Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/fhN7xWjwFBPeTZNtHpnsmAi-mC0.roa
File: fhN7xWjwFBPeTZNtHpnsmAi-mC0.roa (raw, json)
Hash identifier: LCfSuAJKhBU9wo3nU0LWnn2TPVc1jc8+IQV5bjPqq9c=
Subject key identifier: 7E:13:7B:C5:68:F0:14:13:DE:4D:93:6D:1E:99:EC:98:08:BE:98:2D
Certificate issuer: /CN=2e6b33413faa5e5e1d279a2a25ff81d8d15325df
Certificate serial: 01856F4B7D9DABF03DCE086CE0E56BC4D856
Authority key identifier: 2E:6B:33:41:3F:AA:5E:5E:1D:27:9A:2A:25:FF:81:D8:D1:53:25:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmszQT-qXl4dJ5oqJf-B2NFTJd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/fhN7xWjwFBPeTZNtHpnsmAi-mC0.roa
Signing time: Sun 01 Jan 2023 21:44:56 +0000
ROA not before: Sun 01 Jan 2023 21:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61353
IP address blocks: 89.34.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:7d:9d:ab:f0:3d:ce:08:6c:e0:e5:6b:c4:d8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e6b33413faa5e5e1d279a2a25ff81d8d15325df
Validity
Not Before: Jan 1 21:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e137bc568f01413de4d936d1e99ec9808be982d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:26:da:52:61:1b:b6:e2:6f:ab:79:23:b2:65:
10:23:a3:77:33:89:31:b7:31:68:d0:cb:a5:0a:03:
1c:0e:92:01:50:48:d6:62:34:d7:18:6f:aa:b2:81:
0b:aa:48:d6:5f:e9:30:38:c0:87:92:37:83:c9:a8:
0a:e9:7e:70:d0:ed:c1:65:a8:61:55:f7:31:89:c9:
ac:5f:b0:06:a4:30:2c:18:67:af:10:a5:8a:a5:cb:
c3:b7:5d:59:b8:ed:47:31:b8:4f:f6:d1:e3:7d:b4:
f6:b4:85:94:02:b9:18:08:8c:27:d7:72:0d:f6:c9:
df:65:55:43:0e:ec:ab:ab:30:3f:a7:34:d4:b7:67:
96:ed:23:23:d7:a2:07:42:7b:b2:c4:b5:9c:87:5c:
96:77:92:70:eb:0d:8c:0f:f0:b3:eb:4f:42:48:4a:
40:9e:4f:02:04:59:a1:57:31:de:e7:a5:ec:63:6b:
99:c3:4b:58:0f:fe:23:93:52:4e:80:74:7a:04:94:
91:92:c6:c4:cd:04:3c:ab:e7:75:a3:94:6c:35:d3:
cc:13:a9:33:a7:c7:0a:0f:cf:b5:a2:e4:fb:bd:de:
a3:02:b0:ff:d7:50:af:a5:b5:51:c2:06:67:bc:6b:
ba:32:a4:20:ad:3b:78:de:70:f5:69:6b:fe:cd:3d:
58:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:13:7B:C5:68:F0:14:13:DE:4D:93:6D:1E:99:EC:98:08:BE:98:2D
X509v3 Authority Key Identifier:
keyid:2E:6B:33:41:3F:AA:5E:5E:1D:27:9A:2A:25:FF:81:D8:D1:53:25:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmszQT-qXl4dJ5oqJf-B2NFTJd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/fhN7xWjwFBPeTZNtHpnsmAi-mC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/accde8-f46f-4ef9-94af-8dd81e4b3e33/1/LmszQT-qXl4dJ5oqJf-B2NFTJd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.160.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:c1:82:cf:8e:f1:a8:3c:ed:82:7d:49:fa:5f:fc:3a:85:0c:
bd:9a:f9:b5:b0:18:44:82:fa:37:80:62:e8:04:17:7f:9b:cb:
4c:b5:1f:23:d9:70:21:a7:27:3f:f1:7a:92:93:7d:ea:97:7b:
a3:7f:51:e5:8b:09:9e:44:d8:0f:2e:be:81:4c:9c:83:ea:f1:
d5:4d:8a:00:5b:5f:a1:0f:d1:35:5f:0e:7f:75:9c:33:fb:2f:
75:fb:91:be:bb:aa:5a:8b:90:8e:65:4e:ca:1d:6d:a3:67:41:
e3:1e:a8:d8:a3:00:07:d3:74:96:c3:64:fa:d1:6d:21:f2:25:
10:a9:9b:5d:a7:a0:39:d4:02:4c:91:c3:ec:ad:75:30:b7:cb:
4b:ed:bf:be:b4:bb:36:33:3e:c9:bd:72:c9:32:bf:86:0f:38:
e0:f2:02:6f:42:9a:ce:3b:5d:14:ab:0d:98:28:57:41:38:32:
be:57:03:33:6f:4a:00:17:15:01:d0:65:b6:a2:9f:ca:a5:38:
9c:14:e6:7c:99:f2:f8:e1:c4:93:aa:d1:68:5c:4e:59:56:b2:
26:f3:6e:59:a2:3d:10:fa:e8:b4:80:b1:82:8d:5a:9e:48:ae:
e4:d0:c4:c4:e6:33:f3:e4:f9:63:a2:5d:9f:cb:c4:d5:e1:db:
fb:a7:b0:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvS32dq/A9zghs4OVrxNhWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNmIzMzQxM2ZhYTVlNWUxZDI3OWEyYTI1ZmY4MWQ4ZDE1
MzI1ZGYwHhcNMjMwMTAxMjE0NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTEzN2JjNTY4ZjAxNDEzZGU0ZDkzNmQxZTk5ZWM5ODA4YmU5ODJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCbaUmEbtuJvq3kjsmUQI6N3M4kx
tzFo0MulCgMcDpIBUEjWYjTXGG+qsoELqkjWX+kwOMCHkjeDyagK6X5w0O3BZahh
VfcxicmsX7AGpDAsGGevEKWKpcvDt11ZuO1HMbhP9tHjfbT2tIWUArkYCIwn13IN
9snfZVVDDuyrqzA/pzTUt2eW7SMj16IHQnuyxLWch1yWd5Jw6w2MD/Cz609CSEpA
nk8CBFmhVzHe56XsY2uZw0tYD/4jk1JOgHR6BJSRksbEzQQ8q+d1o5RsNdPME6kz
p8cKD8+1ouT7vd6jArD/11CvpbVRwgZnvGu6MqQgrTt43nD1aWv+zT1Y3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH4Te8Vo8BQT3k2TbR6Z7JgIvpgtMB8GA1UdIwQY
MBaAFC5rM0E/ql5eHSeaKiX/gdjRUyXfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG1zelFULXFYbDRkSjVvcUpmLUIyTkZUSmQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hY2NkZTgtZjQ2Zi00ZWY5LTk0YWYt
OGRkODFlNGIzZTMzLzEvZmhON3hXandGQlBlVFpOdEhwbnNtQWktbUMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9hY2NkZTgtZjQ2Zi00ZWY5LTk0YWYtOGRkODFlNGIzZTMz
LzEvTG1zelFULXFYbDRkSjVvcUpmLUIyTkZUSmQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSKgMA0G
CSqGSIb3DQEBCwUAA4IBAQCjwYLPjvGoPO2CfUn6X/w6hQy9mvm1sBhEgvo3gGLo
BBd/m8tMtR8j2XAhpyc/8XqSk33ql3ujf1HliwmeRNgPLr6BTJyD6vHVTYoAW1+h
D9E1Xw5/dZwz+y91+5G+u6pai5COZU7KHW2jZ0HjHqjYowAH03SWw2T60W0h8iUQ
qZtdp6A51AJMkcPsrXUwt8tL7b++tLs2Mz7JvXLJMr+GDzjg8gJvQprOO10Uqw2Y
KFdBODK+VwMzb0oAFxUB0GW2op/KpTicFOZ8mfL44cSTqtFoXE5ZVrIm825Zoj0Q
+ui0gLGCjVqeSK7k0MTE5jPz5Pljol2fy8TV4dv7p7CC
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:15 2024 by rpki-client on console.sobornost.net