Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/vw6HxruqZ0usMtuFhcoOnWKpTg0.roa
File: vw6HxruqZ0usMtuFhcoOnWKpTg0.roa (raw, json)
Hash identifier: ap/pLPKCN6zouH7X84iq9Py7/7uheFc+pdMt9PIVn7g=
Subject key identifier: BF:0E:87:C6:BB:AA:67:4B:AC:32:DB:85:85:CA:0E:9D:62:A9:4E:0D
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 01856FA6E518E9516688572C6F68ADCDD2F0
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/vw6HxruqZ0usMtuFhcoOnWKpTg0.roa
Signing time: Sun 01 Jan 2023 23:24:46 +0000
ROA not before: Sun 01 Jan 2023 23:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35819
IP address blocks: 82.197.52.0/27 maxlen: 27
82.197.52.32/27 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:e5:18:e9:51:66:88:57:2c:6f:68:ad:cd:d2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: Jan 1 23:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf0e87c6bbaa674bac32db8585ca0e9d62a94e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cd:08:7b:f3:95:d5:b2:99:89:e2:77:15:3c:
e4:0e:42:43:59:3b:0a:2a:7f:cf:d3:4d:f5:ce:2f:
ab:af:36:aa:1a:8d:05:c9:67:e0:72:e5:0d:4e:54:
39:54:aa:da:fd:ed:7c:e7:e9:c6:b7:5c:71:df:18:
fd:4d:02:3d:89:40:c3:0c:9d:95:5c:9c:ce:e8:5e:
fb:3d:a5:9b:27:67:2b:d5:54:81:ab:34:14:de:81:
6f:aa:2b:17:fd:fd:d3:fe:b3:53:2e:c8:9c:a8:af:
80:97:e9:6c:3e:ba:2a:93:58:be:71:42:33:73:b1:
b8:4c:6d:d3:2b:70:73:0a:1e:2f:53:f0:b9:c5:f5:
dc:a3:ef:af:1e:9e:61:66:a1:13:d8:4b:6b:6f:01:
43:ed:f7:98:54:19:4a:ba:06:2e:2e:cf:15:ae:ab:
5a:a4:bc:67:11:94:a0:81:93:8d:d4:5e:3e:b4:8a:
33:26:e2:4d:24:cb:2b:89:35:a9:64:1b:21:85:e1:
17:15:ee:13:f2:1c:b1:ee:89:6f:ce:72:7b:c4:d2:
e9:94:cc:84:79:16:4d:69:ed:06:cf:cd:07:4c:9f:
89:11:f8:03:c7:88:e2:86:39:8b:91:13:bc:b0:98:
32:52:2f:d5:15:f0:0d:89:2c:91:df:98:59:75:18:
8a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:0E:87:C6:BB:AA:67:4B:AC:32:DB:85:85:CA:0E:9D:62:A9:4E:0D
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/vw6HxruqZ0usMtuFhcoOnWKpTg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.197.52.0/26
Signature Algorithm: sha256WithRSAEncryption
66:65:65:d1:df:cd:66:39:a0:dc:a2:33:a4:bc:9d:2f:13:fc:
93:f4:39:02:f4:d5:fd:4a:2e:41:da:e8:7a:7e:8d:ed:bf:3f:
7d:3d:ac:d4:43:cc:fd:19:df:fe:60:ec:51:35:b7:92:94:bb:
6f:3c:90:c8:bb:9a:ff:ff:ff:bc:0d:b8:c0:d7:c4:0a:de:cf:
58:a0:1e:c0:46:72:67:64:fe:9f:4f:12:20:aa:5e:79:3a:e2:
65:10:1c:63:fa:91:d4:9b:66:c2:31:ab:15:4a:96:60:88:3e:
ba:cd:e8:a7:50:b1:e8:31:d5:39:d1:f3:86:06:c4:84:33:b4:
ef:7c:dd:1f:67:36:0c:2f:46:c1:00:d3:0f:58:c5:79:21:a4:
9c:9c:29:7d:d8:05:6a:8d:70:b2:6f:3f:79:d5:01:d7:ef:47:
bf:d6:87:fb:34:4a:d4:66:a9:e8:dd:fc:ac:6c:de:48:75:d8:
85:b8:79:38:3c:ff:64:2e:d4:51:e4:c3:82:d0:76:40:38:e9:
4c:00:c9:5e:e9:43:69:d7:3e:2d:47:c7:4a:db:3b:5d:6b:63:
9e:df:a5:23:42:65:df:80:38:7e:63:21:23:ec:77:1c:8d:94:
5b:28:e7:a1:a6:a9:c0:48:b6:21:48:65:d3:72:7f:1e:ce:24:
fd:c9:31:cf
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvpuUY6VFmiFcsb2itzdLwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNzFiMTQ3ZWI4NzM3YWJjYzMzNWY4MDIwOTUxYjI1ZmYy
NjU2YTYwHhcNMjMwMTAxMjMyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjBlODdjNmJiYWE2NzRiYWMzMmRiODU4NWNhMGU5ZDYyYTk0ZTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArM0Ie/OV1bKZieJ3FTzkDkJDWTsK
Kn/P0031zi+rrzaqGo0FyWfgcuUNTlQ5VKra/e185+nGt1xx3xj9TQI9iUDDDJ2V
XJzO6F77PaWbJ2cr1VSBqzQU3oFvqisX/f3T/rNTLsicqK+Al+lsProqk1i+cUIz
c7G4TG3TK3BzCh4vU/C5xfXco++vHp5hZqET2EtrbwFD7feYVBlKugYuLs8Vrqta
pLxnEZSggZON1F4+tIozJuJNJMsriTWpZBshheEXFe4T8hyx7olvznJ7xNLplMyE
eRZNae0Gz80HTJ+JEfgDx4jihjmLkRO8sJgyUi/VFfANiSyR35hZdRiKLQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFL8Oh8a7qmdLrDLbhYXKDp1iqU4NMB8GA1UdIwQY
MBaAFExxsUfrhzerzDNfgCCVGyX/JlamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMt
MDcxYjk5MWFmMDFmLzEvdnc2SHhydXFaMHVzTXR1Rmhjb09uV0twVGcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMtMDcxYjk5MWFmMDFm
LzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGUsU0ADAN
BgkqhkiG9w0BAQsFAAOCAQEAZmVl0d/NZjmg3KIzpLydLxP8k/Q5AvTV/UouQdro
en6N7b8/fT2s1EPM/Rnf/mDsUTW3kpS7bzyQyLua////vA24wNfECt7PWKAewEZy
Z2T+n08SIKpeeTriZRAcY/qR1JtmwjGrFUqWYIg+us3op1Cx6DHVOdHzhgbEhDO0
73zdH2c2DC9GwQDTD1jFeSGknJwpfdgFao1wsm8/edUB1+9Hv9aH+zRK1Gap6N38
rGzeSHXYhbh5ODz/ZC7UUeTDgtB2QDjpTADJXulDadc+LUfHSts7XWtjnt+lI0Jl
34A4fmMhI+x3HI2UWyjnoaapwEi2IUhl03J/Hs4k/ckxzw==
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:15 2024 by rpki-client on console.sobornost.net