Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/TK5v003sOc8cQzOxwY5XEvJP1k8.roa
File: TK5v003sOc8cQzOxwY5XEvJP1k8.roa (raw, json)
Hash identifier: oX4HZSNRwbGAiGXyhjCjypM8a+GDugFPZPtoR+TSXoM=
Subject key identifier: 4C:AE:6F:D3:4D:EC:39:CF:1C:43:33:B1:C1:8E:57:12:F2:4F:D6:4F
Certificate issuer: /CN=c0fec178763a701e2211672e2e36e6d527f41f3d
Certificate serial: 01856E1429207839C799443A6D7722B6E9B1
Authority key identifier: C0:FE:C1:78:76:3A:70:1E:22:11:67:2E:2E:36:E6:D5:27:F4:1F:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wP7BeHY6cB4iEWcuLjbm1Sf0Hz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/TK5v003sOc8cQzOxwY5XEvJP1k8.roa
Signing time: Sun 01 Jan 2023 16:04:53 +0000
ROA not before: Sun 01 Jan 2023 16:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41000
IP address blocks: 176.124.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:29:20:78:39:c7:99:44:3a:6d:77:22:b6:e9:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0fec178763a701e2211672e2e36e6d527f41f3d
Validity
Not Before: Jan 1 16:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cae6fd34dec39cf1c4333b1c18e5712f24fd64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:90:30:f8:a8:f5:9b:53:7e:b6:bf:e8:4f:72:
d9:02:6f:5e:9b:0f:28:94:57:13:63:f9:a2:06:93:
77:89:94:07:7b:c3:6a:45:58:cc:32:a8:7e:7a:70:
10:52:d9:a1:a8:40:54:1d:12:38:fa:77:c2:bd:31:
49:69:a2:83:e2:96:91:ff:58:78:42:2c:13:ad:a7:
58:39:e1:63:a2:7b:2b:7d:80:20:65:d0:0d:c4:90:
2c:87:60:57:d6:23:62:27:c9:9f:13:8b:76:4e:0d:
35:3c:a2:ff:3f:4a:33:cc:16:e2:fa:45:39:5a:e8:
6f:3f:da:6a:cd:b9:72:3e:33:d8:8a:2c:f1:83:a6:
00:9c:09:94:6b:c5:20:ac:4b:bf:85:ef:83:bb:bb:
3a:c0:15:40:f5:37:2d:e8:c5:02:80:b0:d1:34:b9:
55:5c:fd:96:5c:d1:ed:0e:cc:b4:e9:49:37:d6:54:
e8:bc:26:fb:78:dc:78:15:f6:11:47:e7:3e:01:d3:
99:6e:70:7b:dc:cb:af:08:34:58:5b:3b:2e:bf:bd:
64:a7:5b:a5:6d:74:5b:3d:c1:08:fd:fd:43:aa:a3:
01:86:09:cb:19:ff:e7:60:5a:08:92:76:ec:cc:f2:
34:dd:8f:ea:ea:54:ce:df:f1:b9:f8:c6:bb:86:2c:
fe:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AE:6F:D3:4D:EC:39:CF:1C:43:33:B1:C1:8E:57:12:F2:4F:D6:4F
X509v3 Authority Key Identifier:
keyid:C0:FE:C1:78:76:3A:70:1E:22:11:67:2E:2E:36:E6:D5:27:F4:1F:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wP7BeHY6cB4iEWcuLjbm1Sf0Hz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/TK5v003sOc8cQzOxwY5XEvJP1k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/492e56-0bae-461a-8f65-0390ed7732a5/1/wP7BeHY6cB4iEWcuLjbm1Sf0Hz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.70.0/24
Signature Algorithm: sha256WithRSAEncryption
86:22:56:b1:cf:59:d4:3f:54:8a:38:08:5b:2b:eb:14:2b:0e:
1f:2f:f1:e1:b9:79:0b:39:2b:71:6a:cc:3b:e5:e6:8d:b1:b4:
66:c7:43:12:14:0a:14:c5:0e:84:c7:79:d5:b3:aa:38:03:a5:
2f:2f:7e:f7:3a:79:89:04:0d:80:71:e1:b6:42:8b:1c:a1:3d:
ba:2a:b8:48:44:5b:65:05:c3:ac:c8:ec:ef:b3:51:46:ce:f4:
38:11:4c:6a:ec:01:a3:b1:ba:96:a0:4a:35:26:92:a7:04:e0:
82:cc:2b:71:4e:aa:1d:ca:8a:6c:93:b2:5d:fa:b3:f8:3e:f3:
ae:02:50:95:f2:2c:4e:0a:c7:49:bb:89:b0:54:35:7a:39:8b:
06:db:be:63:4f:63:55:eb:0a:43:17:41:64:4c:c2:42:ae:bc:
ea:60:17:75:f7:3b:73:5d:f1:70:73:8d:b8:d4:5e:fb:1f:ec:
83:e6:c9:28:9c:06:30:57:ee:80:f1:bb:61:d7:ae:ed:60:10:
14:ec:da:74:1b:fe:f6:a8:5c:67:71:a5:7c:94:5b:3d:33:00:
87:ea:35:65:35:bf:cd:91:2d:8f:8f:23:80:85:e7:b1:54:eb:
36:a3:23:d7:0e:5e:96:38:ba:86:85:5b:6a:de:17:ed:d0:fe:
58:9b:d4:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuFCkgeDnHmUQ6bXcitumxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwZmVjMTc4NzYzYTcwMWUyMjExNjcyZTJlMzZlNmQ1Mjdm
NDFmM2QwHhcNMjMwMTAxMTYwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2FlNmZkMzRkZWMzOWNmMWM0MzMzYjFjMThlNTcxMmYyNGZkNjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg5Aw+Kj1m1N+tr/oT3LZAm9emw8o
lFcTY/miBpN3iZQHe8NqRVjMMqh+enAQUtmhqEBUHRI4+nfCvTFJaaKD4paR/1h4
QiwTradYOeFjonsrfYAgZdANxJAsh2BX1iNiJ8mfE4t2Tg01PKL/P0ozzBbi+kU5
WuhvP9pqzblyPjPYiizxg6YAnAmUa8UgrEu/he+Du7s6wBVA9Tct6MUCgLDRNLlV
XP2WXNHtDsy06Uk31lTovCb7eNx4FfYRR+c+AdOZbnB73MuvCDRYWzsuv71kp1ul
bXRbPcEI/f1DqqMBhgnLGf/nYFoIknbszPI03Y/q6lTO3/G5+Ma7hiz+WwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEyub9NN7DnPHEMzscGOVxLyT9ZPMB8GA1UdIwQY
MBaAFMD+wXh2OnAeIhFnLi425tUn9B89MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1A3QmVIWTZjQjRpRVdjdUxqYm0xU2YwSHowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi80OTJlNTYtMGJhZS00NjFhLThmNjUt
MDM5MGVkNzczMmE1LzEvVEs1djAwM3NPYzhjUXpPeHdZNVhFdkpQMWs4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi80OTJlNTYtMGJhZS00NjFhLThmNjUtMDM5MGVkNzczMmE1
LzEvd1A3QmVIWTZjQjRpRVdjdUxqYm0xU2YwSHowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHxGMA0G
CSqGSIb3DQEBCwUAA4IBAQCGIlaxz1nUP1SKOAhbK+sUKw4fL/HhuXkLOStxasw7
5eaNsbRmx0MSFAoUxQ6Ex3nVs6o4A6UvL373OnmJBA2AceG2QoscoT26KrhIRFtl
BcOsyOzvs1FGzvQ4EUxq7AGjsbqWoEo1JpKnBOCCzCtxTqodyopsk7Jd+rP4PvOu
AlCV8ixOCsdJu4mwVDV6OYsG275jT2NV6wpDF0FkTMJCrrzqYBd19ztzXfFwc424
1F77H+yD5skonAYwV+6A8bth167tYBAU7Np0G/72qFxncaV8lFs9MwCH6jVlNb/N
kS2PjyOAheexVOs2oyPXDl6WOLqGhVtq3hft0P5Ym9Rv
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:42 2024 by rpki-client on console.sobornost.net