Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/fSzM6SL80FldrO5Xhzf5Awt7zhU.roa
File: fSzM6SL80FldrO5Xhzf5Awt7zhU.roa (raw, json)
Hash identifier: MU/6EFXmYynlQDEJ1E/RKUntT1Mer/dn2Cc9vi6TT+A=
Subject key identifier: 7D:2C:CC:E9:22:FC:D0:59:5D:AC:EE:57:87:37:F9:03:0B:7B:CE:15
Certificate issuer: /CN=6987d47935e1137d544426db5288e12a9c025ac2
Certificate serial: 018A83D37DD8D22B0228E19155BE4C8D8391
Authority key identifier: 69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/fSzM6SL80FldrO5Xhzf5Awt7zhU.roa
Signing time: Mon 11 Sep 2023 10:39:50 +0000
ROA not before: Mon 11 Sep 2023 10:39:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.84.4.0/24 maxlen: 24
193.84.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:d3:7d:d8:d2:2b:02:28:e1:91:55:be:4c:8d:83:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d47935e1137d544426db5288e12a9c025ac2
Validity
Not Before: Sep 11 10:39:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d2ccce922fcd0595dacee578737f9030b7bce15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8f:0e:b0:df:3d:65:12:0b:0d:98:46:a2:0d:
df:3b:f6:97:cd:96:68:58:af:96:96:da:86:f9:44:
4e:f3:6c:3e:18:a7:c4:0b:21:21:ac:b3:b0:37:4d:
1e:00:85:2f:6a:b7:48:e3:57:cc:35:39:16:4a:f7:
6f:77:33:1a:26:0f:26:d5:51:18:ff:3c:32:d3:5f:
8b:b9:ca:9a:a1:8f:79:25:25:77:dd:01:fb:5b:8a:
c7:1f:41:30:24:f4:4e:f1:0f:9c:be:45:0f:f3:58:
5d:ee:00:3d:f6:6c:c2:a4:ae:04:b0:bc:e9:fc:f6:
f5:f9:2c:6b:92:8b:fc:b5:2d:ad:3c:bb:d3:09:4d:
eb:c8:36:8a:f0:5d:53:b1:d5:78:50:74:13:40:3b:
0d:b2:04:56:aa:e8:b0:12:58:72:63:2a:92:8e:d7:
6b:52:cd:92:63:f9:41:bb:9c:39:52:39:6d:79:53:
42:26:b8:a6:bb:ec:f0:74:c8:fd:33:ec:2d:e1:88:
b1:2a:ff:1d:c3:5f:0e:3f:14:78:ac:50:20:fd:a9:
5c:b4:31:b2:db:81:e6:ad:ef:5f:9e:03:70:e0:4c:
eb:11:3a:ac:54:1e:0b:f5:2c:81:3b:cd:0b:65:b7:
65:49:de:70:f4:6e:b5:4c:11:9b:1e:dd:ad:45:a3:
cd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2C:CC:E9:22:FC:D0:59:5D:AC:EE:57:87:37:F9:03:0B:7B:CE:15
X509v3 Authority Key Identifier:
keyid:69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/fSzM6SL80FldrO5Xhzf5Awt7zhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.4.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:69:6d:91:2f:92:dd:d9:9a:26:80:7e:4e:98:b1:1c:92:b2:
fe:6a:bc:86:35:22:7e:2f:20:67:ad:85:e5:fe:eb:2b:38:bf:
84:cf:24:34:55:5f:60:78:8c:d4:00:74:ae:aa:cf:72:d5:2e:
f0:c3:1b:1f:5a:b4:b4:c4:55:ad:53:88:06:1e:b1:2f:5b:25:
dd:ce:68:e1:53:b9:eb:e1:fa:2b:a8:db:db:1b:83:db:5f:74:
5f:c2:52:4f:b5:99:96:cc:e9:d7:43:0c:87:03:8b:99:25:d7:
48:0e:20:39:ed:b0:af:9a:ea:13:fe:07:48:11:d2:47:d1:c1:
e0:6f:4b:e0:a7:03:0e:ce:47:7c:dc:fc:3b:c7:e0:25:25:9d:
bd:65:89:83:83:9b:d8:1b:1b:5e:86:ab:68:94:c2:53:40:b1:
e3:f4:e2:61:f6:99:8b:cf:b8:ba:22:73:f9:36:7b:28:cc:51:
f6:d1:0b:c8:64:5a:42:b6:29:54:eb:d1:a3:65:eb:77:49:8f:
aa:46:85:4a:0d:a4:90:41:2f:e1:92:bc:e6:51:f9:88:a3:be:
3b:f6:58:1b:2b:8e:c7:fd:90:87:7e:25:70:3f:2d:d5:e6:7c:
12:e0:c2:25:ed:63:64:a7:c8:70:bd:f6:88:fc:af:29:3f:7e:
ac:4e:4c:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqD033Y0isCKOGRVb5MjYORMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5ODdkNDc5MzVlMTEzN2Q1NDQ0MjZkYjUyODhlMTJhOWMw
MjVhYzIwHhcNMjMwOTExMTAzOTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDJjY2NlOTIyZmNkMDU5NWRhY2VlNTc4NzM3ZjkwMzBiN2JjZTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt48OsN89ZRILDZhGog3fO/aXzZZo
WK+WltqG+URO82w+GKfECyEhrLOwN00eAIUvardI41fMNTkWSvdvdzMaJg8m1VEY
/zwy01+LucqaoY95JSV33QH7W4rHH0EwJPRO8Q+cvkUP81hd7gA99mzCpK4EsLzp
/Pb1+Sxrkov8tS2tPLvTCU3ryDaK8F1TsdV4UHQTQDsNsgRWquiwElhyYyqSjtdr
Us2SY/lBu5w5UjlteVNCJrimu+zwdMj9M+wt4YixKv8dw18OPxR4rFAg/alctDGy
24Hmre9fngNw4EzrETqsVB4L9SyBO80LZbdlSd5w9G61TBGbHt2tRaPNCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH0szOki/NBZXazuV4c3+QMLe84VMB8GA1UdIwQY
MBaAFGmH1Hk14RN9VEQm21KI4SqcAlrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVlmVWVUWGhFMzFVUkNiYlVvamhLcHdDV3NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8zMmQ3YWQtOGJmOS00Mjc0LTk1Zjgt
OWM5NTM1OTRkNmIxLzEvZlN6TTZTTDgwRmxkck81WGh6ZjVBd3Q3emhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8zMmQ3YWQtOGJmOS00Mjc0LTk1ZjgtOWM5NTM1OTRkNmIx
LzEvYVlmVWVUWGhFMzFVUkNiYlVvamhLcHdDV3NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwVQEMA0G
CSqGSIb3DQEBCwUAA4IBAQAMaW2RL5Ld2ZomgH5OmLEckrL+aryGNSJ+LyBnrYXl
/usrOL+EzyQ0VV9geIzUAHSuqs9y1S7wwxsfWrS0xFWtU4gGHrEvWyXdzmjhU7nr
4forqNvbG4PbX3RfwlJPtZmWzOnXQwyHA4uZJddIDiA57bCvmuoT/gdIEdJH0cHg
b0vgpwMOzkd83Pw7x+AlJZ29ZYmDg5vYGxtehqtolMJTQLHj9OJh9pmLz7i6InP5
NnsozFH20QvIZFpCtilU69GjZet3SY+qRoVKDaSQQS/hkrzmUfmIo7479lgbK47H
/ZCHfiVwPy3V5nwS4MIl7WNkp8hwvfaI/K8pP36sTkx5
-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:39 2024 by rpki-client on console.sobornost.net