Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/BO3VAGTtHW1yklyl1wftfOhUnZc.roa
File: BO3VAGTtHW1yklyl1wftfOhUnZc.roa (raw, json)
Hash identifier: ldnmBjUAR1i/ndap6Fu8tvXt5/7fpRSUEfBOpXdKb4k=
Subject key identifier: 04:ED:D5:00:64:ED:1D:6D:72:92:5C:A5:D7:07:ED:7C:E8:54:9D:97
Certificate issuer: /CN=41a59b0960ea65d6b92393ee0347a1a832f9b984
Certificate serial: 01896EDEDCA71600527CD19883BF738F3DF3
Authority key identifier: 41:A5:9B:09:60:EA:65:D6:B9:23:93:EE:03:47:A1:A8:32:F9:B9:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/BO3VAGTtHW1yklyl1wftfOhUnZc.roa
Signing time: Wed 19 Jul 2023 15:57:26 +0000
ROA not before: Wed 19 Jul 2023 15:57:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60012
IP address blocks: 185.204.44.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6e:de:dc:a7:16:00:52:7c:d1:98:83:bf:73:8f:3d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41a59b0960ea65d6b92393ee0347a1a832f9b984
Validity
Not Before: Jul 19 15:57:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04edd50064ed1d6d72925ca5d707ed7ce8549d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9a:b9:7c:9b:29:13:8d:c2:5e:0e:6d:f0:1b:
9d:71:4a:04:19:fb:66:43:20:17:69:ac:9b:1b:93:
ed:08:c5:dd:38:b7:99:b9:88:0d:3e:35:b3:20:65:
86:34:7b:66:bd:3d:c9:ec:54:41:a4:54:e8:87:4d:
cb:cb:f8:d5:37:5e:62:7f:a5:5a:26:08:06:46:c8:
52:a0:8b:fb:eb:0b:29:cd:80:6d:98:1a:d8:ff:42:
56:91:79:32:6e:0c:17:3e:53:ab:b4:21:1b:1c:8c:
9f:07:5c:f5:5a:fb:6f:df:fb:b3:eb:f5:a3:8a:98:
17:fe:55:ae:77:36:a1:03:ec:da:34:a0:64:70:8c:
38:2b:68:5c:fa:23:68:10:a8:70:f0:86:77:6e:c4:
89:be:c4:01:e8:ee:23:21:03:75:18:b2:60:29:33:
cc:91:a8:dd:61:82:68:88:fa:48:84:d2:c3:74:d4:
30:45:11:9d:b5:b8:00:fc:19:39:20:ea:51:c4:f5:
b2:c4:74:a6:2c:15:50:11:e4:11:e6:70:f5:d8:9a:
f9:5b:ad:b8:52:90:36:78:87:e2:09:0e:fc:08:50:
83:b6:da:96:12:1a:fe:19:cc:82:dc:fb:2f:a9:2b:
cf:3d:27:0a:66:2d:08:f3:a3:34:53:72:e6:37:63:
39:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:ED:D5:00:64:ED:1D:6D:72:92:5C:A5:D7:07:ED:7C:E8:54:9D:97
X509v3 Authority Key Identifier:
keyid:41:A5:9B:09:60:EA:65:D6:B9:23:93:EE:03:47:A1:A8:32:F9:B9:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QaWbCWDqZda5I5PuA0ehqDL5uYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/BO3VAGTtHW1yklyl1wftfOhUnZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/0a1b83-86ba-401a-a543-bfdec0c112e3/1/QaWbCWDqZda5I5PuA0ehqDL5uYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.44.0/22
Signature Algorithm: sha256WithRSAEncryption
84:c6:b2:78:6e:eb:69:76:f9:5b:ba:d8:8b:14:6b:fd:ec:4d:
85:0b:8a:73:12:22:32:06:24:24:a3:02:79:1d:0e:64:8b:26:
26:1b:e5:85:33:24:b7:d0:91:96:07:ff:2f:5e:ea:9d:c0:c8:
1e:dc:40:c8:84:3c:e5:0f:c2:bd:ae:c2:ad:fa:8e:9b:fe:d2:
3f:27:45:db:b7:ee:07:2d:a4:d8:a0:49:c7:fb:17:82:02:52:
67:ef:46:d0:d9:72:77:fb:de:6d:24:1a:fb:a8:d7:c5:35:61:
20:39:2f:a7:43:a5:3c:01:d2:e3:d7:84:6f:06:63:0c:25:d6:
2b:7b:da:08:b6:f4:39:2e:9e:5e:d7:dd:8e:7f:b3:69:fd:4e:
99:c4:cd:af:52:c9:8b:bd:5e:4d:d1:53:de:05:fd:c6:c1:ad:
9f:19:fd:93:fe:3c:ba:91:93:23:ad:95:2f:45:6d:81:14:a4:
3e:e0:d6:6a:43:d6:7f:73:c7:b7:9b:ae:e3:1e:66:32:ae:d1:
1f:1e:4e:d2:e4:ef:43:fa:69:fc:0b:6c:44:9a:00:c0:e8:39:
2a:a0:11:77:56:79:24:79:c7:74:1b:f8:34:43:c1:e0:75:71:
e3:84:f6:2d:72:71:b9:3c:d4:2d:0a:c1:de:60:22:b3:a4:18:
ce:ba:35:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlu3tynFgBSfNGYg79zjz3zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxYTU5YjA5NjBlYTY1ZDZiOTIzOTNlZTAzNDdhMWE4MzJm
OWI5ODQwHhcNMjMwNzE5MTU1NzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGVkZDUwMDY0ZWQxZDZkNzI5MjVjYTVkNzA3ZWQ3Y2U4NTQ5ZDk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgJq5fJspE43CXg5t8BudcUoEGftm
QyAXaaybG5PtCMXdOLeZuYgNPjWzIGWGNHtmvT3J7FRBpFToh03Ly/jVN15if6Va
JggGRshSoIv76wspzYBtmBrY/0JWkXkybgwXPlOrtCEbHIyfB1z1Wvtv3/uz6/Wj
ipgX/lWudzahA+zaNKBkcIw4K2hc+iNoEKhw8IZ3bsSJvsQB6O4jIQN1GLJgKTPM
kajdYYJoiPpIhNLDdNQwRRGdtbgA/Bk5IOpRxPWyxHSmLBVQEeQR5nD12Jr5W624
UpA2eIfiCQ78CFCDttqWEhr+GcyC3PsvqSvPPScKZi0I86M0U3LmN2M58wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFATt1QBk7R1tcpJcpdcH7XzoVJ2XMB8GA1UdIwQY
MBaAFEGlmwlg6mXWuSOT7gNHoagy+bmEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWFXYkNXRHFaZGE1STVQdUEwZWhxREw1dVlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8wYTFiODMtODZiYS00MDFhLWE1NDMt
YmZkZWMwYzExMmUzLzEvQk8zVkFHVHRIVzF5a2x5bDF3ZnRmT2hVblpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS8wYTFiODMtODZiYS00MDFhLWE1NDMtYmZkZWMwYzExMmUz
LzEvUWFXYkNXRHFaZGE1STVQdUEwZWhxREw1dVlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucwsMA0G
CSqGSIb3DQEBCwUAA4IBAQCExrJ4butpdvlbutiLFGv97E2FC4pzEiIyBiQkowJ5
HQ5kiyYmG+WFMyS30JGWB/8vXuqdwMge3EDIhDzlD8K9rsKt+o6b/tI/J0Xbt+4H
LaTYoEnH+xeCAlJn70bQ2XJ3+95tJBr7qNfFNWEgOS+nQ6U8AdLj14RvBmMMJdYr
e9oItvQ5Lp5e192Of7Np/U6ZxM2vUsmLvV5N0VPeBf3Gwa2fGf2T/jy6kZMjrZUv
RW2BFKQ+4NZqQ9Z/c8e3m67jHmYyrtEfHk7S5O9D+mn8C2xEmgDA6DkqoBF3Vnkk
ecd0G/g0Q8HgdXHjhPYtcnG5PNQtCsHeYCKzpBjOujVt
-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:46 2024 by rpki-client on console.sobornost.net