Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/06-iWgT9MA5MGTGayJkaG2ghN40.roa
File: 06-iWgT9MA5MGTGayJkaG2ghN40.roa (raw, json)
Hash identifier: Nl9KQ2rwsu3+A3dFcbIY4x4BHNrOFCQnh+snXOVAgBU=
Subject key identifier: D3:AF:A2:5A:04:FD:30:0E:4C:19:31:9A:C8:99:1A:1B:68:21:37:8D
Certificate issuer: /CN=b425771f992fd74dfb0736e695aeb59c6af67e93
Certificate serial: 018B27EAB7947A0D8C895936F012FA6A73DD
Authority key identifier: B4:25:77:1F:99:2F:D7:4D:FB:07:36:E6:95:AE:B5:9C:6A:F6:7E:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCV3H5kv1037Bzbmla61nGr2fpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/06-iWgT9MA5MGTGayJkaG2ghN40.roa
Signing time: Fri 13 Oct 2023 07:22:55 +0000
ROA not before: Fri 13 Oct 2023 07:22:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51438
IP address blocks: 194.77.158.0/24 maxlen: 24
2a13:b00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:27:ea:b7:94:7a:0d:8c:89:59:36:f0:12:fa:6a:73:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b425771f992fd74dfb0736e695aeb59c6af67e93
Validity
Not Before: Oct 13 07:22:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3afa25a04fd300e4c19319ac8991a1b6821378d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:13:15:13:a3:a4:a0:8a:f7:5f:b9:f6:1e:e1:
07:f5:46:89:0f:88:74:2d:94:3f:57:a2:24:e0:95:
dc:1a:ca:28:19:d5:18:3b:7c:23:8d:bf:03:90:33:
b4:05:9c:2e:ad:2b:b0:bc:17:1c:b7:52:78:13:80:
4a:6a:34:f8:cf:62:6f:a1:bc:1e:2e:f8:66:de:4f:
83:23:3e:94:cb:c8:25:ec:37:8f:e7:3b:df:85:68:
98:58:40:0a:68:79:4c:86:87:eb:0f:f7:22:84:dd:
12:11:46:64:a9:38:49:11:37:fc:8a:33:d4:61:ad:
60:54:22:c0:3b:ce:ba:f7:3f:40:98:1b:dc:df:85:
62:0b:70:0d:eb:94:2c:e0:3c:f2:5d:64:d6:45:4d:
4d:c8:f5:2b:66:30:3c:e4:a8:48:85:42:7e:c0:fb:
fb:e3:5d:0e:a4:a5:8b:fa:87:48:e3:7d:0f:fb:6a:
a9:2e:f4:8c:79:96:9f:36:ef:84:0f:c2:d5:ee:3a:
c9:a0:a8:e7:0d:fd:da:96:c1:63:fe:01:e5:b2:94:
f8:a8:aa:ff:08:02:a3:96:ec:58:ff:e6:8e:b4:7c:
78:ff:49:15:99:24:7a:1a:a4:cf:97:e2:2b:ae:bc:
45:f3:bd:8e:7e:af:dc:4b:3c:32:19:a4:b8:da:a2:
d3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AF:A2:5A:04:FD:30:0E:4C:19:31:9A:C8:99:1A:1B:68:21:37:8D
X509v3 Authority Key Identifier:
keyid:B4:25:77:1F:99:2F:D7:4D:FB:07:36:E6:95:AE:B5:9C:6A:F6:7E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCV3H5kv1037Bzbmla61nGr2fpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/06-iWgT9MA5MGTGayJkaG2ghN40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/e8f95d-ad38-4b5c-b090-8a8564ba3c8c/1/tCV3H5kv1037Bzbmla61nGr2fpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.77.158.0/24
IPv6:
2a13:b00::/29
Signature Algorithm: sha256WithRSAEncryption
45:b2:49:77:c4:bd:0b:cc:22:94:b4:4d:88:b6:f1:79:8c:ce:
85:f3:2b:35:e7:01:a0:5d:8d:36:65:ed:de:f6:e2:48:d6:65:
02:32:00:c9:93:a2:69:ba:50:16:3b:af:e7:3b:50:f7:c3:9d:
72:4c:21:6d:51:f8:a7:b1:e5:a2:07:bf:1f:be:dc:b3:44:a3:
17:1b:35:ff:10:41:d8:e6:99:56:be:82:b2:8f:a9:58:99:3b:
bb:05:20:db:18:1d:6b:04:97:a5:e7:cd:f0:ba:40:1d:fd:00:
40:6b:25:dd:0e:ba:d4:e8:99:f8:a8:5c:d8:21:e6:10:c5:fc:
f8:a0:b3:b2:5d:ae:e5:38:30:92:06:a3:98:c8:6a:5a:e2:61:
8f:5f:c7:8c:06:99:a6:4f:85:6a:52:bd:bc:c1:6e:e9:71:29:
c7:64:44:8d:24:1d:55:79:fa:40:38:85:c1:5f:63:7a:e4:25:
34:f0:13:83:7d:aa:47:39:38:4e:d7:cd:cb:5b:a7:c0:c1:a2:
ea:d0:01:bd:2d:2a:e5:32:e7:24:2d:3e:1f:11:67:42:47:96:
bc:3b:01:1f:82:ee:54:33:44:8c:72:38:d8:59:04:34:ce:ce:
97:85:df:7a:ef:d4:a4:f0:e5:90:a0:5f:0c:66:c5:7a:8e:07:
02:77:21:cb
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYsn6reUeg2MiVk28BL6anPdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MjU3NzFmOTkyZmQ3NGRmYjA3MzZlNjk1YWViNTljNmFm
NjdlOTMwHhcNMjMxMDEzMDcyMjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2FmYTI1YTA0ZmQzMDBlNGMxOTMxOWFjODk5MWExYjY4MjEzNzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxMVE6OkoIr3X7n2HuEH9UaJD4h0
LZQ/V6Ik4JXcGsooGdUYO3wjjb8DkDO0BZwurSuwvBcct1J4E4BKajT4z2Jvobwe
Lvhm3k+DIz6Uy8gl7DeP5zvfhWiYWEAKaHlMhofrD/cihN0SEUZkqThJETf8ijPU
Ya1gVCLAO8669z9AmBvc34ViC3AN65Qs4DzyXWTWRU1NyPUrZjA85KhIhUJ+wPv7
410OpKWL+odI430P+2qpLvSMeZafNu+ED8LV7jrJoKjnDf3alsFj/gHlspT4qKr/
CAKjluxY/+aOtHx4/0kVmSR6GqTPl+IrrrxF872Ofq/cSzwyGaS42qLTNwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNOvoloE/TAOTBkxmsiZGhtoITeNMB8GA1UdIwQY
MBaAFLQldx+ZL9dN+wc25pWutZxq9n6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdENWM0g1a3YxMDM3QnpibWxhNjFuR3IyZnBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9lOGY5NWQtYWQzOC00YjVjLWIwOTAt
OGE4NTY0YmEzYzhjLzEvMDYtaVdnVDlNQTVNR1RHYXlKa2FHMmdoTjQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9lOGY5NWQtYWQzOC00YjVjLWIwOTAtOGE4NTY0YmEzYzhj
LzEvdENWM0g1a3YxMDM3QnpibWxhNjFuR3IyZnBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwk2eMA0E
AgACMAcDBQMqEwsAMA0GCSqGSIb3DQEBCwUAA4IBAQBFskl3xL0LzCKUtE2ItvF5
jM6F8ys15wGgXY02Ze3e9uJI1mUCMgDJk6JpulAWO6/nO1D3w51yTCFtUfinseWi
B78fvtyzRKMXGzX/EEHY5plWvoKyj6lYmTu7BSDbGB1rBJel583wukAd/QBAayXd
DrrU6Jn4qFzYIeYQxfz4oLOyXa7lODCSBqOYyGpa4mGPX8eMBpmmT4VqUr28wW7p
cSnHZESNJB1VefpAOIXBX2N65CU08BODfapHOThO183LW6fAwaLq0AG9LSrlMuck
LT4fEWdCR5a8OwEfgu5UM0SMcjjYWQQ0zs6Xhd9679Sk8OWQoF8MZsV6jgcCdyHL
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:04 2024 by rpki-client on console.sobornost.net