Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/7wovICcwvec-XZVLkuLdBs3Ku5E.roa
File: 7wovICcwvec-XZVLkuLdBs3Ku5E.roa (raw, json)
Hash identifier: mjcvGxnoZzk1XSyzH8CIFBwzSLd7rz2G9O5Cx8aE4iY=
Subject key identifier: EF:0A:2F:20:27:30:BD:E7:3E:5D:95:4B:92:E2:DD:06:CD:CA:BB:91
Certificate issuer: /CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Certificate serial: 01856F54ACB1DBB39DCA7430A3E722D5313F
Authority key identifier: 2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/7wovICcwvec-XZVLkuLdBs3Ku5E.roa
Signing time: Sun 01 Jan 2023 21:54:58 +0000
ROA not before: Sun 01 Jan 2023 21:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57132
IP address blocks: 193.22.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ac:b1:db:b3:9d:ca:74:30:a3:e7:22:d5:31:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Validity
Not Before: Jan 1 21:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef0a2f202730bde73e5d954b92e2dd06cdcabb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:42:2f:05:73:25:e7:c8:8c:74:fc:84:bb:4a:
4e:66:87:87:a9:b1:31:37:e0:97:e6:48:f2:b5:45:
d4:59:fb:d6:b9:24:73:9e:0c:cd:11:25:f0:ee:c2:
6a:4b:04:e3:94:1a:ba:cb:80:82:06:82:0c:08:ac:
a7:01:97:7f:6e:06:31:e9:f3:21:4f:6c:fe:e2:c2:
9d:b7:83:0e:ef:7b:51:a4:ef:fb:c6:5c:7f:ab:0e:
48:0c:b5:96:c0:12:17:dc:2b:cf:73:cb:0d:08:85:
6a:c7:b7:ca:21:62:04:73:0b:63:e7:e6:60:f8:33:
97:21:0d:95:a7:8f:ed:11:a6:35:ee:a5:6e:8d:bb:
5f:96:c8:4d:c7:87:7e:89:3b:33:21:4c:63:7f:d8:
b6:34:57:a4:83:9b:0b:7d:81:6c:20:ea:d0:c7:2c:
91:3f:26:dd:20:3c:fb:76:67:9c:cd:d5:da:8c:0e:
23:8b:fb:0b:3c:e7:ed:10:bb:49:b0:74:96:c4:b3:
26:16:a5:25:f7:e5:f3:54:0d:47:de:00:c2:99:43:
b2:8b:5d:75:8d:6a:f5:83:49:8d:fe:95:63:0d:f1:
e5:a3:21:ae:56:2f:c4:11:80:71:fd:9c:c5:12:e6:
21:a5:ff:8d:08:21:8e:e7:9e:5b:d6:68:9e:05:31:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0A:2F:20:27:30:BD:E7:3E:5D:95:4B:92:E2:DD:06:CD:CA:BB:91
X509v3 Authority Key Identifier:
keyid:2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/7wovICcwvec-XZVLkuLdBs3Ku5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:6e:22:27:ba:24:04:a6:e8:12:73:46:f5:8f:20:d1:ca:76:
5a:af:27:e9:dd:92:8a:0a:28:7c:43:8d:95:60:59:f6:a8:09:
88:32:cd:8b:ae:5d:08:89:9d:e2:aa:b8:4d:e7:26:f5:8f:65:
7d:5a:57:f5:1b:45:e6:34:0a:c4:ee:60:01:29:5c:05:00:b8:
c3:fe:fb:ed:a5:e6:5c:df:c9:dd:19:d9:00:22:ed:c6:0f:ff:
39:a4:fb:d2:18:ec:02:53:28:a6:2c:d4:5c:8b:72:09:74:0c:
f2:2e:60:6d:c7:c1:43:bc:b6:97:81:15:80:cb:58:be:0d:5d:
0d:15:9d:4d:28:37:35:d1:e2:df:df:dd:77:0c:5f:19:90:bd:
42:dc:49:30:aa:12:ee:86:28:33:92:6e:c8:5e:00:a3:03:75:
f2:84:9a:5d:d6:ce:6d:1f:c1:bd:34:f5:d7:cc:45:9b:45:a2:
7c:f3:4e:3a:cd:8c:fc:54:26:3a:1f:0d:da:e0:6c:dc:f7:66:
04:4f:f1:11:3e:09:d1:40:b4:e2:50:c0:18:96:fb:84:68:b1:
79:ba:8b:f0:19:22:d2:63:28:a8:6f:c6:5f:86:76:c6:44:59:
25:a4:a4:4e:ec:64:b5:19:c0:57:2f:47:ad:71:b7:e2:e1:ec:
12:43:a7:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVKyx27OdynQwo+ci1TE/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhZjBmYjRiOWFkY2IyZWNhMmIxMDZkZTBhODkzOTYxNTk2
Y2NkMTgwHhcNMjMwMTAxMjE1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjBhMmYyMDI3MzBiZGU3M2U1ZDk1NGI5MmUyZGQwNmNkY2FiYjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEIvBXMl58iMdPyEu0pOZoeHqbEx
N+CX5kjytUXUWfvWuSRzngzNESXw7sJqSwTjlBq6y4CCBoIMCKynAZd/bgYx6fMh
T2z+4sKdt4MO73tRpO/7xlx/qw5IDLWWwBIX3CvPc8sNCIVqx7fKIWIEcwtj5+Zg
+DOXIQ2Vp4/tEaY17qVujbtflshNx4d+iTszIUxjf9i2NFekg5sLfYFsIOrQxyyR
PybdIDz7dmeczdXajA4ji/sLPOftELtJsHSWxLMmFqUl9+XzVA1H3gDCmUOyi111
jWr1g0mN/pVjDfHloyGuVi/EEYBx/ZzFEuYhpf+NCCGO555b1mieBTFPkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO8KLyAnML3nPl2VS5Li3QbNyruRMB8GA1UdIwQY
MBaAFCrw+0ua3LLsorEG3gqJOWFZbM0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3ZEN1M1cmNzdXlpc1FiZUNvazVZVmxzelJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8yZWRmNDEtNDhlMC00MGFkLThlN2Mt
NWU5NTRhZjFkODBlLzEvN3dvdklDY3d2ZWMtWFpWTGt1TGRCczNLdTVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8yZWRmNDEtNDhlMC00MGFkLThlN2MtNWU5NTRhZjFkODBl
LzEvS3ZEN1M1cmNzdXlpc1FiZUNvazVZVmxzelJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRZfMA0G
CSqGSIb3DQEBCwUAA4IBAQChbiInuiQEpugSc0b1jyDRynZaryfp3ZKKCih8Q42V
YFn2qAmIMs2Lrl0IiZ3iqrhN5yb1j2V9Wlf1G0XmNArE7mABKVwFALjD/vvtpeZc
38ndGdkAIu3GD/85pPvSGOwCUyimLNRci3IJdAzyLmBtx8FDvLaXgRWAy1i+DV0N
FZ1NKDc10eLf3913DF8ZkL1C3EkwqhLuhigzkm7IXgCjA3XyhJpd1s5tH8G9NPXX
zEWbRaJ88046zYz8VCY6Hw3a4Gzc92YET/ERPgnRQLTiUMAYlvuEaLF5uovwGSLS
Yyiob8ZfhnbGRFklpKRO7GS1GcBXL0etcbfi4ewSQ6cC
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:17 2024 by rpki-client on console.sobornost.net