Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/rn9uhFl1x9FSSZ9iC-kqYdrD068.roa
File: rn9uhFl1x9FSSZ9iC-kqYdrD068.roa (raw, json)
Hash identifier: VFkUWz8d75jEJ3iFEXKafsnitYi79j2+8MndA4K3684=
Subject key identifier: AE:7F:6E:84:59:75:C7:D1:52:49:9F:62:0B:E9:2A:61:DA:C3:D3:AF
Certificate issuer: /CN=c22d553b28c5d0ea5b1ef60c9bce33df50bcb493
Certificate serial: 01856D787F31E81E8B67219C4E12BEEBF30B
Authority key identifier: C2:2D:55:3B:28:C5:D0:EA:5B:1E:F6:0C:9B:CE:33:DF:50:BC:B4:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wi1VOyjF0OpbHvYMm84z31C8tJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/rn9uhFl1x9FSSZ9iC-kqYdrD068.roa
Signing time: Sun 01 Jan 2023 13:14:51 +0000
ROA not before: Sun 01 Jan 2023 13:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25447
IP address blocks: 91.210.220.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:7f:31:e8:1e:8b:67:21:9c:4e:12:be:eb:f3:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c22d553b28c5d0ea5b1ef60c9bce33df50bcb493
Validity
Not Before: Jan 1 13:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae7f6e845975c7d152499f620be92a61dac3d3af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:12:d2:7e:44:34:4b:e7:f0:13:0c:ed:67:f6:
19:4b:4d:fa:9d:5b:1e:4b:4b:ab:84:64:c3:a8:98:
a3:32:92:f7:86:55:ec:a9:d1:58:8f:4d:39:35:a8:
7a:0d:e3:4e:a9:35:ac:a9:89:ac:6c:07:b5:8d:b5:
98:c6:ee:c0:03:30:fa:36:00:9f:b1:03:54:01:50:
9d:a9:6a:28:13:68:50:81:9a:70:75:f3:03:83:2e:
10:6d:ca:34:86:48:c7:9b:c5:7c:a6:3c:ea:05:9a:
e2:af:8e:f7:b0:48:68:c5:ac:80:5b:ca:90:51:15:
b9:6b:de:21:dc:5d:2f:f0:19:d8:0c:41:36:20:e4:
91:57:1d:ae:7d:f7:9e:78:27:34:bd:0f:83:26:1a:
3d:19:36:d8:7d:c8:43:95:6b:8a:2e:68:cb:2d:e2:
88:6e:5e:52:82:fa:c8:74:61:57:d7:fb:6a:ee:bd:
e6:49:c1:25:04:c4:c0:52:f7:c3:e5:fc:31:b2:85:
7f:c5:bc:95:eb:78:f4:e5:bc:ce:f3:c1:6e:05:e4:
dc:4f:0c:f0:59:75:6e:11:a9:1d:c1:9d:be:2b:ee:
e6:96:2c:b1:27:e1:1d:9d:2f:2a:8c:1a:e1:d6:89:
e0:45:b7:c3:d1:37:c0:83:f0:fb:da:72:e8:13:5c:
8e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7F:6E:84:59:75:C7:D1:52:49:9F:62:0B:E9:2A:61:DA:C3:D3:AF
X509v3 Authority Key Identifier:
keyid:C2:2D:55:3B:28:C5:D0:EA:5B:1E:F6:0C:9B:CE:33:DF:50:BC:B4:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wi1VOyjF0OpbHvYMm84z31C8tJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/rn9uhFl1x9FSSZ9iC-kqYdrD068.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/wi1VOyjF0OpbHvYMm84z31C8tJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:22:e8:c5:36:a7:9d:20:9e:37:d2:15:0d:9a:87:05:39:96:
c6:1c:6e:6b:de:d4:c8:3c:c5:8c:eb:ed:1e:9f:aa:82:23:69:
1d:5a:28:ff:e2:52:43:a6:05:49:ad:2b:a3:65:63:41:b6:73:
b8:2d:60:83:26:1b:02:12:90:a5:6d:b9:10:75:a8:e7:25:e6:
bf:24:c0:08:b7:29:58:08:39:88:08:69:e9:b0:4e:69:07:ef:
f1:09:9a:29:98:92:78:0b:82:e3:51:c7:54:5e:c2:f9:a5:71:
d6:8d:37:92:3c:cc:2d:99:67:db:09:0e:21:66:1b:43:77:6b:
bc:aa:ad:1e:89:04:5a:31:b3:f5:36:84:7d:53:98:41:9c:d5:
24:91:4c:ad:65:0f:11:28:3f:34:bc:25:bb:91:af:42:d5:97:
07:ae:74:b5:d8:14:f2:e7:94:37:2f:46:4f:13:b3:aa:50:d9:
31:78:00:ad:e9:dd:c5:bd:b8:85:25:55:2e:5b:3d:43:c7:4c:
4f:2f:eb:d2:ef:88:03:16:00:ec:d6:62:f5:f9:e2:d2:e9:35:
1d:59:66:a4:f8:3e:a6:b8:25:87:b7:f8:37:06:c1:d8:6c:c1:
b0:68:ad:7a:75:4c:0e:b6:de:2c:43:57:0d:22:80:68:cb:f1:
7c:a4:ee:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVteH8x6B6LZyGcThK+6/MLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyMmQ1NTNiMjhjNWQwZWE1YjFlZjYwYzliY2UzM2RmNTBi
Y2I0OTMwHhcNMjMwMTAxMTMxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTdmNmU4NDU5NzVjN2QxNTI0OTlmNjIwYmU5MmE2MWRhYzNkM2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBLSfkQ0S+fwEwztZ/YZS036nVse
S0urhGTDqJijMpL3hlXsqdFYj005Nah6DeNOqTWsqYmsbAe1jbWYxu7AAzD6NgCf
sQNUAVCdqWooE2hQgZpwdfMDgy4Qbco0hkjHm8V8pjzqBZrir473sEhoxayAW8qQ
URW5a94h3F0v8BnYDEE2IOSRVx2uffeeeCc0vQ+DJho9GTbYfchDlWuKLmjLLeKI
bl5SgvrIdGFX1/tq7r3mScElBMTAUvfD5fwxsoV/xbyV63j05bzO88FuBeTcTwzw
WXVuEakdwZ2+K+7mliyxJ+EdnS8qjBrh1ongRbfD0TfAg/D72nLoE1yODwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK5/boRZdcfRUkmfYgvpKmHaw9OvMB8GA1UdIwQY
MBaAFMItVTsoxdDqWx72DJvOM99QvLSTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd2kxVk95akYwT3BiSHZZTW04NHozMUM4dEpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTc2NDQtOTNkNC00NDU3LThlNWUt
OTY3NTA2ODg1N2YxLzEvcm45dWhGbDF4OUZTU1o5aUMta3FZZHJEMDY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9lMTc2NDQtOTNkNC00NDU3LThlNWUtOTY3NTA2ODg1N2Yx
LzEvd2kxVk95akYwT3BiSHZZTW04NHozMUM4dEpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW9LcMA0G
CSqGSIb3DQEBCwUAA4IBAQCoIujFNqedIJ430hUNmocFOZbGHG5r3tTIPMWM6+0e
n6qCI2kdWij/4lJDpgVJrSujZWNBtnO4LWCDJhsCEpClbbkQdajnJea/JMAItylY
CDmICGnpsE5pB+/xCZopmJJ4C4LjUcdUXsL5pXHWjTeSPMwtmWfbCQ4hZhtDd2u8
qq0eiQRaMbP1NoR9U5hBnNUkkUytZQ8RKD80vCW7ka9C1ZcHrnS12BTy55Q3L0ZP
E7OqUNkxeACt6d3FvbiFJVUuWz1Dx0xPL+vS74gDFgDs1mL1+eLS6TUdWWak+D6m
uCWHt/g3BsHYbMGwaK16dUwOtt4sQ1cNIoBoy/F8pO40
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:03:06 2024 by rpki-client on console.sobornost.net