZC00MGIzLTljMDUt
MTg1ODVlZDk0YTk4LzEvYThWclk1WUx0bHlVQmVLTzQtUGttOEVENy1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS81NjI1NDgtN2IzZC00MGIzLTljMDUtMTg1ODVlZDk0YTk4
LzEvcTRkelEyallneFh4R3pLVGhzeGU4cnVIV0ZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWwcMA0G
CSqGSIb3DQEBCwUAA4IBAQBG0StaxWCT6m9Q3wJTJQKR7nwar3K1dcNQZhrd3mxy
gaO0kKL8s4WOMFzWtfBMOaEjp1cQHIr5ZXYwOcrC1roE4B+loce9qYmURBuc6M1y
dsHIlFvEOtf6y7lS/9sRQx2AWqtx/42LugXdED3YPIqKKXkbBWRAOZTwrN5rbtSC
txHy5DssTYvxVHYi2wKEudeZdA+kS0xbqPKhvGJApgqFavACDkDG2FlVXduQUY4H
iwUOB4vmN17EdVl/oy4HSv/6otmygS74NostAPSTraTR3p9kJ5u6BHi/LGxMu+bW
ysW8XnMJwCcrp0Pr26XmHiDEiL56izYFFYLLEGELapDD
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:55 2024 by rpki-client on console.sobornost.net