Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/uPMiJ7U1zHzeAYGP0dL225H_SSM.roa
File: uPMiJ7U1zHzeAYGP0dL225H_SSM.roa (raw, json)
Hash identifier: mnyn3B3sKejtXdHQUHIU64KHIjlwR+00WFQbPLK1cOs=
Subject key identifier: B8:F3:22:27:B5:35:CC:7C:DE:01:81:8F:D1:D2:F6:DB:91:FF:49:23
Certificate issuer: /CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Certificate serial: 018573B16C9AFC8D451C89B1FB6B6DA83840
Authority key identifier: 82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/uPMiJ7U1zHzeAYGP0dL225H_SSM.roa
Signing time: Mon 02 Jan 2023 18:14:45 +0000
ROA not before: Mon 02 Jan 2023 18:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210043
IP address blocks: 155.140.82.0/24 maxlen: 24
155.140.91.0/24 maxlen: 24
159.50.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:6c:9a:fc:8d:45:1c:89:b1:fb:6b:6d:a8:38:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Validity
Not Before: Jan 2 18:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8f32227b535cc7cde01818fd1d2f6db91ff4923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c5:2a:74:8d:07:c6:16:7b:bf:fd:d4:08:b1:
a2:07:fb:fe:8e:41:32:74:17:8b:b9:1b:d4:b0:f0:
46:7e:55:4f:2f:38:e7:50:ca:29:43:24:96:80:ab:
f4:68:15:c2:b3:d0:75:75:fd:f0:0a:69:e3:11:1c:
86:79:8d:1e:54:13:e1:0b:b3:97:ca:4e:d8:40:b2:
92:7e:40:79:4e:0a:e7:d1:c1:5a:9f:db:18:19:a4:
d6:1a:bc:de:10:cd:e3:cf:53:a3:f8:6f:45:32:26:
f7:77:71:30:34:e5:91:fa:b2:03:83:83:db:1a:73:
dc:ff:05:ab:01:eb:22:84:66:7f:3c:06:c0:46:0d:
e6:30:17:00:c1:b6:ac:7d:ce:13:78:c6:30:7a:53:
c2:4b:ce:f0:5e:a4:c8:8b:b0:8b:d9:40:d8:b2:3f:
1f:a7:ce:18:d4:cb:ea:3a:5d:40:bb:99:5d:82:ec:
39:0a:91:ca:7b:6c:16:25:15:f1:55:2b:73:a5:1c:
c8:75:ee:68:29:3a:b6:9c:d6:2e:48:34:e5:1e:7d:
fc:50:f5:8b:a6:f1:26:d9:c7:17:52:99:cf:80:85:
ae:d5:5a:25:5e:1a:f5:ec:20:d1:55:21:dd:d6:48:
8e:4a:a9:f9:4e:02:66:75:a7:31:ee:82:f4:69:df:
d1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F3:22:27:B5:35:CC:7C:DE:01:81:8F:D1:D2:F6:DB:91:FF:49:23
X509v3 Authority Key Identifier:
keyid:82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/uPMiJ7U1zHzeAYGP0dL225H_SSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/gvolsvyxRoEUtziSirINh2G_iDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.140.82.0/24
155.140.91.0/24
159.50.174.0/24
Signature Algorithm: sha256WithRSAEncryption
06:16:0a:10:9a:6f:e2:30:7f:23:d6:49:e3:b5:94:ce:5b:3f:
f2:28:be:07:f0:32:2e:49:dc:46:40:4c:01:12:9d:89:c7:73:
87:16:8e:f2:05:bf:84:29:40:e5:3f:7c:cf:da:5b:62:3a:d9:
12:f5:c7:7e:5d:96:b4:20:c6:a4:96:cf:52:62:da:63:ac:2d:
d6:21:b5:ad:12:e3:c9:7b:dc:07:54:68:71:a4:7f:3f:d8:1b:
d1:d1:b8:ad:1c:04:9f:94:ba:a7:f7:76:e9:25:6e:1f:21:53:
4b:d2:0d:69:5c:2f:9a:99:e4:9d:25:fd:e9:bb:3e:c4:37:8a:
52:cd:97:5b:ea:f3:2c:7d:f3:a6:b8:49:a2:f0:0f:73:fd:e3:
bd:74:5a:3e:59:bf:6e:dd:46:dc:13:77:34:c4:b8:d0:64:94:
ac:c5:db:cb:9e:4f:12:c4:a4:bc:35:ad:ec:33:dc:5c:8d:ea:
59:07:53:80:11:a1:e7:ce:5e:d2:b8:d0:07:50:ca:2d:68:fd:
95:e6:fa:26:68:79:bf:73:d0:78:14:e8:d4:7a:6e:e0:de:0a:
6e:72:3d:b4:23:ba:77:a2:f3:2d:f8:4f:41:8a:9f:73:65:9f:
b1:9c:fe:fc:23:24:67:72:1e:39:14:65:07:a7:a3:b2:60:34:
75:27:bd:96
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVzsWya/I1FHImx+2ttqDhAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZmEyNWIyZmNiMTQ2ODExNGI3Mzg5MjhhYjIwZDg3NjFi
Zjg4MzEwHhcNMjMwMTAyMTgxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGYzMjIyN2I1MzVjYzdjZGUwMTgxOGZkMWQyZjZkYjkxZmY0OTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycUqdI0HxhZ7v/3UCLGiB/v+jkEy
dBeLuRvUsPBGflVPLzjnUMopQySWgKv0aBXCs9B1df3wCmnjERyGeY0eVBPhC7OX
yk7YQLKSfkB5Tgrn0cFan9sYGaTWGrzeEM3jz1Oj+G9FMib3d3EwNOWR+rIDg4Pb
GnPc/wWrAesihGZ/PAbARg3mMBcAwbasfc4TeMYwelPCS87wXqTIi7CL2UDYsj8f
p84Y1MvqOl1Au5ldguw5CpHKe2wWJRXxVStzpRzIde5oKTq2nNYuSDTlHn38UPWL
pvEm2ccXUpnPgIWu1VolXhr17CDRVSHd1kiOSqn5TgJmdacx7oL0ad/RZwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLjzIie1Ncx83gGBj9HS9tuR/0kjMB8GA1UdIwQY
MBaAFIL6JbL8sUaBFLc4koqyDYdhv4gxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3ZvbHN2eXhSb0VVdHppU2lySU5oMkdfaURFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8xMzcxYTYtZjVmMy00M2JmLWFmZjQt
NzY4NWM5NjcwMDE3LzEvdVBNaUo3VTF6SHplQVlHUDBkTDIyNUhfU1NNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8xMzcxYTYtZjVmMy00M2JmLWFmZjQtNzY4NWM5NjcwMDE3
LzEvZ3ZvbHN2eXhSb0VVdHppU2lySU5oMkdfaURFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAm4xSAwQA
m4xbAwQAnzKuMA0GCSqGSIb3DQEBCwUAA4IBAQAGFgoQmm/iMH8j1knjtZTOWz/y
KL4H8DIuSdxGQEwBEp2Jx3OHFo7yBb+EKUDlP3zP2ltiOtkS9cd+XZa0IMakls9S
YtpjrC3WIbWtEuPJe9wHVGhxpH8/2BvR0bitHASflLqn93bpJW4fIVNL0g1pXC+a
meSdJf3puz7EN4pSzZdb6vMsffOmuEmi8A9z/eO9dFo+Wb9u3UbcE3c0xLjQZJSs
xdvLnk8SxKS8Na3sM9xcjepZB1OAEaHnzl7SuNAHUMotaP2V5vomaHm/c9B4FOjU
em7g3gpucj20I7p3ovMt+E9Bip9zZZ+xnP78IyRnch45FGUHp6OyYDR1J72W
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net