Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f0ea2c-d27d-4ecf-ba25-1e08dfd235c7/1/o13YE_wzOBGfcv1GUqDgSED5fwA.roa
File: o13YE_wzOBGfcv1GUqDgSED5fwA.roa (raw, json)
Hash identifier: PGIeQyIP7rKP8nnTAOb/j8deH955dQoP2Jb7ezc/i0k=
Subject key identifier: A3:5D:D8:13:FC:33:38:11:9F:72:FD:46:52:A0:E0:48:40:F9:7F:00
Certificate issuer: /CN=5ae4341e23a3315ed4455a545d1a48cef29e7893
Certificate serial: 01856F0B73BAB722966E274328D666DD5809
Authority key identifier: 5A:E4:34:1E:23:A3:31:5E:D4:45:5A:54:5D:1A:48:CE:F2:9E:78:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuQ0HiOjMV7URVpUXRpIzvKeeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f0ea2c-d27d-4ecf-ba25-1e08dfd235c7/1/o13YE_wzOBGfcv1GUqDgSED5fwA.roa
Signing time: Sun 01 Jan 2023 20:34:59 +0000
ROA not before: Sun 01 Jan 2023 20:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206863
IP address blocks: 86.62.40.0/22 maxlen: 24
185.169.136.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:73:ba:b7:22:96:6e:27:43:28:d6:66:dd:58:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4341e23a3315ed4455a545d1a48cef29e7893
Validity
Not Before: Jan 1 20:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a35dd813fc3338119f72fd4652a0e04840f97f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:12:1a:12:5c:4c:f5:a0:8c:af:4e:6a:33:ab:
02:0d:d6:2e:c0:55:c1:ef:f5:69:92:3b:d9:8d:6c:
4b:83:14:ef:4d:5e:4e:fa:de:ee:df:00:e2:46:a7:
b7:c5:16:50:59:24:91:0c:a1:70:64:02:e9:05:c8:
0a:3d:41:48:7e:84:7f:32:8b:1a:6f:a2:33:e3:93:
21:21:ea:55:a3:49:4e:45:be:c7:bd:81:4e:83:08:
bd:83:3e:7c:33:0a:24:8f:36:62:03:4c:43:f4:5b:
eb:b0:e4:c7:96:59:06:fc:5f:77:3f:db:17:17:87:
3e:03:53:23:61:08:fc:79:64:b4:b2:82:a8:2d:94:
35:44:c9:ab:ea:1f:b2:e5:36:9b:fa:72:22:76:db:
31:7a:8a:9d:79:51:63:63:d6:f5:3b:93:16:dd:4f:
9f:0b:db:79:9e:2e:8c:7d:7f:6a:0a:d8:34:a8:bb:
76:75:40:a8:87:5e:ca:fb:28:6b:85:10:e8:8c:45:
9e:20:7c:56:1a:da:73:eb:e7:66:33:a8:e5:ec:25:
eb:18:eb:a0:47:28:b8:97:0b:65:c5:b1:8b:8f:92:
9b:e3:14:6b:38:d2:d8:fa:12:9e:96:ee:14:c5:a0:
99:b0:73:0a:23:ca:b6:2a:83:54:d4:33:e9:06:af:
c9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:5D:D8:13:FC:33:38:11:9F:72:FD:46:52:A0:E0:48:40:F9:7F:00
X509v3 Authority Key Identifier:
keyid:5A:E4:34:1E:23:A3:31:5E:D4:45:5A:54:5D:1A:48:CE:F2:9E:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuQ0HiOjMV7URVpUXRpIzvKeeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f0ea2c-d27d-4ecf-ba25-1e08dfd235c7/1/o13YE_wzOBGfcv1GUqDgSED5fwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f0ea2c-d27d-4ecf-ba25-1e08dfd235c7/1/WuQ0HiOjMV7URVpUXRpIzvKeeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.40.0/22
185.169.136.0/22
Signature Algorithm: sha256WithRSAEncryption
77:44:03:93:eb:07:e8:2a:89:47:11:67:a7:c0:f1:1b:83:90:
0d:85:6c:70:e4:78:f7:b7:9d:bd:de:c7:82:c5:a3:a4:6c:15:
2e:76:ae:eb:d5:1d:aa:6c:53:2e:36:8c:7f:49:4f:54:b1:1d:
7b:e3:0d:11:99:e4:9b:0e:46:87:fa:fd:36:da:7f:14:11:19:
16:fb:1d:b9:3d:87:d4:22:c5:8d:ba:43:20:85:ce:b5:77:4d:
cf:ef:ac:5a:08:60:d6:86:73:ba:8a:9a:ab:f2:5e:e9:e6:fc:
a7:91:ea:e9:c8:a4:53:67:a9:4d:32:20:81:6c:a6:5d:0e:92:
44:5c:5c:ef:d3:49:5c:0d:f5:4d:89:0d:91:7b:db:3b:e7:a1:
32:c6:a1:72:4f:80:88:0c:51:e0:19:e0:79:66:f0:45:07:4e:
e2:c1:21:52:7a:93:58:15:58:a5:42:46:dc:84:48:b4:06:bb:
80:15:1e:af:1a:56:08:a2:56:b8:27:5b:20:49:58:1c:5d:e4:
d7:d7:56:87:35:bd:2d:a5:42:f6:f3:83:3f:db:d7:d9:c8:7d:
d8:a0:c6:af:e4:55:89:2c:55:96:fe:28:d2:be:59:f7:d2:35:
91:f5:c0:1d:bd:df:a6:4c:56:af:6b:f6:d1:b6:ae:15:5c:74:
b6:fe:2c:cb
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVvC3O6tyKWbidDKNZm3VgJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhZTQzNDFlMjNhMzMxNWVkNDQ1NWE1NDVkMWE0OGNlZjI5
ZTc4OTMwHhcNMjMwMTAxMjAzNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzVkZDgxM2ZjMzMzODExOWY3MmZkNDY1MmEwZTA0ODQwZjk3ZjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRIaElxM9aCMr05qM6sCDdYuwFXB
7/VpkjvZjWxLgxTvTV5O+t7u3wDiRqe3xRZQWSSRDKFwZALpBcgKPUFIfoR/Mosa
b6Iz45MhIepVo0lORb7HvYFOgwi9gz58MwokjzZiA0xD9FvrsOTHllkG/F93P9sX
F4c+A1MjYQj8eWS0soKoLZQ1RMmr6h+y5Tab+nIidtsxeoqdeVFjY9b1O5MW3U+f
C9t5ni6MfX9qCtg0qLt2dUCoh17K+yhrhRDojEWeIHxWGtpz6+dmM6jl7CXrGOug
Ryi4lwtlxbGLj5Kb4xRrONLY+hKelu4UxaCZsHMKI8q2KoNU1DPpBq/JVQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKNd2BP8MzgRn3L9RlKg4EhA+X8AMB8GA1UdIwQY
MBaAFFrkNB4jozFe1EVaVF0aSM7ynniTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3VRMEhpT2pNVjdVUlZwVVhScEl6dktlZUpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mMGVhMmMtZDI3ZC00ZWNmLWJhMjUt
MWUwOGRmZDIzNWM3LzEvbzEzWUVfd3pPQkdmY3YxR1VxRGdTRUQ1ZndBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mMGVhMmMtZDI3ZC00ZWNmLWJhMjUtMWUwOGRmZDIzNWM3
LzEvV3VRMEhpT2pNVjdVUlZwVVhScEl6dktlZUpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCVj4oAwQC
uamIMA0GCSqGSIb3DQEBCwUAA4IBAQB3RAOT6wfoKolHEWenwPEbg5ANhWxw5Hj3
t5293seCxaOkbBUudq7r1R2qbFMuNox/SU9UsR174w0RmeSbDkaH+v022n8UERkW
+x25PYfUIsWNukMghc61d03P76xaCGDWhnO6ipqr8l7p5vynkerpyKRTZ6lNMiCB
bKZdDpJEXFzv00lcDfVNiQ2Re9s756EyxqFyT4CIDFHgGeB5ZvBFB07iwSFSepNY
FVilQkbchEi0BruAFR6vGlYIola4J1sgSVgcXeTX11aHNb0tpUL284M/29fZyH3Y
oMav5FWJLFWW/ijSvln30jWR9cAdvd+mTFava/bRtq4VXHS2/izL
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:28 2024 by rpki-client on console.sobornost.net