Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/3ZnjLxtYgT7bFkyE_Rtig9zEhiE.roa
File: 3ZnjLxtYgT7bFkyE_Rtig9zEhiE.roa (raw, json)
Hash identifier: WSk7dZHC4x8ABwRaZYkJfRqztubKkv94AbGt6wgILEE=
Subject key identifier: DD:99:E3:2F:1B:58:81:3E:DB:16:4C:84:FD:1B:62:83:DC:C4:86:21
Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Certificate serial: 018572E8205851831A55633B4A44D8E151D3
Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/3ZnjLxtYgT7bFkyE_Rtig9zEhiE.roa
Signing time: Mon 02 Jan 2023 14:34:53 +0000
ROA not before: Mon 02 Jan 2023 14:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204031
IP address blocks: 146.255.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:20:58:51:83:1a:55:63:3b:4a:44:d8:e1:51:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Validity
Not Before: Jan 2 14:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd99e32f1b58813edb164c84fd1b6283dcc48621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:58:ac:10:8f:7a:e4:e9:d1:f9:48:ed:3b:c3:
e1:86:11:9a:c3:ea:c7:da:32:1c:7b:81:ea:20:15:
f6:7b:e8:43:e4:0a:58:7e:fb:9a:f5:1b:75:65:91:
2e:b7:3f:74:ee:3e:01:07:51:b4:d4:79:12:e9:c7:
3f:17:9e:b5:f3:fd:62:98:66:e7:ba:e3:09:6f:7c:
8e:91:4e:40:58:9d:0b:7f:53:35:69:1f:be:f3:32:
ed:0e:87:16:db:1d:5f:0b:18:77:af:6d:56:78:2b:
ac:9c:7b:4d:37:7c:ca:a9:57:66:63:d1:f2:3a:56:
aa:14:e3:10:b3:25:47:72:74:73:4a:b1:58:e1:8a:
62:df:41:4d:d2:0c:70:bc:37:dd:cf:f7:05:10:40:
e2:99:64:50:e7:91:52:8f:c9:51:28:e9:ab:e0:eb:
ef:e1:2c:96:3e:50:5c:7f:6b:63:c5:96:8a:01:f8:
2f:ae:81:0a:9e:c8:3c:db:7d:33:b8:4d:d4:41:2c:
59:13:92:d2:cf:06:5a:58:5f:7a:37:85:a9:32:e7:
d3:f5:7e:b6:f4:88:a1:3d:5c:b0:2e:4b:a8:ce:aa:
f9:59:84:45:cd:7b:35:39:80:3e:30:ed:39:99:2e:
6d:b8:ea:7f:4b:b3:1e:73:1d:7a:81:6e:65:f0:7b:
8b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:99:E3:2F:1B:58:81:3E:DB:16:4C:84:FD:1B:62:83:DC:C4:86:21
X509v3 Authority Key Identifier:
keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/3ZnjLxtYgT7bFkyE_Rtig9zEhiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.255.76.0/24
Signature Algorithm: sha256WithRSAEncryption
05:7b:b8:3e:06:fe:e2:3f:8e:a6:0b:6c:9b:3c:a3:25:1f:78:
77:35:b7:ea:5e:74:77:1b:f4:5a:0e:1c:92:29:04:7c:47:a9:
7a:3f:e9:90:01:32:0f:43:2b:59:57:32:b1:61:2c:c2:e1:30:
ab:05:b2:18:72:68:83:4d:5f:cd:7f:15:bb:ae:5a:c2:52:05:
e1:4b:d9:45:d0:6e:a1:89:18:9a:4b:9c:98:af:bd:53:8e:8a:
14:c8:b0:5d:89:b7:d4:ef:b6:a1:81:fe:7e:4b:1a:e1:fd:a7:
ec:c5:66:03:b1:15:c8:c2:77:70:cc:fa:f7:a3:3f:bd:73:97:
ee:8e:94:3a:58:13:88:46:81:04:6d:f9:8a:00:df:b1:03:11:
a0:75:8c:fa:fe:3b:bd:8f:ed:b7:c9:72:b2:dc:31:ff:ce:34:
b0:12:31:97:32:9e:54:52:e8:15:a0:38:75:47:86:dd:90:b4:
72:b1:f4:d5:c5:b5:81:84:61:49:8f:5a:25:4e:aa:1a:62:db:
ea:3b:13:4a:68:c6:01:2b:fc:0f:b0:61:57:ee:db:0a:32:dc:
7f:4a:bb:ce:f2:d4:ae:b0:02:13:94:1d:84:b7:85:9e:46:10:
5d:7c:6d:3d:1c:63:07:28:1d:ca:a5:0c:62:ae:b1:22:e6:04:
db:1a:c8:e4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVy6CBYUYMaVWM7SkTY4VHTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZTcyMDlhOGM5YjE3NmZiZjYyM2VkZjNlZTBiODIwMDdm
YzJjNDAwHhcNMjMwMTAyMTQzNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDk5ZTMyZjFiNTg4MTNlZGIxNjRjODRmZDFiNjI4M2RjYzQ4NjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1isEI965OnR+UjtO8PhhhGaw+rH
2jIce4HqIBX2e+hD5ApYfvua9Rt1ZZEutz907j4BB1G01HkS6cc/F5618/1imGbn
uuMJb3yOkU5AWJ0Lf1M1aR++8zLtDocW2x1fCxh3r21WeCusnHtNN3zKqVdmY9Hy
OlaqFOMQsyVHcnRzSrFY4Ypi30FN0gxwvDfdz/cFEEDimWRQ55FSj8lRKOmr4Ovv
4SyWPlBcf2tjxZaKAfgvroEKnsg8230zuE3UQSxZE5LSzwZaWF96N4WpMufT9X62
9IihPVywLkuozqr5WYRFzXs1OYA+MO05mS5tuOp/S7Mecx16gW5l8HuL+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN2Z4y8bWIE+2xZMhP0bYoPcxIYhMB8GA1UdIwQY
MBaAFJnnIJqMmxdvv2I+3z7guCAH/CxAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWVjZ21veWJGMi1fWWo3ZlB1QzRJQWY4TEVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lZjU4NTYtYmJjMC00NWE0LTg5MWUt
YjJkY2MxODYzZThiLzEvM1puakx4dFlnVDdiRmt5RV9SdGlnOXpFaGlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9lZjU4NTYtYmJjMC00NWE0LTg5MWUtYjJkY2MxODYzZThi
LzEvbWVjZ21veWJGMi1fWWo3ZlB1QzRJQWY4TEVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkv9MMA0G
CSqGSIb3DQEBCwUAA4IBAQAFe7g+Bv7iP46mC2ybPKMlH3h3NbfqXnR3G/RaDhyS
KQR8R6l6P+mQATIPQytZVzKxYSzC4TCrBbIYcmiDTV/NfxW7rlrCUgXhS9lF0G6h
iRiaS5yYr71TjooUyLBdibfU77ahgf5+Sxrh/afsxWYDsRXIwndwzPr3oz+9c5fu
jpQ6WBOIRoEEbfmKAN+xAxGgdYz6/ju9j+23yXKy3DH/zjSwEjGXMp5UUugVoDh1
R4bdkLRysfTVxbWBhGFJj1olTqoaYtvqOxNKaMYBK/wPsGFX7tsKMtx/SrvO8tSu
sAITlB2Et4WeRhBdfG09HGMHKB3KpQxirrEi5gTbGsjk
-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:51 2024 by rpki-client on console.sobornost.net