Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/MBrok6mk7aiZGNZ48IfblkEmzxU.roa
File: MBrok6mk7aiZGNZ48IfblkEmzxU.roa (raw, json)
Hash identifier: dsZtZx4ARA1GUQ1fFUPy1YDgAVBWGHccrbjHG+Po6Ww=
Subject key identifier: 30:1A:E8:93:A9:A4:ED:A8:99:18:D6:78:F0:87:DB:96:41:26:CF:15
Certificate issuer: /CN=52a59bf043080306359f5a29491f545b07051c05
Certificate serial: 018571DE98C3BEAF1C958FDACAC097420C66
Authority key identifier: 52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/MBrok6mk7aiZGNZ48IfblkEmzxU.roa
Signing time: Mon 02 Jan 2023 09:44:51 +0000
ROA not before: Mon 02 Jan 2023 09:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28716
IP address blocks: 46.183.232.0/21 maxlen: 21
185.133.216.0/22 maxlen: 22
2a03:9c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:98:c3:be:af:1c:95:8f:da:ca:c0:97:42:0c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a59bf043080306359f5a29491f545b07051c05
Validity
Not Before: Jan 2 09:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=301ae893a9a4eda89918d678f087db964126cf15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:91:3c:f8:42:d5:03:76:e4:23:e0:93:f7:c9:
f4:bb:f8:aa:75:d4:07:c9:3a:bc:ad:f3:e7:e5:12:
1d:a7:5f:2d:1b:b9:60:69:e1:52:c3:d9:33:7b:33:
4f:38:9a:1e:4a:e8:7b:65:66:90:91:7f:a5:1f:41:
9f:a9:39:2a:4b:e7:98:30:0d:e3:6a:c9:1b:6c:b5:
d0:56:6c:70:16:99:e5:df:16:9c:0c:80:b1:68:67:
ce:18:53:b0:87:85:35:9b:d1:78:d1:00:95:7e:3e:
d8:0e:26:a1:95:25:f0:07:39:ec:01:34:c9:06:8b:
51:f8:dd:5f:e8:4b:d5:dd:1b:be:a8:2a:45:de:88:
e1:33:61:05:39:39:db:cc:0d:ba:3c:d3:6e:40:bd:
d1:26:e8:ee:ae:42:a2:cc:30:de:a1:c2:4c:67:4a:
ad:95:fa:96:b2:5a:94:94:b3:ec:99:4b:4f:ad:48:
89:c8:71:78:8a:d9:5e:8e:ad:08:d5:ed:44:54:cf:
97:8a:d9:72:d1:d1:46:d4:95:42:77:39:08:8f:dc:
40:4b:7e:22:5b:d7:59:8f:43:f7:44:e8:87:ca:c8:
a9:9c:11:0b:c0:53:74:c8:06:d9:d5:b1:53:8c:49:
c1:c4:9c:7e:bc:6b:8c:01:25:01:93:8b:58:d2:2f:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:1A:E8:93:A9:A4:ED:A8:99:18:D6:78:F0:87:DB:96:41:26:CF:15
X509v3 Authority Key Identifier:
keyid:52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/MBrok6mk7aiZGNZ48IfblkEmzxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.232.0/21
185.133.216.0/22
IPv6:
2a03:9c0::/32
Signature Algorithm: sha256WithRSAEncryption
5c:24:d4:41:3e:53:09:0b:b1:35:4c:ae:d9:75:12:f1:a5:ff:
d9:e7:04:b7:f2:3b:be:c4:3f:cb:d5:c2:8d:76:f0:4e:37:f1:
98:29:2f:61:4d:7a:ba:9e:5f:04:7b:81:80:15:b4:56:7f:d0:
fc:90:1b:56:3b:88:ce:9f:d0:24:de:bd:67:fe:52:78:6a:6a:
39:89:5d:6e:da:b5:5e:5d:2d:31:d3:2b:7c:a5:ab:0a:9a:db:
bd:ad:ce:77:a5:bf:99:ed:dd:be:9e:91:fc:15:22:5e:fe:28:
83:93:cb:45:43:27:87:8c:c9:b2:fb:89:bf:6c:19:be:b1:d0:
f4:c9:84:3a:6a:f8:c4:43:54:21:67:05:82:62:f3:e4:08:22:
a6:b4:89:02:7e:8c:c4:06:c2:55:46:c7:0b:f9:4b:94:79:2a:
6b:fe:5b:0f:08:6e:03:ba:ae:03:28:f6:dd:43:d2:e3:70:e7:
3b:9d:23:c6:c0:ad:77:53:00:ac:49:b8:ab:4f:ec:ae:3a:38:
53:eb:f4:05:67:e1:c3:80:47:09:b3:d0:a6:c9:60:7c:12:b6:
15:b1:a5:b9:f1:4e:4a:29:3d:f7:35:7a:04:02:78:d4:98:69:
41:a6:3e:6a:01:d9:48:4a:f6:46:a8:af:71:e2:24:28:76:b1:
2b:18:f2:c2
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYVx3pjDvq8clY/aysCXQgxmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTU5YmYwNDMwODAzMDYzNTlmNWEyOTQ5MWY1NDViMDcw
NTFjMDUwHhcNMjMwMTAyMDk0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDFhZTg5M2E5YTRlZGE4OTkxOGQ2NzhmMDg3ZGI5NjQxMjZjZjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpE8+ELVA3bkI+CT98n0u/iqddQH
yTq8rfPn5RIdp18tG7lgaeFSw9kzezNPOJoeSuh7ZWaQkX+lH0GfqTkqS+eYMA3j
askbbLXQVmxwFpnl3xacDICxaGfOGFOwh4U1m9F40QCVfj7YDiahlSXwBznsATTJ
BotR+N1f6EvV3Ru+qCpF3ojhM2EFOTnbzA26PNNuQL3RJujurkKizDDeocJMZ0qt
lfqWslqUlLPsmUtPrUiJyHF4itlejq0I1e1EVM+Xitly0dFG1JVCdzkIj9xAS34i
W9dZj0P3ROiHysipnBELwFN0yAbZ1bFTjEnBxJx+vGuMASUBk4tY0i/YBwIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFDAa6JOppO2omRjWePCH25ZBJs8VMB8GA1UdIwQY
MBaAFFKlm/BDCAMGNZ9aKUkfVFsHBRwFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82ZDcyOWUtZTE2Yi00MWE5LTkwMTIt
MDE0YzcwOTc3ZDQ5LzEvTUJyb2s2bWs3YWlaR05aNDhJZmJsa0VtenhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82ZDcyOWUtZTE2Yi00MWE5LTkwMTItMDE0YzcwOTc3ZDQ5
LzEvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDLrfoAwQC
uYXYMA0EAgACMAcDBQAqAwnAMA0GCSqGSIb3DQEBCwUAA4IBAQBcJNRBPlMJC7E1
TK7ZdRLxpf/Z5wS38ju+xD/L1cKNdvBON/GYKS9hTXq6nl8Ee4GAFbRWf9D8kBtW
O4jOn9Ak3r1n/lJ4amo5iV1u2rVeXS0x0yt8pasKmtu9rc53pb+Z7d2+npH8FSJe
/iiDk8tFQyeHjMmy+4m/bBm+sdD0yYQ6avjEQ1QhZwWCYvPkCCKmtIkCfozEBsJV
RscL+UuUeSpr/lsPCG4Duq4DKPbdQ9LjcOc7nSPGwK13UwCsSbirT+yuOjhT6/QF
Z+HDgEcJs9CmyWB8ErYVsaW58U5KKT33NXoEAnjUmGlBpj5qAdlISvZGqK9x4iQo
drErGPLC
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:31:04 2024 by rpki-client on console.sobornost.net