Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/pkbPJmPE7a6PmpfowIWsogiw50o.roa
File: pkbPJmPE7a6PmpfowIWsogiw50o.roa (raw, json)
Hash identifier: Gc2s9OxkzvrnNM4jMWvMcFVFijCf04CNkQ4BIQDtT1Q=
Subject key identifier: A6:46:CF:26:63:C4:ED:AE:8F:9A:97:E8:C0:85:AC:A2:08:B0:E7:4A
Certificate issuer: /CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Certificate serial: 0186B87B1BCAB626FC7ADD3E6FBF24796703
Authority key identifier: 7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/pkbPJmPE7a6PmpfowIWsogiw50o.roa
Signing time: Mon 06 Mar 2023 19:52:01 +0000
ROA not before: Mon 06 Mar 2023 19:52:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56795
IP address blocks: 85.204.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:7b:1b:ca:b6:26:fc:7a:dd:3e:6f:bf:24:79:67:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Validity
Not Before: Mar 6 19:52:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a646cf2663c4edae8f9a97e8c085aca208b0e74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:25:3f:43:16:42:a3:c7:95:05:86:07:0f:58:
22:97:a8:2a:a5:bc:2f:88:c4:eb:7f:38:60:bd:75:
ad:95:1a:8a:ec:4e:fd:bf:37:a4:6c:82:9f:f5:fa:
c4:a0:eb:f8:d5:09:cf:47:a5:9c:90:5c:27:43:a3:
43:d4:7a:98:c3:29:f6:22:64:f0:11:72:b4:0b:9d:
28:33:ae:8d:0e:8d:56:b9:bf:51:d9:68:09:5c:82:
c6:c6:0a:fc:78:eb:6b:6a:30:ae:e1:48:0c:3b:2b:
fe:7e:c4:c0:1c:7c:f0:77:01:45:ff:6d:61:fc:c2:
d5:2b:ad:83:9d:01:f5:a4:1e:93:d9:05:0e:23:88:
e8:ce:b8:49:04:4b:8c:ac:68:02:54:d2:75:75:52:
4b:ac:c7:09:25:47:b6:78:51:86:72:81:b3:f9:61:
d9:ff:25:fa:d2:c3:6e:80:d3:e2:42:28:35:90:e1:
ad:82:12:c1:a4:7a:70:27:1f:44:b9:ce:1c:20:9f:
fa:14:f0:65:0b:bb:24:75:8a:57:06:60:67:39:9f:
66:63:f6:b1:d9:e2:76:b6:15:85:0d:c6:9f:2a:66:
ed:0f:71:b1:91:ca:4f:ce:5f:84:6f:d6:f7:4b:d3:
6b:6b:0a:b6:a0:01:28:f5:d4:f7:60:1c:ff:70:31:
0c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:46:CF:26:63:C4:ED:AE:8F:9A:97:E8:C0:85:AC:A2:08:B0:E7:4A
X509v3 Authority Key Identifier:
keyid:7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/pkbPJmPE7a6PmpfowIWsogiw50o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.46.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:3e:68:d8:0f:a9:8b:77:44:33:fb:6c:5d:ec:d0:28:b6:06:
50:6d:62:61:15:e0:05:21:96:8c:29:cd:38:16:b5:ad:2b:64:
5b:10:ce:c7:a6:62:14:70:40:33:ad:17:3a:2f:63:57:71:a0:
b4:e0:b0:4b:df:18:50:1d:6f:fe:d0:5d:dc:9f:8f:7d:13:12:
5a:2b:6d:3e:6c:25:00:35:ce:d4:29:e9:7f:04:7e:9f:28:c5:
a0:71:06:21:0e:a4:c1:53:18:15:5d:89:2e:51:fc:dc:b5:7b:
4d:f3:64:b4:c2:2e:20:0b:d0:7a:0a:d5:41:93:e2:ed:3f:49:
47:fe:f6:c5:7a:81:1e:44:ef:46:ab:50:97:43:d2:68:b1:7c:
ad:7c:a0:f3:e6:7d:c4:30:1f:06:15:f0:79:67:f7:b7:7a:48:
0c:66:52:dd:1f:04:99:83:81:15:c3:3b:77:d3:b8:0e:b4:50:
a6:dd:70:9a:2a:52:88:a3:32:ba:4e:c0:17:b4:e9:8d:5c:67:
42:a4:86:22:b1:64:c8:0d:70:14:c0:61:34:94:c3:75:e9:82:
dd:f6:80:64:06:eb:7a:91:9c:9b:4e:07:ed:85:a6:ec:5e:7c:
e7:70:98:62:99:ea:e4:e2:d8:bb:ec:20:65:93:3a:14:90:8a:
5c:46:0c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:35 2024 by rpki-client on console.sobornost.net