Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/2zgO8b-8MLIVg7CBTLY71nkBvlE.roa
File: 2zgO8b-8MLIVg7CBTLY71nkBvlE.roa (raw, json)
Hash identifier: CHDm+0EoCjfKGhQYQi5cNwtPTALXk0xnEQNDzRWA4eY=
Subject key identifier: DB:38:0E:F1:BF:BC:30:B2:15:83:B0:81:4C:B6:3B:D6:79:01:BE:51
Certificate issuer: /CN=80a333d13dc915f4fbfb61b25a4877e9138e7f1d
Certificate serial: 01857355F9B628D0DB84B2F5D6870BE417F2
Authority key identifier: 80:A3:33:D1:3D:C9:15:F4:FB:FB:61:B2:5A:48:77:E9:13:8E:7F:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/2zgO8b-8MLIVg7CBTLY71nkBvlE.roa
Signing time: Mon 02 Jan 2023 16:34:52 +0000
ROA not before: Mon 02 Jan 2023 16:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209123
IP address blocks: 2.58.88.0/22 maxlen: 24
2a09:e340::/29 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:f9:b6:28:d0:db:84:b2:f5:d6:87:0b:e4:17:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a333d13dc915f4fbfb61b25a4877e9138e7f1d
Validity
Not Before: Jan 2 16:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db380ef1bfbc30b21583b0814cb63bd67901be51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e3:2c:5e:cc:23:e6:ea:f7:8c:60:03:96:06:
bf:80:c7:a6:88:35:da:70:36:9b:2a:f8:91:6b:97:
c8:e3:e3:d5:34:78:68:3f:c7:58:7b:5a:4b:17:62:
da:5e:76:d5:f6:87:ee:9d:af:af:cc:b4:48:9f:42:
f7:a0:6f:a5:28:24:9d:42:2f:e0:66:c0:f7:28:6e:
dc:89:0f:1d:5c:cc:f1:2f:e0:6d:7b:6f:66:61:bf:
de:05:f7:7e:82:92:0b:b4:79:5b:6f:a1:0e:13:b8:
d6:55:06:50:a9:5e:42:18:dc:26:0d:69:ff:e6:3d:
f5:b6:70:9c:03:dc:e7:69:29:b9:0e:38:53:f4:fa:
c2:fd:dd:79:b6:1f:34:b7:61:90:84:71:fd:0f:3c:
36:7c:93:62:4a:1f:36:e7:1d:f0:33:ac:bc:8e:52:
2f:64:7f:e8:09:d6:91:7b:aa:ad:f3:5e:01:e2:f1:
53:06:ba:76:bd:30:5a:1c:49:5c:4d:a7:e8:3b:5a:
1f:23:2c:bd:22:da:56:4b:10:de:0b:2f:66:a3:ac:
b0:27:c6:12:b1:29:ff:e2:16:81:3d:f1:ef:08:01:
bf:dd:37:a0:f8:aa:18:2f:75:51:64:48:3f:0f:a1:
d6:5f:8a:6e:ac:25:fd:49:0a:b9:41:a4:1b:e8:ec:
44:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:38:0E:F1:BF:BC:30:B2:15:83:B0:81:4C:B6:3B:D6:79:01:BE:51
X509v3 Authority Key Identifier:
keyid:80:A3:33:D1:3D:C9:15:F4:FB:FB:61:B2:5A:48:77:E9:13:8E:7F:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/2zgO8b-8MLIVg7CBTLY71nkBvlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.88.0/22
IPv6:
2a09:e340::/29
Signature Algorithm: sha256WithRSAEncryption
45:d4:7f:8b:7f:e4:95:b9:6a:8d:58:c7:db:4f:6f:cf:39:d0:
05:38:47:13:9f:3f:47:14:6f:31:3e:6f:36:1b:e7:f2:42:f8:
95:86:b1:98:18:92:fe:95:af:09:91:09:ac:5a:76:58:e4:44:
ce:15:22:e9:a0:ba:c5:fd:da:f7:55:b3:f6:88:67:d8:48:21:
21:0d:90:8a:48:8e:2e:0d:2d:b5:4b:36:fd:a8:64:a9:4d:f8:
f4:df:f5:30:2d:a3:e3:3b:a8:28:98:34:0a:ba:76:e7:30:50:
65:81:30:fc:bc:fc:d8:25:7b:92:30:a7:51:01:8a:62:46:24:
5b:96:72:b2:65:82:cf:0c:29:20:bc:78:32:9f:07:c0:d7:55:
b3:dc:57:e5:4d:e2:db:7c:a9:e5:bb:e5:14:fc:49:df:44:46:
71:0f:8a:f2:6b:16:a5:71:e6:b1:08:e8:90:91:40:b4:5f:93:
08:fd:fe:0b:4f:fc:8d:b8:97:d2:ed:a2:cf:37:97:fe:2d:b7:
c9:f2:2c:81:b6:17:2c:0b:52:eb:6d:97:ee:e7:16:7c:ff:d7:
f1:dc:9d:d1:bf:b8:1c:5d:55:61:ac:00:24:f0:1e:b2:50:68:
6c:4e:14:13:8b:09:4d:1f:2a:34:a0:c3:29:a7:91:22:50:8c:
64:21:8e:7b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVzVfm2KNDbhLL11ocL5BfyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYTMzM2QxM2RjOTE1ZjRmYmZiNjFiMjVhNDg3N2U5MTM4
ZTdmMWQwHhcNMjMwMTAyMTYzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjM4MGVmMWJmYmMzMGIyMTU4M2IwODE0Y2I2M2JkNjc5MDFiZTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeMsXswj5ur3jGADlga/gMemiDXa
cDabKviRa5fI4+PVNHhoP8dYe1pLF2LaXnbV9ofuna+vzLRIn0L3oG+lKCSdQi/g
ZsD3KG7ciQ8dXMzxL+Bte29mYb/eBfd+gpILtHlbb6EOE7jWVQZQqV5CGNwmDWn/
5j31tnCcA9znaSm5DjhT9PrC/d15th80t2GQhHH9Dzw2fJNiSh825x3wM6y8jlIv
ZH/oCdaRe6qt814B4vFTBrp2vTBaHElcTafoO1ofIyy9ItpWSxDeCy9mo6ywJ8YS
sSn/4haBPfHvCAG/3Teg+KoYL3VRZEg/D6HWX4purCX9SQq5QaQb6OxEdwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNs4DvG/vDCyFYOwgUy2O9Z5Ab5RMB8GA1UdIwQY
MBaAFICjM9E9yRX0+/thslpId+kTjn8dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0tNejBUM0pGZlQ3LTJHeVdraDM2Uk9PZngwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8xMzliMzgtNWIyNC00MDdkLWIxN2Ut
NGNhMzU0MzBkY2EzLzEvMnpnTzhiLThNTElWZzdDQlRMWTcxbmtCdmxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8xMzliMzgtNWIyNC00MDdkLWIxN2UtNGNhMzU0MzBkY2Ez
LzEvZ0tNejBUM0pGZlQ3LTJHeVdraDM2Uk9PZngwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCAjpYMA0E
AgACMAcDBQMqCeNAMA0GCSqGSIb3DQEBCwUAA4IBAQBF1H+Lf+SVuWqNWMfbT2/P
OdAFOEcTnz9HFG8xPm82G+fyQviVhrGYGJL+la8JkQmsWnZY5ETOFSLpoLrF/dr3
VbP2iGfYSCEhDZCKSI4uDS21Szb9qGSpTfj03/UwLaPjO6gomDQKunbnMFBlgTD8
vPzYJXuSMKdRAYpiRiRblnKyZYLPDCkgvHgynwfA11Wz3FflTeLbfKnlu+UU/Enf
REZxD4ryaxalceaxCOiQkUC0X5MI/f4LT/yNuJfS7aLPN5f+LbfJ8iyBthcsC1Lr
bZfu5xZ8/9fx3J3Rv7gcXVVhrAAk8B6yUGhsThQTiwlNHyo0oMMpp5EiUIxkIY57
-----END CERTIFICATE-----
Generated at Tue Jan 2 16:36:28 2024 by rpki-client on console.sobornost.net