Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/oqY-_1R2KqnADl8nijDR_pHuZKs.roa
File: oqY-_1R2KqnADl8nijDR_pHuZKs.roa (raw, json)
Hash identifier: v/QOIkI1UG7j6LyPIUi7fistJtYzdypAsuZ9ogC1KcU=
Subject key identifier: A2:A6:3E:FF:54:76:2A:A9:C0:0E:5F:27:8A:30:D1:FE:91:EE:64:AB
Certificate issuer: /CN=cf368592163a49ad38ffad1d419a7752b333da77
Certificate serial: 0186DF5A2BFE9EB13932CEB56BE23660CE40
Authority key identifier: CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzaFkhY6Sa04_60dQZp3UrMz2nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/oqY-_1R2KqnADl8nijDR_pHuZKs.roa
Signing time: Tue 14 Mar 2023 09:01:14 +0000
ROA not before: Tue 14 Mar 2023 09:01:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56717
IP address blocks: 91.227.7.0/24 maxlen: 24
2001:67c:2c04::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:5a:2b:fe:9e:b1:39:32:ce:b5:6b:e2:36:60:ce:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf368592163a49ad38ffad1d419a7752b333da77
Validity
Not Before: Mar 14 09:01:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2a63eff54762aa9c00e5f278a30d1fe91ee64ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ef:f4:93:70:0f:b2:47:a1:ac:79:df:30:cc:
ed:38:f5:36:3e:67:76:fb:0a:01:e3:eb:d8:d2:03:
90:6a:21:53:b2:70:15:13:ce:ee:68:9b:a4:40:91:
30:77:26:ce:3d:53:f6:fe:01:e0:79:9e:a0:b8:32:
be:e4:b0:ba:d8:ae:74:31:1e:b0:08:99:f8:d2:f7:
76:f6:a5:3a:5a:9d:78:9e:b4:08:69:4e:99:33:c9:
02:cc:e7:27:25:e5:5d:10:66:28:94:77:40:15:e8:
ab:f5:ce:6b:2e:d4:92:94:47:de:50:8e:84:a2:10:
23:c6:db:52:00:fa:90:1a:a0:fa:6d:a0:a6:af:bb:
32:14:69:21:1e:e4:b0:d3:74:0c:51:9e:64:6e:f8:
1f:48:35:73:ed:58:1f:01:67:29:14:f9:55:eb:e1:
3c:8b:60:25:cf:88:3a:3d:a5:00:b2:6b:1f:55:89:
06:99:2e:47:41:fc:9b:bf:6a:14:5a:fb:13:cf:bd:
3b:41:bb:71:39:aa:6c:83:3b:38:88:42:c5:7b:f4:
aa:bc:1f:92:24:a6:cd:0d:bd:0c:3a:81:e6:cb:a9:
0c:fd:59:cb:93:77:a5:02:bf:c5:3b:e0:50:82:ef:
1a:77:1b:c3:e8:5a:12:8a:a4:80:c2:c4:89:81:2c:
e6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A6:3E:FF:54:76:2A:A9:C0:0E:5F:27:8A:30:D1:FE:91:EE:64:AB
X509v3 Authority Key Identifier:
keyid:CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzaFkhY6Sa04_60dQZp3UrMz2nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/oqY-_1R2KqnADl8nijDR_pHuZKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/zzaFkhY6Sa04_60dQZp3UrMz2nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.7.0/24
IPv6:
2001:67c:2c04::/48
Signature Algorithm: sha256WithRSAEncryption
79:7e:15:dc:ac:83:d2:aa:72:56:f4:3a:35:6b:02:c2:71:03:
9a:1e:48:b5:58:63:c6:88:19:7d:06:87:5d:37:9b:ed:3c:f5:
c2:7d:6a:9e:b5:f4:b8:f8:86:17:d0:69:d3:a5:6f:2d:4a:b6:
5e:f3:93:b4:bf:4f:84:25:e9:b7:c4:e9:8f:9a:ca:14:b8:bc:
7b:fa:2a:c2:61:be:b6:ae:45:6c:12:0d:7d:c5:5a:99:ac:d6:
12:61:ff:56:77:36:14:e9:b3:b7:34:df:a9:79:a9:79:e7:bc:
1b:3c:c3:71:47:e9:e8:f8:98:f3:92:e4:8f:eb:f9:11:9a:23:
e7:ad:3e:6d:30:5a:99:b5:9c:18:a2:24:16:2d:47:d7:c9:8d:
f4:0a:b9:c1:08:d4:29:3f:5f:7c:dc:8a:42:fd:89:f5:ef:00:
50:7c:aa:76:05:69:cf:e3:9f:3d:e2:06:f7:46:03:33:39:6f:
43:cb:53:04:04:bd:20:be:78:ab:63:37:08:20:e2:9d:17:3d:
bf:94:0e:b5:17:2d:ef:d5:fb:05:ba:bc:30:5e:e1:cd:b1:50:
9d:75:27:b2:99:d8:97:f7:2f:b3:39:e6:96:20:ac:59:d4:58:
ae:07:e6:a8:a7:cd:17:36:ba:c5:72:18:c2:71:03:57:0e:7f:
91:67:d4:d9
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYbfWiv+nrE5Ms61a+I2YM5AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMzY4NTkyMTYzYTQ5YWQzOGZmYWQxZDQxOWE3NzUyYjMz
M2RhNzcwHhcNMjMwMzE0MDkwMTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmE2M2VmZjU0NzYyYWE5YzAwZTVmMjc4YTMwZDFmZTkxZWU2NGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+/0k3APskehrHnfMMztOPU2Pmd2
+woB4+vY0gOQaiFTsnAVE87uaJukQJEwdybOPVP2/gHgeZ6guDK+5LC62K50MR6w
CJn40vd29qU6Wp14nrQIaU6ZM8kCzOcnJeVdEGYolHdAFeir9c5rLtSSlEfeUI6E
ohAjxttSAPqQGqD6baCmr7syFGkhHuSw03QMUZ5kbvgfSDVz7VgfAWcpFPlV6+E8
i2Alz4g6PaUAsmsfVYkGmS5HQfybv2oUWvsTz707QbtxOapsgzs4iELFe/SqvB+S
JKbNDb0MOoHmy6kM/VnLk3elAr/FO+BQgu8adxvD6FoSiqSAwsSJgSzm8QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFKKmPv9UdiqpwA5fJ4ow0f6R7mSrMB8GA1UdIwQY
MBaAFM82hZIWOkmtOP+tHUGad1KzM9p3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenphRmtoWTZTYTA0XzYwZFFacDNVck16Mm5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS83MjA2YzctZmYyNi00MGNlLWJlNzEt
MjMxYWM2ZWQ5Nzg1LzEvb3FZLV8xUjJLcW5BRGw4bmlqRFJfcEh1WktzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS83MjA2YzctZmYyNi00MGNlLWJlNzEtMjMxYWM2ZWQ5Nzg1
LzEvenphRmtoWTZTYTA0XzYwZFFacDNVck16Mm5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW+MHMA8E
AgACMAkDBwAgAQZ8LAQwDQYJKoZIhvcNAQELBQADggEBAHl+Fdysg9Kqclb0OjVr
AsJxA5oeSLVYY8aIGX0Gh103m+089cJ9ap619Lj4hhfQadOlby1Ktl7zk7S/T4Ql
6bfE6Y+ayhS4vHv6KsJhvrauRWwSDX3FWpms1hJh/1Z3NhTps7c036l5qXnnvBs8
w3FH6ej4mPOS5I/r+RGaI+etPm0wWpm1nBiiJBYtR9fJjfQKucEI1Ck/X3zcikL9
ifXvAFB8qnYFac/jnz3iBvdGAzM5b0PLUwQEvSC+eKtjNwgg4p0XPb+UDrUXLe/V
+wW6vDBe4c2xUJ11J7KZ2Jf3L7M55pYgrFnUWK4H5qinzRc2usVyGMJxA1cOf5Fn
1Nk=
-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:54 2024 by rpki-client on console.sobornost.net