Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/bBlHhe2OA30NzjZMaqL76hAe3vs.roa
File: bBlHhe2OA30NzjZMaqL76hAe3vs.roa (raw, json)
Hash identifier: o8PqxXnsqzvbWvl1gCByIALKhGbs+JbMt2eXA/D65k8=
Subject key identifier: 6C:19:47:85:ED:8E:03:7D:0D:CE:36:4C:6A:A2:FB:EA:10:1E:DE:FB
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01890C9375E623F097BA650E0BD2C8B1792B
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/bBlHhe2OA30NzjZMaqL76hAe3vs.roa
Signing time: Fri 30 Jun 2023 13:52:17 +0000
ROA not before: Fri 30 Jun 2023 13:52:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 81.29.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0c:93:75:e6:23:f0:97:ba:65:0e:0b:d2:c8:b1:79:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jun 30 13:52:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c194785ed8e037d0dce364c6aa2fbea101edefb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a8:04:2e:c5:78:36:27:19:cb:7a:91:3b:89:
0f:95:7d:b7:fa:41:4a:ea:64:74:39:22:c1:c7:cf:
df:63:dc:1c:5c:d9:24:7e:b4:99:98:4e:31:2b:14:
99:3e:b6:40:84:7d:45:d2:77:5f:18:dd:6a:74:44:
f0:c4:f1:d0:24:1c:8f:d4:e3:6c:ac:b2:aa:f3:2d:
eb:82:2a:81:1d:ef:83:1f:91:62:cf:d7:47:25:a3:
33:f2:d2:7b:ee:6a:1e:d5:34:19:6c:36:99:0d:fa:
65:cd:fb:b2:2d:5f:2f:cd:9f:53:e2:75:02:bc:96:
88:e7:14:ec:83:0a:c6:d8:a1:f8:28:37:e9:8b:9c:
9b:fa:36:38:dc:44:b2:58:a2:fe:1c:bd:4b:07:8b:
8e:9c:7c:af:d2:32:cb:b0:84:3e:31:4b:62:ae:f3:
d3:16:7d:63:70:4e:20:15:19:b3:35:64:75:5e:45:
ee:c2:1d:d8:79:1a:e1:8d:56:64:93:ad:53:71:e3:
a4:f4:fc:41:07:1c:58:31:cc:9c:1d:2c:4f:99:3c:
e3:2e:4f:45:22:07:73:42:17:60:16:31:c0:b9:91:
43:28:1e:7a:36:18:be:47:35:42:33:70:df:d8:4f:
45:98:d5:49:82:1b:9d:dc:74:a7:e6:90:94:f1:ee:
f7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:19:47:85:ED:8E:03:7D:0D:CE:36:4C:6A:A2:FB:EA:10:1E:DE:FB
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/bBlHhe2OA30NzjZMaqL76hAe3vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.155.0/24
Signature Algorithm: sha256WithRSAEncryption
76:8f:b9:3f:d8:f6:6a:1e:67:35:ea:a9:9b:fa:6b:9c:04:87:
6a:3f:cd:01:a5:f7:58:72:fe:73:f4:12:38:a0:ba:ea:51:79:
56:a5:a4:88:b7:f7:c7:d1:63:7d:dd:e7:19:99:75:fd:4a:b6:
d3:5b:58:26:30:95:5a:44:89:cc:46:86:f3:ab:ba:d6:f5:ea:
b4:96:24:68:4c:f7:6b:95:78:20:33:ce:c4:99:17:4f:3e:81:
ce:4e:89:da:e6:c7:84:66:64:0e:b3:93:e7:ff:d9:f2:45:13:
a4:32:e1:f3:0e:16:cf:71:60:08:6b:5b:a2:d8:a7:ef:c0:48:
48:45:9c:ab:3a:62:a8:ca:28:f0:72:52:23:7f:0d:94:20:0d:
c0:4d:9f:81:96:22:9e:82:33:c1:f4:94:ab:23:b9:15:95:aa:
65:42:34:92:aa:41:c1:0e:d9:84:92:8e:97:f4:b4:8b:55:e4:
12:8e:73:00:e7:4e:c2:7a:6d:56:6f:c6:4e:30:ee:08:15:c7:
52:bd:0a:97:94:a1:8c:0e:42:de:1c:df:a4:ce:27:64:a3:0f:
ed:f2:9a:ad:e7:0b:eb:bb:25:57:b9:6e:64:0c:c7:75:ca:1a:
29:ad:0b:30:98:c2:50:01:cf:97:13:d6:f0:1c:2f:0d:07:30:
e1:52:10:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYkMk3XmI/CXumUOC9LIsXkrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwNjMwMTM1MjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzE5NDc4NWVkOGUwMzdkMGRjZTM2NGM2YWEyZmJlYTEwMWVkZWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkagELsV4NicZy3qRO4kPlX23+kFK
6mR0OSLBx8/fY9wcXNkkfrSZmE4xKxSZPrZAhH1F0ndfGN1qdETwxPHQJByP1ONs
rLKq8y3rgiqBHe+DH5Fiz9dHJaMz8tJ77moe1TQZbDaZDfplzfuyLV8vzZ9T4nUC
vJaI5xTsgwrG2KH4KDfpi5yb+jY43ESyWKL+HL1LB4uOnHyv0jLLsIQ+MUtirvPT
Fn1jcE4gFRmzNWR1XkXuwh3YeRrhjVZkk61TceOk9PxBBxxYMcycHSxPmTzjLk9F
IgdzQhdgFjHAuZFDKB56Nhi+RzVCM3Df2E9FmNVJghud3HSn5pCU8e73DwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGwZR4XtjgN9Dc42TGqi++oQHt77MB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvYkJsSGhlMk9BMzBOempaTWFxTDc2aEFlM3ZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2bMA0G
CSqGSIb3DQEBCwUAA4IBAQB2j7k/2PZqHmc16qmb+mucBIdqP80BpfdYcv5z9BI4
oLrqUXlWpaSIt/fH0WN93ecZmXX9SrbTW1gmMJVaRInMRobzq7rW9eq0liRoTPdr
lXggM87EmRdPPoHOTona5seEZmQOs5Pn/9nyRROkMuHzDhbPcWAIa1ui2KfvwEhI
RZyrOmKoyijwclIjfw2UIA3ATZ+BliKegjPB9JSrI7kVlaplQjSSqkHBDtmEko6X
9LSLVeQSjnMA507Cem1Wb8ZOMO4IFcdSvQqXlKGMDkLeHN+kzidkow/t8pqt5wvr
uyVXuW5kDMd1yhoprQswmMJQAc+XE9bwHC8NBzDhUhA1
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net