Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/in0vHK5datEMGVsk-GTuPjMWhAc.roa
File: in0vHK5datEMGVsk-GTuPjMWhAc.roa (raw, json)
Hash identifier: KbIE06cB/L7mpLAOXXHBQT19OEbZqK7xKwEQp/lqIjA=
Subject key identifier: 8A:7D:2F:1C:AE:5D:6A:D1:0C:19:5B:24:F8:64:EE:3E:33:16:84:07
Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Certificate serial: 01856F42CAF7596996016BDD60F919E83A64
Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/in0vHK5datEMGVsk-GTuPjMWhAc.roa
Signing time: Sun 01 Jan 2023 21:35:26 +0000
ROA not before: Sun 01 Jan 2023 21:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34113
IP address blocks: 185.97.104.0/24 maxlen: 24
185.97.105.0/24 maxlen: 24
185.97.106.0/24 maxlen: 24
185.97.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ca:f7:59:69:96:01:6b:dd:60:f9:19:e8:3a:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa
Validity
Not Before: Jan 1 21:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a7d2f1cae5d6ad10c195b24f864ee3e33168407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:61:56:a3:6a:73:01:9e:3a:a8:e4:73:bc:
ed:2a:f6:7d:e6:7e:68:d9:d5:c5:f3:aa:66:56:bc:
d0:08:d0:96:8b:a5:42:45:ae:e0:15:d4:98:81:3a:
fb:fe:1a:b6:5a:b7:ac:5a:d7:69:72:60:54:17:ba:
62:d5:5c:4a:3b:04:a6:14:dd:02:ce:ba:15:ca:e0:
e4:5c:de:a7:36:d9:f1:5e:5e:a1:54:26:42:20:06:
73:8c:a0:07:ba:5b:54:67:f1:6e:f3:d7:f9:71:e2:
b4:db:cc:ae:82:be:8d:b9:4d:21:87:ab:0b:5e:2c:
d0:6e:b7:17:14:5c:0a:60:77:46:75:23:36:da:eb:
9b:eb:be:1b:9c:62:e9:20:b1:f8:29:9f:93:f9:42:
a7:72:c9:24:3a:ca:5a:8f:2f:d2:15:05:20:24:c8:
1e:b7:e6:2b:1c:36:29:4b:23:e6:20:f1:70:63:45:
3c:0e:9b:51:35:af:e6:5e:6b:a2:f7:20:fb:e9:94:
99:1a:f8:b1:b8:04:21:ab:6b:fb:ef:98:4b:0e:32:
de:cd:98:79:3a:b7:6d:af:ce:73:2f:ec:f5:49:f7:
82:0f:ae:32:0d:94:15:e2:ca:01:df:aa:fa:ca:90:
35:51:d5:a5:7d:b5:59:2a:f5:c6:a6:e6:5f:ab:f6:
25:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:7D:2F:1C:AE:5D:6A:D1:0C:19:5B:24:F8:64:EE:3E:33:16:84:07
X509v3 Authority Key Identifier:
keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/in0vHK5datEMGVsk-GTuPjMWhAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.104.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:91:dc:5a:75:f7:20:94:d1:53:dd:79:14:04:b1:e5:50:c2:
65:09:4d:eb:f6:37:d1:35:18:15:5e:d0:24:e9:31:8e:cf:ca:
ec:d4:36:67:59:63:95:16:ed:d3:3f:c6:0b:17:ff:0c:c3:1e:
f3:7d:b9:b7:96:df:2a:af:3a:7a:c5:71:ef:f4:52:25:74:41:
fc:e2:ca:74:63:e7:f9:25:24:82:7c:5d:ec:2e:a7:ed:00:46:
65:84:ed:ad:17:00:01:68:15:fc:ee:7c:ea:61:97:f4:2e:ae:
f7:dd:97:84:92:75:c6:9a:39:66:73:63:67:12:cb:b0:ca:20:
b6:e0:2a:e8:35:c7:b7:d0:5b:0a:24:6e:80:87:04:8c:11:95:
2e:ed:2f:b8:15:13:a6:88:2a:71:29:0d:21:c5:01:5e:a4:17:
79:ea:19:ae:05:55:28:8b:3d:8b:a4:99:ba:6b:bd:6d:3e:db:
3d:0d:08:32:fb:9a:eb:76:f5:96:41:4e:f7:c7:9e:5e:9e:5f:
fb:c0:6e:6d:e8:23:a3:b8:60:7b:9a:61:cc:cc:ed:fa:5f:89:
7f:59:0e:75:c7:03:52:dd:1d:45:3e:53:f5:ce:e0:a1:dc:22:
97:44:4a:af:93:fd:9b:49:9b:dd:2f:c8:ec:db:63:cd:24:f0:
6d:d7:b8:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQsr3WWmWAWvdYPkZ6DpkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzFjNjRjM2U1YTdkZTEwNDBmNDBkYThmZWRjNDdjMzhm
ZTU5ZmEwHhcNMjMwMTAxMjEzNTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTdkMmYxY2FlNWQ2YWQxMGMxOTViMjRmODY0ZWUzZTMzMTY4NDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCBhVqNqcwGeOqjkc7ztKvZ95n5o
2dXF86pmVrzQCNCWi6VCRa7gFdSYgTr7/hq2WresWtdpcmBUF7pi1VxKOwSmFN0C
zroVyuDkXN6nNtnxXl6hVCZCIAZzjKAHultUZ/Fu89f5ceK028yugr6NuU0hh6sL
XizQbrcXFFwKYHdGdSM22uub674bnGLpILH4KZ+T+UKncskkOspajy/SFQUgJMge
t+YrHDYpSyPmIPFwY0U8DptRNa/mXmui9yD76ZSZGvixuAQhq2v775hLDjLezZh5
Ordtr85zL+z1SfeCD64yDZQV4soB36r6ypA1UdWlfbVZKvXGpuZfq/YlnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIp9LxyuXWrRDBlbJPhk7j4zFoQHMB8GA1UdIwQY
MBaAFG8xxkw+Wn3hBA9A2o/txHw4/ln6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTIt
YjA4MGEzNDUxYzdmLzEvaW4wdkhLNWRhdEVNR1Zzay1HVHVQak1XaEFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTItYjA4MGEzNDUxYzdm
LzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWFoMA0G
CSqGSIb3DQEBCwUAA4IBAQAqkdxadfcglNFT3XkUBLHlUMJlCU3r9jfRNRgVXtAk
6TGOz8rs1DZnWWOVFu3TP8YLF/8Mwx7zfbm3lt8qrzp6xXHv9FIldEH84sp0Y+f5
JSSCfF3sLqftAEZlhO2tFwABaBX87nzqYZf0Lq733ZeEknXGmjlmc2NnEsuwyiC2
4CroNce30FsKJG6AhwSMEZUu7S+4FROmiCpxKQ0hxQFepBd56hmuBVUoiz2LpJm6
a71tPts9DQgy+5rrdvWWQU73x55enl/7wG5t6COjuGB7mmHMzO36X4l/WQ51xwNS
3R1FPlP1zuCh3CKXREqvk/2bSZvdL8js22PNJPBt17it
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:06 2024 by rpki-client on console.sobornost.net