Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/XG7tGAwiJ9eEiPOJSyccLq2WPD8.roa
File: XG7tGAwiJ9eEiPOJSyccLq2WPD8.roa (raw, json)
Hash identifier: 7K8u2FJejfXGc7sm4tDL4mn+lLkALUjEzAmFP/+jLSs=
Subject key identifier: 5C:6E:ED:18:0C:22:27:D7:84:88:F3:89:4B:27:1C:2E:AD:96:3C:3F
Certificate issuer: /CN=f7f4902d240b25d7eb77f4f02e24f233f44a9a13
Certificate serial: 0188051C6E95D3DFBD3D82325E216BA65ED9
Authority key identifier: F7:F4:90:2D:24:0B:25:D7:EB:77:F4:F0:2E:24:F2:33:F4:4A:9A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_SQLSQLJdfrd_TwLiTyM_RKmhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/XG7tGAwiJ9eEiPOJSyccLq2WPD8.roa
Signing time: Wed 10 May 2023 10:02:09 +0000
ROA not before: Wed 10 May 2023 10:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213180
IP address blocks: 185.57.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:1c:6e:95:d3:df:bd:3d:82:32:5e:21:6b:a6:5e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7f4902d240b25d7eb77f4f02e24f233f44a9a13
Validity
Not Before: May 10 10:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c6eed180c2227d78488f3894b271c2ead963c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f8:96:be:41:0f:ed:da:f1:aa:78:60:9d:9c:
92:6a:ed:dd:7a:f1:07:31:ef:ea:ab:ed:3c:22:01:
94:4a:28:2d:ed:06:6c:2f:93:29:c5:da:e2:d6:05:
7d:4f:91:1f:a4:ea:e4:a0:c6:50:4f:f2:64:4f:57:
8d:05:c7:13:b4:2d:e5:5f:99:96:2e:64:b7:ee:34:
0f:07:5d:bf:c8:f6:c9:03:47:d5:61:2c:ef:89:c4:
3e:aa:43:1b:13:a3:b1:49:f0:02:3b:22:8f:20:db:
a6:05:7e:52:82:7a:91:bf:69:e3:ee:ea:20:49:20:
0e:f6:a4:31:b0:12:6f:55:3e:be:b2:ef:76:6e:ef:
a9:12:30:b0:fc:d1:e7:0c:39:41:5d:9d:2b:15:f4:
a0:63:99:c5:b7:e6:34:2d:fc:af:fc:db:ae:28:d9:
89:65:00:21:cd:e8:c5:08:cb:dc:a4:97:ae:76:8c:
7a:2f:53:21:75:9a:da:ad:08:8a:06:d0:24:10:c5:
d3:8e:eb:15:b5:c8:64:b9:c7:64:c9:b3:d6:46:b0:
a1:ef:e4:0e:ff:47:9d:0a:8b:44:b4:1f:98:ba:5e:
4c:be:39:c5:84:c1:37:4a:34:5d:0a:7b:5d:b9:5b:
c0:01:9d:c5:e4:2b:42:ec:6d:0f:40:5f:67:1e:bd:
da:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6E:ED:18:0C:22:27:D7:84:88:F3:89:4B:27:1C:2E:AD:96:3C:3F
X509v3 Authority Key Identifier:
keyid:F7:F4:90:2D:24:0B:25:D7:EB:77:F4:F0:2E:24:F2:33:F4:4A:9A:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_SQLSQLJdfrd_TwLiTyM_RKmhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/XG7tGAwiJ9eEiPOJSyccLq2WPD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/9_SQLSQLJdfrd_TwLiTyM_RKmhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.19.0/24
Signature Algorithm: sha256WithRSAEncryption
73:c0:bd:74:e4:3f:32:39:5d:08:5d:05:57:1f:12:65:6a:2c:
3e:7e:37:8a:0e:93:cc:ea:f1:aa:40:82:ff:87:6e:bd:3a:db:
a4:ea:aa:39:10:66:24:5a:ad:e2:f0:60:83:7c:82:5e:1c:0e:
1a:72:9b:7c:6f:e1:67:10:6c:f5:bb:ce:82:a9:11:dd:bf:8b:
0a:4d:e9:cd:19:6a:03:00:ba:72:14:cc:79:93:bf:e9:96:a0:
ae:81:01:6e:cd:22:48:4a:8a:51:da:9c:3b:9b:c0:0b:1b:07:
61:e0:54:00:a8:56:86:8e:5b:70:82:8d:33:7c:b8:42:b0:93:
e9:32:6c:91:fe:e7:2a:51:17:03:c8:8c:42:20:9e:43:3d:7a:
6b:52:1b:7c:83:f6:e4:30:95:0e:b9:9f:47:0a:24:e2:d1:6f:
54:0f:16:b0:89:76:7d:72:45:b2:98:cf:2c:58:cf:c4:ca:00:
ac:64:74:5b:6e:dd:50:95:38:bf:55:f4:4e:42:52:ea:5b:83:
93:11:73:32:40:b9:e7:99:ab:75:02:d6:f4:56:6c:8b:f9:cc:
84:51:4d:2f:69:2c:ec:00:6b:39:c8:ad:53:d4:32:cb:77:1f:
aa:0f:02:4b:b0:64:01:6b:53:81:89:ea:e6:89:e4:c9:4d:c6:
e0:eb:d3:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgFHG6V09+9PYIyXiFrpl7ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3ZjQ5MDJkMjQwYjI1ZDdlYjc3ZjRmMDJlMjRmMjMzZjQ0
YTlhMTMwHhcNMjMwNTEwMTAwMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzZlZWQxODBjMjIyN2Q3ODQ4OGYzODk0YjI3MWMyZWFkOTYzYzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfiWvkEP7drxqnhgnZySau3devEH
Me/qq+08IgGUSigt7QZsL5Mpxdri1gV9T5EfpOrkoMZQT/JkT1eNBccTtC3lX5mW
LmS37jQPB12/yPbJA0fVYSzvicQ+qkMbE6OxSfACOyKPINumBX5SgnqRv2nj7uog
SSAO9qQxsBJvVT6+su92bu+pEjCw/NHnDDlBXZ0rFfSgY5nFt+Y0Lfyv/NuuKNmJ
ZQAhzejFCMvcpJeudox6L1MhdZrarQiKBtAkEMXTjusVtchkucdkybPWRrCh7+QO
/0edCotEtB+Yul5MvjnFhME3SjRdCntduVvAAZ3F5CtC7G0PQF9nHr3aJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFxu7RgMIifXhIjziUsnHC6tljw/MB8GA1UdIwQY
MBaAFPf0kC0kCyXX63f08C4k8jP0SpoTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOV9TUUxTUUxKZGZyZF9Ud0xpVHlNX1JLbWhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jNmE0ZmUtYTc2MC00YzRjLTgxYjAt
NTNhYjg4YzVmMmM3LzEvWEc3dEdBd2lKOWVFaVBPSlN5Y2NMcTJXUEQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9jNmE0ZmUtYTc2MC00YzRjLTgxYjAtNTNhYjg4YzVmMmM3
LzEvOV9TUUxTUUxKZGZyZF9Ud0xpVHlNX1JLbWhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTkTMA0G
CSqGSIb3DQEBCwUAA4IBAQBzwL105D8yOV0IXQVXHxJlaiw+fjeKDpPM6vGqQIL/
h269Otuk6qo5EGYkWq3i8GCDfIJeHA4acpt8b+FnEGz1u86CqRHdv4sKTenNGWoD
ALpyFMx5k7/plqCugQFuzSJISopR2pw7m8ALGwdh4FQAqFaGjltwgo0zfLhCsJPp
MmyR/ucqURcDyIxCIJ5DPXprUht8g/bkMJUOuZ9HCiTi0W9UDxawiXZ9ckWymM8s
WM/EygCsZHRbbt1QlTi/VfROQlLqW4OTEXMyQLnnmat1Atb0VmyL+cyEUU0vaSzs
AGs5yK1T1DLLdx+qDwJLsGQBa1OBiermieTJTcbg69Mq
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:55 2024 by rpki-client on console.sobornost.net