Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/7f7b6c-4e00-47ea-83fe-6a1e923cb3b0/1/iEEKk3JiAHUFTgpakp85Vx_ztp8.roa
File: iEEKk3JiAHUFTgpakp85Vx_ztp8.roa (raw, json)
Hash identifier: d2kYml9Rl+Yb/AyX8Z8SKek1yF/C00GuYJi9AxupeHQ=
Subject key identifier: 88:41:0A:93:72:62:00:75:05:4E:0A:5A:92:9F:39:57:1F:F3:B6:9F
Certificate issuer: /CN=061e2589afdbdea582306f13c983cf24e5d9e94c
Certificate serial: 018964C13A93BA78CF32471AF89AF2A71040
Authority key identifier: 06:1E:25:89:AF:DB:DE:A5:82:30:6F:13:C9:83:CF:24:E5:D9:E9:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bh4lia_b3qWCMG8TyYPPJOXZ6Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/7f7b6c-4e00-47ea-83fe-6a1e923cb3b0/1/iEEKk3JiAHUFTgpakp85Vx_ztp8.roa
Signing time: Mon 17 Jul 2023 16:48:52 +0000
ROA not before: Mon 17 Jul 2023 16:48:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.211.171.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c1:3a:93:ba:78:cf:32:47:1a:f8:9a:f2:a7:10:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061e2589afdbdea582306f13c983cf24e5d9e94c
Validity
Not Before: Jul 17 16:48:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88410a9372620075054e0a5a929f39571ff3b69f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:40:16:09:26:ab:ec:26:9d:06:95:7d:24:8f:
a2:5f:39:a7:65:49:c7:e0:57:c9:1e:65:e3:09:40:
4d:e1:1e:4f:91:0b:be:29:5c:e8:07:34:54:20:1a:
a5:ef:ed:81:e1:93:84:78:ed:ed:e0:53:e0:6a:66:
f3:56:54:e6:1f:f7:a6:f4:6e:65:9c:d2:1c:e4:e0:
8c:c9:6a:09:d0:1f:55:71:02:a2:fb:ac:19:4e:6a:
7c:e2:4c:60:61:1a:1e:61:a2:34:02:fb:48:e6:c9:
4c:29:94:40:db:08:68:e9:f6:30:5c:16:13:f2:9e:
bb:51:01:ef:20:a2:3a:5c:5f:a4:01:a4:de:53:59:
b7:d5:90:b9:14:53:22:d6:71:54:44:64:40:70:81:
46:ca:c1:dd:72:fa:c9:a7:cb:bc:79:77:2e:ab:fb:
c5:c1:86:00:9a:19:49:c8:3d:7b:32:ba:df:e7:1a:
d2:4c:b8:6c:0d:b2:48:2d:6e:c4:11:4b:7e:33:9e:
a5:1b:14:70:02:ea:3b:a8:f0:01:7c:91:2c:c5:60:
86:fd:ec:c1:22:9c:55:a6:55:a6:91:fb:e1:10:8b:
e5:c0:f8:68:2b:81:38:66:61:3c:3c:ef:a6:4d:5b:
cc:50:fa:cf:2b:6a:41:4e:d8:b6:8e:6e:85:38:d1:
b4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:41:0A:93:72:62:00:75:05:4E:0A:5A:92:9F:39:57:1F:F3:B6:9F
X509v3 Authority Key Identifier:
keyid:06:1E:25:89:AF:DB:DE:A5:82:30:6F:13:C9:83:CF:24:E5:D9:E9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bh4lia_b3qWCMG8TyYPPJOXZ6Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/7f7b6c-4e00-47ea-83fe-6a1e923cb3b0/1/iEEKk3JiAHUFTgpakp85Vx_ztp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/7f7b6c-4e00-47ea-83fe-6a1e923cb3b0/1/Bh4lia_b3qWCMG8TyYPPJOXZ6Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.171.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:8c:11:3a:e3:64:c9:90:9b:fb:6a:c8:d4:9d:93:78:f5:3d:
aa:66:ef:51:2f:1a:c5:bf:33:6a:f6:36:6a:ab:35:27:bb:78:
c1:f9:70:62:37:b4:81:dd:f7:59:e8:42:2b:56:3e:17:fb:e3:
9c:6e:e9:33:40:03:17:d7:60:bb:60:3e:17:2f:68:59:60:34:
54:7b:46:60:f2:e2:ed:65:8f:e8:d2:96:36:bf:53:7b:de:19:
3c:9a:86:25:4a:37:cc:f8:f0:ba:4c:2d:ce:b9:c5:59:26:11:
b8:1a:d2:ff:7a:e9:d5:ce:56:e4:a1:33:05:9c:48:d4:0e:af:
cc:ca:21:3b:c3:43:45:81:91:83:e9:d9:4d:5e:96:fe:2f:3a:
76:4b:27:b0:7c:b9:e9:4b:70:20:1c:70:6f:24:98:22:74:fc:
c4:92:50:26:fb:f4:30:05:3a:fe:72:84:1e:86:e4:83:bb:fb:
4f:2b:8e:e4:1c:db:b7:8f:87:a7:3a:6f:e2:e6:d7:fe:38:35:
81:f6:00:3e:00:ac:ad:f3:a0:12:f4:a9:bf:18:82:19:2d:7e:
f8:6b:97:95:0d:1e:52:ae:a7:03:4f:b8:83:a2:15:a6:3c:79:
e6:a5:6b:3d:43:24:9a:c6:2b:56:4e:c2:c2:de:80:d5:0d:3f:
55:fe:f5:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwTqTunjPMkca+JrypxBAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MWUyNTg5YWZkYmRlYTU4MjMwNmYxM2M5ODNjZjI0ZTVk
OWU5NGMwHhcNMjMwNzE3MTY0ODUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODQxMGE5MzcyNjIwMDc1MDU0ZTBhNWE5MjlmMzk1NzFmZjNiNjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUAWCSar7CadBpV9JI+iXzmnZUnH
4FfJHmXjCUBN4R5PkQu+KVzoBzRUIBql7+2B4ZOEeO3t4FPgambzVlTmH/em9G5l
nNIc5OCMyWoJ0B9VcQKi+6wZTmp84kxgYRoeYaI0AvtI5slMKZRA2who6fYwXBYT
8p67UQHvIKI6XF+kAaTeU1m31ZC5FFMi1nFURGRAcIFGysHdcvrJp8u8eXcuq/vF
wYYAmhlJyD17Mrrf5xrSTLhsDbJILW7EEUt+M56lGxRwAuo7qPABfJEsxWCG/ezB
IpxVplWmkfvhEIvlwPhoK4E4ZmE8PO+mTVvMUPrPK2pBTti2jm6FONG0QwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIhBCpNyYgB1BU4KWpKfOVcf87afMB8GA1UdIwQY
MBaAFAYeJYmv296lgjBvE8mDzyTl2elMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmg0bGlhX2IzcVdDTUc4VHlZUFBKT1haNlV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS83ZjdiNmMtNGUwMC00N2VhLTgzZmUt
NmExZTkyM2NiM2IwLzEvaUVFS2szSmlBSFVGVGdwYWtwODVWeF96dHA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS83ZjdiNmMtNGUwMC00N2VhLTgzZmUtNmExZTkyM2NiM2Iw
LzEvQmg0bGlhX2IzcVdDTUc4VHlZUFBKT1haNlV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudOrMA0G
CSqGSIb3DQEBCwUAA4IBAQAdjBE642TJkJv7asjUnZN49T2qZu9RLxrFvzNq9jZq
qzUnu3jB+XBiN7SB3fdZ6EIrVj4X++OcbukzQAMX12C7YD4XL2hZYDRUe0Zg8uLt
ZY/o0pY2v1N73hk8moYlSjfM+PC6TC3OucVZJhG4GtL/eunVzlbkoTMFnEjUDq/M
yiE7w0NFgZGD6dlNXpb+Lzp2SyewfLnpS3AgHHBvJJgidPzEklAm+/QwBTr+coQe
huSDu/tPK47kHNu3j4enOm/i5tf+ODWB9gA+AKyt86AS9Km/GIIZLX74a5eVDR5S
rqcDT7iDohWmPHnmpWs9QySaxitWTsLC3oDVDT9V/vX4
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:31:06 2024 by rpki-client on console.sobornost.net