Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/AGjjbv9c8FxLsmNComjLeNCy7oA.roa
File: AGjjbv9c8FxLsmNComjLeNCy7oA.roa (raw, json)
Hash identifier: pXLOouGDOBP5V1JLqNRoa8HHg4sOTDCAVi/PITdeFsA=
Subject key identifier: 00:68:E3:6E:FF:5C:F0:5C:4B:B2:63:42:A2:68:CB:78:D0:B2:EE:80
Certificate issuer: /CN=bd2a6a2232c439f04620c82b4d7e14e9df721143
Certificate serial: 0187B9D07E0FF7C571291A398F6B1DD7D713
Authority key identifier: BD:2A:6A:22:32:C4:39:F0:46:20:C8:2B:4D:7E:14:E9:DF:72:11:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpqIjLEOfBGIMgrTX4U6d9yEUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/AGjjbv9c8FxLsmNComjLeNCy7oA.roa
Signing time: Tue 25 Apr 2023 19:07:41 +0000
ROA not before: Tue 25 Apr 2023 19:07:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.206.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b9:d0:7e:0f:f7:c5:71:29:1a:39:8f:6b:1d:d7:d7:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a6a2232c439f04620c82b4d7e14e9df721143
Validity
Not Before: Apr 25 19:07:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0068e36eff5cf05c4bb26342a268cb78d0b2ee80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c3:ed:f1:63:9a:7f:32:01:82:ac:65:b5:92:
80:9b:7f:2f:38:4a:d1:cf:79:a1:e0:74:55:69:a3:
ab:58:ce:ed:2d:4d:c1:e7:b0:82:63:b2:93:c6:34:
43:48:25:32:ab:38:5f:f0:a9:5c:cd:df:70:a3:43:
82:e7:f0:6f:a6:23:06:37:7c:13:d7:8e:f3:f0:ea:
a7:3f:54:6e:fe:cd:53:36:c3:30:c7:7f:e9:42:5f:
1d:70:08:50:de:83:64:75:9a:73:57:c4:79:0f:a2:
25:4c:80:eb:eb:3f:ac:51:82:37:e0:cd:cf:fd:e1:
4d:d1:fe:d6:e3:f6:e9:54:24:fd:2d:72:85:d6:b4:
79:41:a3:d0:0a:26:9e:bb:9f:f2:b9:61:ad:2b:24:
72:c3:16:21:6b:25:9c:fd:be:3a:e6:16:28:d2:8d:
25:b5:40:57:d3:4b:36:1b:5f:ee:8b:cd:ee:f2:5d:
c8:54:38:86:7b:81:50:f6:a5:03:b1:38:22:be:30:
ce:58:a3:32:af:a3:11:a3:29:97:6e:b9:7c:f0:bf:
d2:38:db:99:6d:4d:be:20:6a:27:7a:4f:b3:34:9f:
ad:1d:05:a2:da:dc:26:1a:4d:76:10:52:a8:0b:c4:
7c:00:ee:19:b2:53:f3:88:6d:0b:34:78:b5:92:f1:
8f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:68:E3:6E:FF:5C:F0:5C:4B:B2:63:42:A2:68:CB:78:D0:B2:EE:80
X509v3 Authority Key Identifier:
keyid:BD:2A:6A:22:32:C4:39:F0:46:20:C8:2B:4D:7E:14:E9:DF:72:11:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpqIjLEOfBGIMgrTX4U6d9yEUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/AGjjbv9c8FxLsmNComjLeNCy7oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6afd60-83e8-423d-878b-909b6ab85ee9/1/vSpqIjLEOfBGIMgrTX4U6d9yEUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.206.242.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:64:c5:55:24:e9:b4:eb:3d:7f:8c:fb:19:dd:56:e0:41:bf:
fc:96:bc:3a:7b:09:e6:3a:92:db:91:27:de:b7:ab:36:20:fc:
d5:1d:87:6a:41:d3:8a:03:70:84:86:23:65:03:82:c0:7e:96:
2f:2f:5e:75:87:45:5b:35:15:62:d9:c1:0b:e0:1f:7c:35:fe:
3c:ba:bf:9d:5e:4d:c6:a0:e1:5d:22:f2:8e:67:c2:77:f9:9f:
21:92:c8:16:89:75:03:9c:da:c6:7a:fe:08:12:29:36:4f:38:
45:56:c5:52:78:02:f7:4a:6c:f8:8e:f7:7e:91:ef:b0:d7:2b:
98:1b:3f:b1:ff:9e:dd:2a:62:b0:9c:e9:2d:9c:07:c5:ba:f6:
0d:b3:ed:ff:bf:40:0d:83:4c:93:a9:5e:bf:b8:2a:8f:10:ab:
c1:bb:e1:65:0a:59:39:b8:02:54:0e:57:b1:bc:1f:68:93:26:
22:d1:e0:4c:66:fd:ce:06:88:93:d1:2e:29:8a:90:9e:39:15:
ea:69:9f:3d:e1:64:44:ec:97:84:06:34:f5:1a:4b:93:76:8b:
96:c2:2f:68:81:3a:02:52:28:7a:06:c9:c2:bc:da:ce:81:7c:
55:c4:94:be:2a:d9:dc:d6:8e:62:a9:b5:6d:cb:70:3b:c9:21:
de:4c:23:02
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe50H4P98VxKRo5j2sd19cTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMmE2YTIyMzJjNDM5ZjA0NjIwYzgyYjRkN2UxNGU5ZGY3
MjExNDMwHhcNMjMwNDI1MTkwNzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDY4ZTM2ZWZmNWNmMDVjNGJiMjYzNDJhMjY4Y2I3OGQwYjJlZTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgsPt8WOafzIBgqxltZKAm38vOErR
z3mh4HRVaaOrWM7tLU3B57CCY7KTxjRDSCUyqzhf8Klczd9wo0OC5/BvpiMGN3wT
147z8OqnP1Ru/s1TNsMwx3/pQl8dcAhQ3oNkdZpzV8R5D6IlTIDr6z+sUYI34M3P
/eFN0f7W4/bpVCT9LXKF1rR5QaPQCiaeu5/yuWGtKyRywxYhayWc/b465hYo0o0l
tUBX00s2G1/ui83u8l3IVDiGe4FQ9qUDsTgivjDOWKMyr6MRoymXbrl88L/SONuZ
bU2+IGonek+zNJ+tHQWi2twmGk12EFKoC8R8AO4ZslPziG0LNHi1kvGPDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFABo427/XPBcS7JjQqJoy3jQsu6AMB8GA1UdIwQY
MBaAFL0qaiIyxDnwRiDIK01+FOnfchFDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlNwcUlqTEVPZkJHSU1nclRYNFU2ZDl5RVVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi82YWZkNjAtODNlOC00MjNkLTg3OGIt
OTA5YjZhYjg1ZWU5LzEvQUdqamJ2OWM4RnhMc21OQ29takxlTkN5N29BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi82YWZkNjAtODNlOC00MjNkLTg3OGItOTA5YjZhYjg1ZWU5
LzEvdlNwcUlqTEVPZkJHSU1nclRYNFU2ZDl5RVVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw87yMA0G
CSqGSIb3DQEBCwUAA4IBAQANZMVVJOm06z1/jPsZ3VbgQb/8lrw6ewnmOpLbkSfe
t6s2IPzVHYdqQdOKA3CEhiNlA4LAfpYvL151h0VbNRVi2cEL4B98Nf48ur+dXk3G
oOFdIvKOZ8J3+Z8hksgWiXUDnNrGev4IEik2TzhFVsVSeAL3Smz4jvd+ke+w1yuY
Gz+x/57dKmKwnOktnAfFuvYNs+3/v0ANg0yTqV6/uCqPEKvBu+FlClk5uAJUDlex
vB9okyYi0eBMZv3OBoiT0S4pipCeORXqaZ894WRE7JeEBjT1GkuTdouWwi9ogToC
Uih6BsnCvNrOgXxVxJS+Ktnc1o5iqbVty3A7ySHeTCMC
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:10 2023 by rpki-client on console.sobornost.net