Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/4z7tKL1QjsWreQNZUANu8kNxRqU.roa
File: 4z7tKL1QjsWreQNZUANu8kNxRqU.roa (raw, json)
Hash identifier: ykHzjMwFDpGYVvCLFWEfHj7fHPgFhrbZDHzliKppjvA=
Subject key identifier: E3:3E:ED:28:BD:50:8E:C5:AB:79:03:59:50:03:6E:F2:43:71:46:A5
Certificate issuer: /CN=af59d35331c9efe33c9530769325ae8ef550ffda
Certificate serial: 01856D9D449813F2E8F049FB2730C35FCECF
Authority key identifier: AF:59:D3:53:31:C9:EF:E3:3C:95:30:76:93:25:AE:8E:F5:50:FF:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r1nTUzHJ7-M8lTB2kyWujvVQ_9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/4z7tKL1QjsWreQNZUANu8kNxRqU.roa
Signing time: Sun 01 Jan 2023 13:55:01 +0000
ROA not before: Sun 01 Jan 2023 13:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208026
IP address blocks: 194.60.112.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:44:98:13:f2:e8:f0:49:fb:27:30:c3:5f:ce:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af59d35331c9efe33c9530769325ae8ef550ffda
Validity
Not Before: Jan 1 13:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e33eed28bd508ec5ab79035950036ef2437146a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6e:c1:83:45:50:d5:5a:4a:e6:77:f9:22:18:
d6:dc:30:ac:03:32:3d:88:53:d0:91:88:da:71:95:
b4:e7:f1:a5:24:17:72:94:9e:0e:c0:6e:8e:e5:1f:
70:36:50:b2:82:66:42:0f:7a:49:42:d5:40:c1:a6:
ec:08:70:f5:af:3e:e3:c8:ab:b1:4f:c7:14:61:cd:
60:c2:c7:7a:3e:4e:30:50:fb:69:69:0a:af:f2:59:
91:40:41:d1:bc:79:b1:f8:b0:e1:99:cf:e9:1b:b3:
10:02:73:02:7f:8a:51:52:e0:78:85:2f:3d:c6:1c:
36:7c:f0:cf:32:07:ae:2a:88:de:32:9f:c8:fb:bb:
3b:7b:5d:0c:02:5b:a1:7c:5c:f1:a3:ac:1c:2f:88:
26:52:31:2a:f2:09:72:d6:56:e9:6f:36:10:aa:ec:
81:f1:14:15:af:5c:30:17:cb:7c:8a:d5:80:1f:19:
2e:04:38:c2:25:8d:64:d3:b2:b7:bd:61:62:b6:51:
58:a3:3a:4d:6a:4f:0a:2c:84:27:7d:7b:80:cc:2c:
e4:b1:93:02:f9:07:b1:35:b2:07:d8:83:f0:bf:43:
26:85:1a:6f:e5:88:c8:31:e2:c1:77:09:b4:ec:a9:
ca:9f:9b:22:56:2d:a0:e4:80:c5:93:75:a6:dd:b9:
2d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3E:ED:28:BD:50:8E:C5:AB:79:03:59:50:03:6E:F2:43:71:46:A5
X509v3 Authority Key Identifier:
keyid:AF:59:D3:53:31:C9:EF:E3:3C:95:30:76:93:25:AE:8E:F5:50:FF:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r1nTUzHJ7-M8lTB2kyWujvVQ_9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/4z7tKL1QjsWreQNZUANu8kNxRqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/r1nTUzHJ7-M8lTB2kyWujvVQ_9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.112.0/20
Signature Algorithm: sha256WithRSAEncryption
59:4b:f0:3f:b6:27:68:c3:13:36:a9:fc:f9:ac:a5:cb:45:53:
31:5b:00:c9:1b:15:58:96:51:9e:bb:30:90:c9:1e:ee:15:00:
2a:d4:2d:35:11:63:e3:bf:bb:5c:37:7c:b8:f5:ca:19:62:6e:
dd:eb:26:45:7f:55:1e:d0:f1:a1:4e:5c:6c:3c:fd:3a:98:db:
97:ca:00:f9:70:39:27:c2:b5:16:3c:2a:f4:fe:a7:00:b8:63:
32:78:a4:18:8a:b3:8c:6d:85:e8:27:ab:fe:16:d3:9c:70:58:
60:5d:b7:4a:9d:c8:ca:d7:be:f8:35:27:f2:90:a3:55:65:da:
19:37:84:47:10:a8:6b:ed:58:ad:b1:07:1a:1a:b1:d1:51:2d:
a8:a5:00:1e:e7:94:bc:ce:1c:97:8b:1a:c9:5e:09:64:2d:81:
7c:8f:c8:35:e0:34:c7:e5:7b:2d:b0:36:d8:7c:5c:27:0d:17:
94:14:96:15:97:3a:fe:86:91:c3:74:a4:76:ff:7e:59:98:1c:
b6:78:58:40:16:9a:ce:63:82:86:a7:5f:64:4b:ea:94:48:d8:
05:f8:b1:2c:6e:30:5f:70:58:df:ad:0c:f1:cf:32:a3:92:90:
29:0d:df:4e:68:9f:fd:f7:10:52:f7:61:d1:42:ee:a2:69:e7:
fc:dc:00:5a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnUSYE/Lo8En7JzDDX87PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNTlkMzUzMzFjOWVmZTMzYzk1MzA3NjkzMjVhZThlZjU1
MGZmZGEwHhcNMjMwMTAxMTM1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzNlZWQyOGJkNTA4ZWM1YWI3OTAzNTk1MDAzNmVmMjQzNzE0NmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAim7Bg0VQ1VpK5nf5IhjW3DCsAzI9
iFPQkYjacZW05/GlJBdylJ4OwG6O5R9wNlCygmZCD3pJQtVAwabsCHD1rz7jyKux
T8cUYc1gwsd6Pk4wUPtpaQqv8lmRQEHRvHmx+LDhmc/pG7MQAnMCf4pRUuB4hS89
xhw2fPDPMgeuKojeMp/I+7s7e10MAluhfFzxo6wcL4gmUjEq8gly1lbpbzYQquyB
8RQVr1wwF8t8itWAHxkuBDjCJY1k07K3vWFitlFYozpNak8KLIQnfXuAzCzksZMC
+QexNbIH2IPwv0MmhRpv5YjIMeLBdwm07KnKn5siVi2g5IDFk3Wm3bktswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOM+7Si9UI7Fq3kDWVADbvJDcUalMB8GA1UdIwQY
MBaAFK9Z01Mxye/jPJUwdpMlro71UP/aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjFuVFV6SEo3LU04bFRCMmt5V3VqdlZRXzlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8xNGU2MDEtZjMxYS00MWJiLTkzZmUt
YTU5ZTZlOWFiY2M4LzEvNHo3dEtMMVFqc1dyZVFOWlVBTnU4a054UnFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8xNGU2MDEtZjMxYS00MWJiLTkzZmUtYTU5ZTZlOWFiY2M4
LzEvcjFuVFV6SEo3LU04bFRCMmt5V3VqdlZRXzlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwjxwMA0G
CSqGSIb3DQEBCwUAA4IBAQBZS/A/tidowxM2qfz5rKXLRVMxWwDJGxVYllGeuzCQ
yR7uFQAq1C01EWPjv7tcN3y49coZYm7d6yZFf1Ue0PGhTlxsPP06mNuXygD5cDkn
wrUWPCr0/qcAuGMyeKQYirOMbYXoJ6v+FtOccFhgXbdKncjK1774NSfykKNVZdoZ
N4RHEKhr7VitsQcaGrHRUS2opQAe55S8zhyXixrJXglkLYF8j8g14DTH5XstsDbY
fFwnDReUFJYVlzr+hpHDdKR2/35ZmBy2eFhAFprOY4KGp19kS+qUSNgF+LEsbjBf
cFjfrQzxzzKjkpApDd9OaJ/99xBS92HRQu6iaef83ABa
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:26 2024 by rpki-client on console.sobornost.net