Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/sauoWIGxO8DT72xoXUQWIJJ23tI.roa
File: sauoWIGxO8DT72xoXUQWIJJ23tI.roa (raw, json)
Hash identifier: zlhWr4Ejy1w+0W6+l6LsGc8FclXwJZIcUxiEPOgFoys=
Subject key identifier: B1:AB:A8:58:81:B1:3B:C0:D3:EF:6C:68:5D:44:16:20:92:76:DE:D2
Certificate issuer: /CN=b630b73b51cbc5380dd4adb3d5aaff4d7a334c5e
Certificate serial: 018C150C1188DC67E0769D1E7B8FB21B853C
Authority key identifier: B6:30:B7:3B:51:CB:C5:38:0D:D4:AD:B3:D5:AA:FF:4D:7A:33:4C:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tjC3O1HLxTgN1K2z1ar_TXozTF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/sauoWIGxO8DT72xoXUQWIJJ23tI.roa
Signing time: Tue 28 Nov 2023 08:29:21 +0000
ROA not before: Tue 28 Nov 2023 08:29:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47952
IP address blocks: 185.82.222.0/24 maxlen: 24
185.82.221.0/24 maxlen: 24
185.82.220.0/24 maxlen: 24
185.82.223.0/24 maxlen: 24
91.194.52.0/24 maxlen: 24
91.194.54.0/24 maxlen: 24
185.201.213.0/24 maxlen: 24
185.201.212.0/24 maxlen: 24
185.201.214.0/24 maxlen: 24
185.201.215.0/24 maxlen: 24
2a0a:c4c0:1::/48 maxlen: 48
2a0a:c4c0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:0c:11:88:dc:67:e0:76:9d:1e:7b:8f:b2:1b:85:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b630b73b51cbc5380dd4adb3d5aaff4d7a334c5e
Validity
Not Before: Nov 28 08:29:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1aba85881b13bc0d3ef6c685d4416209276ded2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:24:0e:4a:2b:a9:5a:da:72:61:a8:94:dd:c0:
d7:c7:c6:7d:09:cc:b2:ce:a8:28:0f:c3:62:b6:4e:
37:43:0d:86:e6:d1:0f:dd:2b:aa:17:58:ce:cf:7e:
79:2d:26:f5:0f:c7:d8:0d:2e:5e:90:92:68:25:3b:
75:e7:57:8f:9d:43:95:79:79:bd:5e:d5:85:61:64:
5b:6b:4e:80:d1:7f:16:67:41:49:5c:20:e3:7f:00:
cd:51:c1:bb:f8:52:7b:d1:af:b5:47:45:fb:e8:47:
c3:5b:ed:c1:ad:e7:09:03:7e:7e:b0:80:55:1f:3b:
3c:0b:53:8d:97:36:39:21:a2:b8:ea:d8:ee:eb:6e:
ad:56:61:eb:9e:4c:d7:98:b4:12:04:b1:42:fd:69:
14:f3:07:8b:b7:7f:c8:bb:41:1d:85:ba:3c:5e:a6:
fb:8f:d3:f6:87:d8:5a:1d:14:b8:33:f5:f9:b3:6c:
b0:a1:44:70:13:95:f6:78:7c:b3:7e:c8:ac:2d:7f:
80:a0:79:fa:1b:27:fd:a0:58:a6:7d:ba:fa:e5:da:
c7:8e:0a:42:eb:7e:a9:fb:f8:11:c1:8b:7b:66:46:
a9:38:41:03:a3:91:eb:af:30:c6:b8:0f:75:33:67:
85:b7:82:bd:24:74:df:0a:96:b6:6e:d1:73:2b:61:
39:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:AB:A8:58:81:B1:3B:C0:D3:EF:6C:68:5D:44:16:20:92:76:DE:D2
X509v3 Authority Key Identifier:
keyid:B6:30:B7:3B:51:CB:C5:38:0D:D4:AD:B3:D5:AA:FF:4D:7A:33:4C:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tjC3O1HLxTgN1K2z1ar_TXozTF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/sauoWIGxO8DT72xoXUQWIJJ23tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/tjC3O1HLxTgN1K2z1ar_TXozTF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.52.0/24
91.194.54.0/24
185.82.220.0/22
185.201.212.0/22
IPv6:
2a0a:c4c0::/47
Signature Algorithm: sha256WithRSAEncryption
2d:fa:bc:df:18:86:89:17:6b:2a:13:1a:23:33:ed:62:38:39:
4b:50:2c:01:e1:ae:ea:5a:d2:3f:53:56:ad:12:05:4e:58:f4:
75:38:4e:5a:29:7b:9b:b7:ae:13:06:26:f3:76:d5:27:4e:72:
c9:c2:b9:81:4c:b3:13:22:61:04:3b:b4:34:80:cf:97:9f:16:
44:0a:24:ab:ca:ab:24:f7:36:b2:b6:29:44:f0:c3:61:e6:fd:
3a:3c:db:cf:82:0c:25:bc:e6:f0:65:53:a1:c9:50:a2:c5:c4:
e9:e2:84:6b:2c:b0:15:77:5b:d4:db:2f:c1:89:f2:aa:49:24:
33:b3:85:96:ca:88:f2:0f:c2:b5:d9:ef:c2:c5:db:82:c5:ff:
67:0d:07:7d:3a:18:18:3f:52:a4:f1:56:3d:9a:e3:fa:c7:db:
42:c0:2d:73:46:2a:66:f2:96:52:3a:00:bc:a7:d5:de:13:0a:
b6:a5:7e:b8:d1:0c:27:05:b2:b1:67:a0:d4:54:b5:e8:17:8a:
9f:2b:ef:f7:9f:ce:b7:8d:70:f1:9f:a2:bd:ee:a0:9f:52:2b:
84:c7:89:1d:d0:e2:46:f1:01:1f:9c:cb:b8:5e:8e:ac:d5:20:
5b:8e:11:0a:16:ae:5c:bc:f6:40:9d:d8:1d:d1:cc:8c:05:9c:
b4:7c:70:cc
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAYwVDBGI3Gfgdp0ee4+yG4U8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2MzBiNzNiNTFjYmM1MzgwZGQ0YWRiM2Q1YWFmZjRkN2Ez
MzRjNWUwHhcNMjMxMTI4MDgyOTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWFiYTg1ODgxYjEzYmMwZDNlZjZjNjg1ZDQ0MTYyMDkyNzZkZWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyQOSiupWtpyYaiU3cDXx8Z9Ccyy
zqgoD8Nitk43Qw2G5tEP3SuqF1jOz355LSb1D8fYDS5ekJJoJTt151ePnUOVeXm9
XtWFYWRba06A0X8WZ0FJXCDjfwDNUcG7+FJ70a+1R0X76EfDW+3BrecJA35+sIBV
Hzs8C1ONlzY5IaK46tju626tVmHrnkzXmLQSBLFC/WkU8weLt3/Iu0Edhbo8Xqb7
j9P2h9haHRS4M/X5s2ywoURwE5X2eHyzfsisLX+AoHn6Gyf9oFimfbr65drHjgpC
636p+/gRwYt7ZkapOEEDo5HrrzDGuA91M2eFt4K9JHTfCpa2btFzK2E5VwIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFLGrqFiBsTvA0+9saF1EFiCSdt7SMB8GA1UdIwQY
MBaAFLYwtztRy8U4DdSts9Wq/016M0xeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGpDM08xSEx4VGdOMUsyejFhcl9UWG96VEY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC80NzQ4YzctY2Q5ZS00MDFlLWE4YTQt
MGQ0OGU2ODk1ZjEyLzEvc2F1b1dJR3hPOERUNzJ4b1hVUVdJSkoyM3RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC80NzQ4YzctY2Q5ZS00MDFlLWE4YTQtMGQ0OGU2ODk1ZjEy
LzEvdGpDM08xSEx4VGdOMUsyejFhcl9UWG96VEY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQAW8I0AwQA
W8I2AwQCuVLcAwQCucnUMA8EAgACMAkDBwEqCsTAAAAwDQYJKoZIhvcNAQELBQAD
ggEBAC36vN8YhokXayoTGiMz7WI4OUtQLAHhrupa0j9TVq0SBU5Y9HU4Tlope5u3
rhMGJvN21SdOcsnCuYFMsxMiYQQ7tDSAz5efFkQKJKvKqyT3NrK2KUTww2Hm/To8
28+CDCW85vBlU6HJUKLFxOnihGsssBV3W9TbL8GJ8qpJJDOzhZbKiPIPwrXZ78LF
24LF/2cNB306GBg/UqTxVj2a4/rH20LALXNGKmbyllI6ALyn1d4TCralfrjRDCcF
srFnoNRUtegXip8r7/efzreNcPGfor3uoJ9SK4THiR3Q4kbxAR+cy7hejqzVIFuO
EQoWrly89kCd2B3RzIwFnLR8cMw=
Generated at Mon Jan 1 09:18:19 2024 by rpki-client on console.sobornost.net