Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/sIR4_HO-pgyrTb22Aj_1NTSMWaQ.roa
File: sIR4_HO-pgyrTb22Aj_1NTSMWaQ.roa (raw, json)
Hash identifier: 9WhLJZwNm31vVbQ5WKgXg+jSeCo0ILLVXCFWDSVVZwc=
Subject key identifier: B0:84:78:FC:73:BE:A6:0C:AB:4D:BD:B6:02:3F:F5:35:34:8C:59:A4
Certificate issuer: /CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Certificate serial: 0186B87B1B7C8E09C7A503269706F927B496
Authority key identifier: 7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/sIR4_HO-pgyrTb22Aj_1NTSMWaQ.roa
Signing time: Mon 06 Mar 2023 19:52:00 +0000
ROA not before: Mon 06 Mar 2023 19:52:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51302
IP address blocks: 185.88.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:7b:1b:7c:8e:09:c7:a5:03:26:97:06:f9:27:b4:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Validity
Not Before: Mar 6 19:52:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b08478fc73bea60cab4dbdb6023ff535348c59a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:94:3c:15:5c:3a:d5:b4:70:ba:0e:31:60:6b:
b1:58:1f:ab:02:e0:58:af:a0:b9:d7:bf:20:de:6b:
f1:87:dd:31:eb:7b:0a:86:4b:b7:97:a1:a9:e6:83:
c7:27:87:57:4a:f5:27:7a:59:cd:c4:69:95:79:44:
01:3c:7e:d6:21:39:54:72:35:87:a9:32:29:08:06:
7c:ec:25:73:ad:e2:ba:51:e2:a8:78:cd:2d:dc:06:
54:90:0c:98:a8:f3:81:d6:ff:6e:61:07:a8:e6:a2:
55:e7:95:23:0b:7b:98:2d:b1:b7:c4:44:55:b9:f7:
11:89:89:e3:18:34:72:6d:cd:66:4b:41:cb:f0:5c:
b0:b8:7b:0c:75:16:66:c0:c4:1c:c0:d8:f7:0c:2f:
d8:07:4e:1b:b7:5f:cb:42:9e:71:aa:bb:10:ad:0e:
0c:7e:32:04:af:1e:bb:f9:0b:8c:3b:21:8e:28:b7:
a5:f5:1d:c7:ec:1a:fa:fb:06:f6:dc:00:bb:49:6c:
54:2b:11:ab:6f:8b:6c:49:74:67:1e:52:ac:e9:72:
25:89:eb:ea:06:ca:66:cc:c8:f4:4f:42:a2:2b:37:
63:2c:b1:b0:6a:f3:fb:50:c5:88:33:26:8c:39:04:
07:20:38:a8:6c:41:13:ed:fc:4f:91:78:b7:48:e2:
b0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:84:78:FC:73:BE:A6:0C:AB:4D:BD:B6:02:3F:F5:35:34:8C:59:A4
X509v3 Authority Key Identifier:
keyid:7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/sIR4_HO-pgyrTb22Aj_1NTSMWaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.129.0/24
Signature Algorithm: sha256WithRSAEncryption
38:d2:76:20:1e:0a:55:a7:38:32:af:35:a2:57:fa:70:07:8e:
fa:74:07:3d:e9:1c:d9:49:de:d9:29:75:62:18:08:83:33:38:
c3:3d:be:69:e7:b1:98:ff:b5:dd:d5:b9:c6:eb:d4:bf:c5:7a:
32:9d:d3:a1:da:fc:c8:99:6a:8a:7f:75:07:38:92:eb:0b:dc:
1b:e9:66:6a:7f:ac:2f:fe:60:a6:3e:1a:25:9a:5a:bf:fa:c6:
60:95:ea:b2:01:a6:71:a0:02:1a:49:c0:14:c6:34:b0:e3:ae:
46:0c:92:4a:7e:46:59:15:d8:b5:0a:b4:ee:5d:b6:45:b2:64:
33:4e:03:b5:7d:95:23:7c:26:29:b5:58:98:c0:0e:e9:80:8e:
28:6a:6b:9d:cf:cb:54:4a:9c:36:94:33:1e:97:68:8d:84:4e:
cb:ae:2d:ba:19:15:9c:01:5e:a8:e7:cd:f8:f6:a1:4f:08:9e:
5f:20:62:5c:9d:35:2c:fb:57:ae:df:b6:e8:74:85:7d:2b:98:
b5:62:20:fd:78:90:a1:32:22:c2:ab:dc:a9:eb:6b:86:37:a7:
78:06:39:ca:6f:55:2d:81:68:99:59:a3:bd:59:35:a1:58:39:
bd:1b:51:62:76:37:f1:7a:88:73:68:8e:0a:32:60:91:e5:2e:
63:f1:9b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net