Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/zSjqVch26LU8PvCjs49vQ7U_On0.roa
File: zSjqVch26LU8PvCjs49vQ7U_On0.roa (raw, json)
Hash identifier: YdEWCi2L2dOhk8PtGpmGfuU1XHc6Qs3x4zGDGruQPDs=
Subject key identifier: CD:28:EA:55:C8:76:E8:B5:3C:3E:F0:A3:B3:8F:6F:43:B5:3F:3A:7D
Certificate issuer: /CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Certificate serial: 01856D2F3575FF8EE7FAAA838B406E8DBA59
Authority key identifier: 8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/zSjqVch26LU8PvCjs49vQ7U_On0.roa
Signing time: Sun 01 Jan 2023 11:54:48 +0000
ROA not before: Sun 01 Jan 2023 11:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 134.206.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:35:75:ff:8e:e7:fa:aa:83:8b:40:6e:8d:ba:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3f9e7ffe8858387ed1b3a7eca76205ef0e21f6
Validity
Not Before: Jan 1 11:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd28ea55c876e8b53c3ef0a3b38f6f43b53f3a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ec:80:89:75:7e:69:c5:02:1e:f9:b8:a5:7f:
27:af:69:d6:43:80:20:7d:f3:f2:3b:23:77:f6:7a:
e3:63:07:f0:87:20:9a:7e:d7:31:2c:63:38:43:07:
19:9e:82:b3:51:ae:27:5e:47:97:a3:a7:9d:a0:1a:
17:ae:d6:a9:1e:c3:6e:6c:8d:64:5b:86:7e:d4:a6:
ac:e1:95:14:cf:0f:b0:b9:9c:d6:8e:3b:c9:44:00:
53:0b:5d:a9:72:9d:f5:49:d3:07:7a:21:4a:21:86:
e2:fc:57:5e:77:5c:98:aa:79:dc:85:9e:98:9f:42:
5f:60:4e:fd:10:6d:38:33:2f:53:e9:f2:6d:59:a1:
15:33:3b:08:e3:df:3a:28:0a:be:8e:30:4c:61:ae:
2d:7e:8e:92:70:a3:67:fc:35:02:a9:35:21:98:11:
da:12:0b:7a:5f:07:42:8e:80:9f:d0:b4:0c:74:71:
d8:e7:92:92:fc:ef:d9:23:d7:0c:ec:a3:22:b5:ca:
ee:bf:33:aa:e0:7c:49:82:69:e3:b4:df:1f:80:00:
6d:ca:9b:ff:29:b3:8c:a1:45:21:7d:9d:52:85:e4:
77:0a:68:8b:99:08:bd:43:58:fb:32:cf:ca:9a:7f:
7f:0b:b9:e3:90:12:18:0c:93:4d:b1:b9:17:cc:43:
47:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:28:EA:55:C8:76:E8:B5:3C:3E:F0:A3:B3:8F:6F:43:B5:3F:3A:7D
X509v3 Authority Key Identifier:
keyid:8F:3F:9E:7F:FE:88:58:38:7E:D1:B3:A7:EC:A7:62:05:EF:0E:21:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jz-ef_6IWDh-0bOn7KdiBe8OIfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/zSjqVch26LU8PvCjs49vQ7U_On0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/8420e6-8c3e-4ccb-b143-e7acf941f375/1/jz-ef_6IWDh-0bOn7KdiBe8OIfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.206.0.0/16
Signature Algorithm: sha256WithRSAEncryption
29:59:d4:e3:0b:e4:22:cc:83:39:22:1c:b2:2b:be:ea:c3:b1:
93:c6:74:98:00:ce:e3:dc:38:75:25:7d:58:89:a6:80:0d:96:
4c:77:bb:28:b3:d9:d4:23:03:37:16:16:e1:56:e0:9c:17:16:
f0:57:99:ca:03:b6:5e:4f:74:fb:aa:96:ed:77:da:d8:f9:6b:
db:8a:cb:41:28:d2:1b:c9:65:c3:de:87:69:58:a6:61:24:63:
58:5e:45:16:d9:33:7e:ee:2a:65:9a:d2:a4:84:87:ef:5e:12:
0d:dd:2b:8d:32:2f:cc:d6:87:ff:5a:e6:77:63:bc:1c:4d:9c:
9f:99:34:75:79:61:f4:a3:e6:57:0f:03:9f:d9:4b:f3:31:cf:
72:d9:cd:04:86:91:44:10:bf:86:9a:ff:16:eb:36:39:93:7a:
54:96:95:eb:60:08:19:c6:b0:0b:bf:93:6d:49:ee:cc:61:19:
70:5b:51:9e:a3:8e:9b:63:80:f6:ad:65:68:8c:25:55:e9:50:
82:82:53:0b:22:6a:62:49:d1:8a:97:16:28:9d:a0:7a:70:d1:
c5:b0:f9:12:bd:61:b5:63:38:33:54:85:45:77:12:e4:dc:57:
87:8e:52:49:c4:84:22:a9:c3:95:3d:84:5f:6e:4f:ff:74:5f:
dd:cb:a9:69
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVtLzV1/47n+qqDi0BujbpZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmM2Y5ZTdmZmU4ODU4Mzg3ZWQxYjNhN2VjYTc2MjA1ZWYw
ZTIxZjYwHhcNMjMwMTAxMTE1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDI4ZWE1NWM4NzZlOGI1M2MzZWYwYTNiMzhmNmY0M2I1M2YzYTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAluyAiXV+acUCHvm4pX8nr2nWQ4Ag
ffPyOyN39nrjYwfwhyCaftcxLGM4QwcZnoKzUa4nXkeXo6edoBoXrtapHsNubI1k
W4Z+1Kas4ZUUzw+wuZzWjjvJRABTC12pcp31SdMHeiFKIYbi/Fded1yYqnnchZ6Y
n0JfYE79EG04My9T6fJtWaEVMzsI4986KAq+jjBMYa4tfo6ScKNn/DUCqTUhmBHa
Egt6XwdCjoCf0LQMdHHY55KS/O/ZI9cM7KMitcruvzOq4HxJgmnjtN8fgABtypv/
KbOMoUUhfZ1SheR3CmiLmQi9Q1j7Ms/Kmn9/C7njkBIYDJNNsbkXzENHbQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFM0o6lXIdui1PD7wo7OPb0O1Pzp9MB8GA1UdIwQY
MBaAFI8/nn/+iFg4ftGzp+ynYgXvDiH2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanotZWZfNklXRGgtMGJPbjdLZGlCZThPSWZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy84NDIwZTYtOGMzZS00Y2NiLWIxNDMt
ZTdhY2Y5NDFmMzc1LzEvelNqcVZjaDI2TFU4UHZDanM0OXZRN1VfT24wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy84NDIwZTYtOGMzZS00Y2NiLWIxNDMtZTdhY2Y5NDFmMzc1
LzEvanotZWZfNklXRGgtMGJPbjdLZGlCZThPSWZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAhs4wDQYJ
KoZIhvcNAQELBQADggEBAClZ1OML5CLMgzkiHLIrvurDsZPGdJgAzuPcOHUlfViJ
poANlkx3uyiz2dQjAzcWFuFW4JwXFvBXmcoDtl5PdPuqlu132tj5a9uKy0Eo0hvJ
ZcPeh2lYpmEkY1heRRbZM37uKmWa0qSEh+9eEg3dK40yL8zWh/9a5ndjvBxNnJ+Z
NHV5YfSj5lcPA5/ZS/Mxz3LZzQSGkUQQv4aa/xbrNjmTelSWletgCBnGsAu/k21J
7sxhGXBbUZ6jjptjgPatZWiMJVXpUIKCUwsiamJJ0YqXFiidoHpw0cWw+RK9YbVj
ODNUhUV3EuTcV4eOUknEhCKpw5U9hF9uT/90X93LqWk=
-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:56 2024 by rpki-client on console.sobornost.net