Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/Z8Jim2LKCLA6qynPUHEJZcl_Ttk.roa
File: Z8Jim2LKCLA6qynPUHEJZcl_Ttk.roa (raw, json)
Hash identifier: knldOlisW7P0A7K8fDPs79YGbKWm+Vvkoh5KLko+0g8=
Subject key identifier: 67:C2:62:9B:62:CA:08:B0:3A:AB:29:CF:50:71:09:65:C9:7F:4E:D9
Certificate issuer: /CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Certificate serial: 01856D6F5B66A3B7212056CBE16729216C8F
Authority key identifier: 1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/Z8Jim2LKCLA6qynPUHEJZcl_Ttk.roa
Signing time: Sun 01 Jan 2023 13:04:52 +0000
ROA not before: Sun 01 Jan 2023 13:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210568
IP address blocks: 193.111.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:5b:66:a3:b7:21:20:56:cb:e1:67:29:21:6c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Validity
Not Before: Jan 1 13:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67c2629b62ca08b03aab29cf50710965c97f4ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:10:55:3b:ee:dc:6d:49:86:92:36:9a:f6:cd:
11:5f:ad:c9:fe:34:1b:e0:e0:ee:98:ca:85:23:32:
ef:13:9e:27:97:66:c2:5d:17:94:e9:d2:29:0e:e6:
86:cc:2b:5a:fd:cc:28:eb:21:c6:43:c8:dc:4a:b8:
21:86:ca:14:eb:09:5b:9a:43:ea:4d:d2:62:3b:7c:
ed:13:a1:fb:2e:43:dd:2c:47:dc:d2:da:80:ab:c1:
7c:1d:ac:09:f0:dc:36:df:8d:d3:f4:43:7f:1d:c1:
60:a0:6a:6f:e9:27:9f:43:f6:e7:eb:c6:d7:55:9a:
3e:c5:d2:46:84:b1:06:0a:e5:22:a0:d1:5e:43:33:
e9:73:dc:6f:d9:3b:45:c6:d7:7d:a9:c7:87:fe:27:
35:85:d9:ec:c9:ed:e9:03:16:18:d1:b1:f7:6f:ce:
e0:e0:6d:90:14:04:48:a3:6c:a3:cc:e8:2f:d4:28:
09:4c:0b:b7:1d:c2:a4:72:1e:10:29:14:9b:e2:f1:
30:35:38:3d:9f:d4:78:54:86:d4:60:c2:a6:eb:04:
fe:53:20:80:85:ed:e9:3b:20:e1:a6:4d:d1:8e:8b:
66:89:14:02:76:d1:be:d3:70:7c:27:ff:21:76:8f:
20:64:39:d4:fa:1c:3d:34:19:f1:0b:d9:cb:04:b3:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C2:62:9B:62:CA:08:B0:3A:AB:29:CF:50:71:09:65:C9:7F:4E:D9
X509v3 Authority Key Identifier:
keyid:1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/Z8Jim2LKCLA6qynPUHEJZcl_Ttk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/GpRvSoJtYiozjtg-CvzfeMh2BPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.28.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:19:60:9a:2e:c2:2f:0f:e4:34:16:ed:56:a7:67:1a:0d:17:
88:90:58:7f:30:dc:11:3d:75:2a:19:53:a1:91:e4:af:3c:f9:
c9:4b:ca:90:78:aa:15:6d:7c:a9:18:93:31:c1:08:1f:e0:eb:
58:cc:6c:3c:72:c0:6c:1f:23:bd:ae:d5:fc:ca:01:96:6d:9b:
3c:42:2b:e2:ff:cd:6a:c4:d5:b4:1a:92:bb:8b:c3:45:7a:89:
7a:5a:89:54:9c:37:27:5f:9c:b9:d2:09:94:ca:bb:02:b6:df:
d8:f5:53:57:c0:ed:88:56:e3:1f:9b:16:e3:fe:1d:13:fd:f0:
21:d5:80:76:16:43:16:7d:5c:38:10:6a:00:44:6c:f6:33:cc:
0b:a5:02:d4:35:dd:0a:f2:57:85:12:54:2a:2c:35:ee:b9:17:
a8:b7:10:da:15:4c:82:01:74:24:c5:70:22:5c:63:dd:7b:27:
fb:6e:c6:51:aa:ca:40:30:8c:03:88:c1:32:6b:57:12:3e:71:
20:86:70:a0:56:a6:ac:28:5e:9f:6b:db:c0:60:3c:47:91:cd:
3e:8c:f9:ad:06:a5:8d:1a:76:4e:25:28:54:b2:cb:1c:0a:ba:
98:a3:01:b1:b1:6b:44:8f:04:d9:4a:bc:30:e0:3a:e5:71:cf:
5b:40:14:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:54 2024 by rpki-client on console.sobornost.net