Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/1ZjhZjJE9yy7Brg-hE4ktgpoGcc.roa
File: 1ZjhZjJE9yy7Brg-hE4ktgpoGcc.roa (raw, json)
Hash identifier: WtUwTVI0oCClg0k4kwZtuOHDE0OUGRW0uRjKI+SYTSk=
Subject key identifier: D5:98:E1:66:32:44:F7:2C:BB:06:B8:3E:84:4E:24:B6:0A:68:19:C7
Certificate issuer: /CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13
Certificate serial: 01880A5346609FBDB42682857C3759325743
Authority key identifier: 0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/1ZjhZjJE9yy7Brg-hE4ktgpoGcc.roa
Signing time: Thu 11 May 2023 10:20:09 +0000
ROA not before: Thu 11 May 2023 10:20:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199967
IP address blocks: 194.156.228.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:53:46:60:9f:bd:b4:26:82:85:7c:37:59:32:57:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13
Validity
Not Before: May 11 10:20:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d598e1663244f72cbb06b83e844e24b60a6819c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:6b:9f:37:26:69:23:e5:61:d2:09:ce:56:
db:21:81:92:9f:12:da:af:d3:28:9f:4e:5e:8f:b4:
7d:2d:87:17:78:ed:67:08:b6:0d:85:8f:54:29:16:
7b:59:32:0e:45:af:70:73:e1:3a:4d:0c:dc:a3:07:
5a:70:2e:56:60:17:94:1b:e4:6c:a4:a7:26:89:cf:
d1:91:26:ca:59:f8:c7:83:a4:55:cc:6b:8a:12:31:
98:09:03:11:6b:e1:23:bf:20:5c:ba:97:ec:e3:cf:
39:ad:21:6f:97:47:a2:19:1b:1a:98:90:ab:a1:56:
32:05:72:4c:00:73:f0:a1:6d:b2:e2:d6:b1:ea:86:
1f:03:4c:34:cb:ba:ee:24:e2:b8:14:17:90:52:27:
b1:b4:18:98:db:14:5c:37:53:4d:38:6b:78:48:3f:
97:20:06:67:09:e8:58:35:e4:2e:86:bf:6e:3c:6a:
1a:83:14:88:78:42:73:fd:c3:c2:3d:fe:41:4c:52:
24:b4:77:b7:da:48:f7:5c:f6:0b:98:67:82:7a:37:
8d:b2:a6:af:64:95:ab:cc:de:cd:01:c3:8b:5d:7c:
ec:85:08:07:f5:7d:af:a7:07:82:b1:37:d4:43:0c:
3d:4f:5b:ca:af:f3:35:99:e6:dd:93:b9:4a:a1:e3:
b2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:98:E1:66:32:44:F7:2C:BB:06:B8:3E:84:4E:24:B6:0A:68:19:C7
X509v3 Authority Key Identifier:
keyid:0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/1ZjhZjJE9yy7Brg-hE4ktgpoGcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CyR-czkeydaipG8ssLAvyZQojxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.228.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e2:60:23:d1:7e:e4:34:62:7e:26:a0:f5:30:58:98:d3:17:
bd:b5:5c:e7:8a:b6:54:2b:a6:d7:7d:0d:07:ba:04:8a:91:e1:
c7:40:d3:25:a3:5e:86:5e:f5:c7:d9:78:30:5c:d6:38:8e:c7:
82:c6:6a:4e:c6:27:cc:36:b6:77:1b:e0:d7:7b:44:d1:04:e7:
b8:3d:e7:03:60:3c:05:c4:33:df:74:bd:0a:a7:f3:b1:cd:0a:
22:1e:8c:fa:36:48:11:a4:78:37:ee:64:57:a5:4e:4c:15:7d:
14:c2:a4:93:8d:c5:41:a2:26:2f:36:61:fb:89:bd:34:e1:81:
06:6b:c1:ac:37:aa:d5:f0:a9:d0:74:ce:f1:10:a9:91:c2:95:
89:bc:33:30:be:ad:c3:fc:f0:34:d2:2a:57:58:d8:f6:1d:53:
12:b9:6a:80:da:8a:16:ba:91:46:e9:58:8a:77:70:f9:05:79:
a4:1b:4f:c2:73:99:94:34:38:76:ca:fc:52:fd:56:85:0f:07:
0b:6a:69:06:fa:2f:17:d6:31:b7:06:e5:fe:dc:5c:84:b9:41:
61:73:e3:97:6c:cf:6a:02:d5:6a:ff:84:85:6b:03:60:37:83:
6b:73:14:43:2d:05:df:e9:cf:75:dd:89:89:0b:7d:5d:ef:01:
c3:23:81:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgKU0Zgn720JoKFfDdZMldDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiMjQ3ZTczMzkxZWM5ZDZhMmE0NmYyY2IwYjAyZmM5OTQy
ODhmMTMwHhcNMjMwNTExMTAyMDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTk4ZTE2NjMyNDRmNzJjYmIwNmI4M2U4NDRlMjRiNjBhNjgxOWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9lrnzcmaSPlYdIJzlbbIYGSnxLa
r9Mon05ej7R9LYcXeO1nCLYNhY9UKRZ7WTIORa9wc+E6TQzcowdacC5WYBeUG+Rs
pKcmic/RkSbKWfjHg6RVzGuKEjGYCQMRa+EjvyBcupfs4885rSFvl0eiGRsamJCr
oVYyBXJMAHPwoW2y4tax6oYfA0w0y7ruJOK4FBeQUiextBiY2xRcN1NNOGt4SD+X
IAZnCehYNeQuhr9uPGoagxSIeEJz/cPCPf5BTFIktHe32kj3XPYLmGeCejeNsqav
ZJWrzN7NAcOLXXzshQgH9X2vpweCsTfUQww9T1vKr/M1mebdk7lKoeOyqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNWY4WYyRPcsuwa4PoROJLYKaBnHMB8GA1UdIwQY
MBaAFAskfnM5HsnWoqRvLLCwL8mUKI8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3lSLWN6a2V5ZGFpcEc4c3NMQXZ5WlFvanhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iM2ZkNDAtYjEyNS00MjgyLWI4ODMt
NzM2Nzg5ZWU2ZmQwLzEvMVpqaFpqSkU5eXk3QnJnLWhFNGt0Z3BvR2NjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iM2ZkNDAtYjEyNS00MjgyLWI4ODMtNzM2Nzg5ZWU2ZmQw
LzEvQ3lSLWN6a2V5ZGFpcEc4c3NMQXZ5WlFvanhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpzkMA0G
CSqGSIb3DQEBCwUAA4IBAQAx4mAj0X7kNGJ+JqD1MFiY0xe9tVznirZUK6bXfQ0H
ugSKkeHHQNMlo16GXvXH2XgwXNY4jseCxmpOxifMNrZ3G+DXe0TRBOe4PecDYDwF
xDPfdL0Kp/OxzQoiHoz6NkgRpHg37mRXpU5MFX0UwqSTjcVBoiYvNmH7ib004YEG
a8GsN6rV8KnQdM7xEKmRwpWJvDMwvq3D/PA00ipXWNj2HVMSuWqA2ooWupFG6ViK
d3D5BXmkG0/Cc5mUNDh2yvxS/VaFDwcLamkG+i8X1jG3BuX+3FyEuUFhc+OXbM9q
AtVq/4SFawNgN4NrcxRDLQXf6c913YmJC31d7wHDI4Gh
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:23 2023 by rpki-client on console-ams.rpki-client.org