Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Z4KH7GwSusP8zQ0Bm8ftEB3gIsg.roa
File: Z4KH7GwSusP8zQ0Bm8ftEB3gIsg.roa (raw, json)
Hash identifier: BJ+R2sOm+UMGJpFxPvaf2P8jcnpbZc7VH996xjJFPfo=
Subject key identifier: 67:82:87:EC:6C:12:BA:C3:FC:CD:0D:01:9B:C7:ED:10:1D:E0:22:C8
Certificate issuer: /CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Certificate serial: 018C10366E73BAC33FFF36DBE503A18644AF
Authority key identifier: 42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Z4KH7GwSusP8zQ0Bm8ftEB3gIsg.roa
Signing time: Mon 27 Nov 2023 09:57:31 +0000
ROA not before: Mon 27 Nov 2023 09:57:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59635
IP address blocks: 91.247.66.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:36:6e:73:ba:c3:3f:ff:36:db:e5:03:a1:86:44:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427df95ee10a2ad4eaf082dfac159838b37d3450
Validity
Not Before: Nov 27 09:57:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=678287ec6c12bac3fccd0d019bc7ed101de022c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:65:75:20:a0:9a:7f:18:da:ea:69:42:9f:
8b:1b:84:59:12:a9:43:d6:13:c5:13:66:a4:96:80:
88:68:40:5c:e7:b6:0f:3c:82:2a:fa:84:2a:65:ed:
6c:10:12:a3:a1:a8:ff:2b:7f:b3:0a:71:fc:e8:89:
2a:30:3a:cd:51:f7:4a:a2:ac:8c:e4:cf:da:95:cc:
31:4e:c2:a8:79:47:f2:cc:ba:ef:6e:2d:91:14:8c:
92:a0:55:d6:24:5b:d7:a3:32:da:f6:75:e3:89:0d:
f6:da:23:3a:4c:61:a8:f6:c0:fd:01:ef:84:33:fb:
1e:db:15:48:51:a6:e1:31:16:d1:af:b0:31:0c:9b:
26:78:1b:6a:cd:5a:dd:3a:4a:44:a5:db:85:b7:01:
a1:e6:2e:a6:46:01:86:45:45:c6:07:3f:2b:11:bb:
b2:96:0e:02:8b:17:f8:2f:b1:8b:7e:a9:70:ad:c1:
ce:c7:9d:41:ee:2c:ee:c9:a2:6e:1a:ad:14:8e:9c:
f4:41:c7:60:87:6a:3c:93:f8:9f:7b:71:39:af:35:
fb:fd:7e:e7:70:d2:bb:9b:ef:94:74:0e:28:1a:87:
0f:0f:1c:bd:5e:f0:d0:b9:1a:a6:23:1c:64:c2:a8:
77:03:f6:2f:7f:a2:75:67:f1:59:ee:a4:d3:1b:4e:
6e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:82:87:EC:6C:12:BA:C3:FC:CD:0D:01:9B:C7:ED:10:1D:E0:22:C8
X509v3 Authority Key Identifier:
keyid:42:7D:F9:5E:E1:0A:2A:D4:EA:F0:82:DF:AC:15:98:38:B3:7D:34:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qn35XuEKKtTq8ILfrBWYOLN9NFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Z4KH7GwSusP8zQ0Bm8ftEB3gIsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/4a3068-ea9d-4966-be55-7943d9a79bd2/1/Qn35XuEKKtTq8ILfrBWYOLN9NFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.66.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:17:1b:45:0f:ea:f5:59:56:69:02:b3:d4:cd:8f:30:b6:ae:
82:5a:90:e1:9f:6e:23:90:b9:b4:21:03:74:b3:e1:16:35:fd:
b4:de:67:c5:7a:60:2b:1a:26:16:8a:3e:ac:ff:15:19:b0:41:
c8:f2:02:34:c1:0b:68:ac:b2:25:20:ec:c5:70:41:b2:fb:d3:
f5:f4:5e:ef:de:33:b2:75:c7:79:f2:b1:f0:25:82:9a:5a:64:
1d:b9:fd:b9:b1:a9:b3:99:54:12:31:93:29:f5:c0:40:e7:19:
f7:63:ae:53:76:35:cd:15:b8:a4:8f:3c:52:20:6a:46:82:3a:
6c:11:20:e9:c1:d0:3e:c8:63:2e:81:1a:17:de:3f:f4:fb:dc:
9a:e9:d5:79:52:9b:f9:76:ae:e3:a1:aa:b1:af:17:73:f7:a9:
80:bb:a5:f0:9b:af:83:00:25:f6:71:91:3a:79:b5:6e:db:ef:
69:c5:23:0e:82:0a:ad:39:99:a1:23:ab:14:b2:c8:92:57:d4:
b0:b8:df:a8:ef:38:c8:89:23:26:d3:4b:a8:51:26:09:88:a0:
fe:57:af:c4:23:c0:da:06:6d:c6:d0:1b:2c:8b:65:51:9f:66:
92:2d:a3:a3:21:80:a4:a9:7a:40:38:29:48:e0:43:43:df:5a:
cd:c9:7f:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwQNm5zusM//zbb5QOhhkSvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyN2RmOTVlZTEwYTJhZDRlYWYwODJkZmFjMTU5ODM4YjM3
ZDM0NTAwHhcNMjMxMTI3MDk1NzMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzgyODdlYzZjMTJiYWMzZmNjZDBkMDE5YmM3ZWQxMDFkZTAyMmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9JldSCgmn8Y2uppQp+LG4RZEqlD
1hPFE2akloCIaEBc57YPPIIq+oQqZe1sEBKjoaj/K3+zCnH86IkqMDrNUfdKoqyM
5M/alcwxTsKoeUfyzLrvbi2RFIySoFXWJFvXozLa9nXjiQ322iM6TGGo9sD9Ae+E
M/se2xVIUabhMRbRr7AxDJsmeBtqzVrdOkpEpduFtwGh5i6mRgGGRUXGBz8rEbuy
lg4Cixf4L7GLfqlwrcHOx51B7izuyaJuGq0Ujpz0Qcdgh2o8k/ife3E5rzX7/X7n
cNK7m++UdA4oGocPDxy9XvDQuRqmIxxkwqh3A/Yvf6J1Z/FZ7qTTG05u1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGeCh+xsErrD/M0NAZvH7RAd4CLIMB8GA1UdIwQY
MBaAFEJ9+V7hCirU6vCC36wVmDizfTRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUt
Nzk0M2Q5YTc5YmQyLzEvWjRLSDdHd1N1c1A4elEwQm04ZnRFQjNnSXNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC80YTMwNjgtZWE5ZC00OTY2LWJlNTUtNzk0M2Q5YTc5YmQy
LzEvUW4zNVh1RUtLdFRxOElMZnJCV1lPTE45TkZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW/dCMA0G
CSqGSIb3DQEBCwUAA4IBAQCmFxtFD+r1WVZpArPUzY8wtq6CWpDhn24jkLm0IQN0
s+EWNf203mfFemArGiYWij6s/xUZsEHI8gI0wQtorLIlIOzFcEGy+9P19F7v3jOy
dcd58rHwJYKaWmQduf25samzmVQSMZMp9cBA5xn3Y65TdjXNFbikjzxSIGpGgjps
ESDpwdA+yGMugRoX3j/0+9ya6dV5Upv5dq7joaqxrxdz96mAu6Xwm6+DACX2cZE6
ebVu2+9pxSMOggqtOZmhI6sUssiSV9SwuN+o7zjIiSMm00uoUSYJiKD+V6/EI8Da
Bm3G0Bssi2VRn2aSLaOjIYCkqXpAOClI4END31rNyX+E
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:06 2024 by rpki-client on console.sobornost.net