Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/UrHUDu87CARwQeNRSRdRsC6yrUw.roa
File: UrHUDu87CARwQeNRSRdRsC6yrUw.roa (raw, json)
Hash identifier: fpG91jS3Mz19Bj/HlvIEIGJbRSAzmcivL72B2iLgSSo=
Subject key identifier: 52:B1:D4:0E:EF:3B:08:04:70:41:E3:51:49:17:51:B0:2E:B2:AD:4C
Certificate issuer: /CN=2cac84ceec57b35fa39534ae23009aea820239aa
Certificate serial: 0188B951F83DC15213B231F75C27736F77EA
Authority key identifier: 2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/UrHUDu87CARwQeNRSRdRsC6yrUw.roa
Signing time: Wed 14 Jun 2023 09:52:16 +0000
ROA not before: Wed 14 Jun 2023 09:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49446
IP address blocks: 91.213.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:51:f8:3d:c1:52:13:b2:31:f7:5c:27:73:6f:77:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cac84ceec57b35fa39534ae23009aea820239aa
Validity
Not Before: Jun 14 09:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52b1d40eef3b08047041e351491751b02eb2ad4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2d:7f:d9:63:11:73:47:08:fa:0d:b7:56:fd:
07:e8:c4:3d:0e:6a:a9:23:6b:8a:32:0e:f6:9b:9b:
0c:41:97:9c:52:21:bd:27:ed:0f:51:c2:67:c4:30:
aa:06:71:9c:61:8c:59:09:61:70:52:5c:6b:69:1b:
b2:10:93:a8:72:81:ba:04:3f:39:3b:52:25:9f:3f:
68:f6:31:72:6a:47:bf:e9:31:f6:0f:d8:83:02:d3:
9d:53:4b:d9:bd:d8:b9:7b:df:3e:1e:7c:2d:de:84:
24:99:f9:da:33:1d:cd:f1:3d:16:17:df:3b:8f:3f:
07:e8:81:32:18:56:00:45:f7:c2:e2:a5:0b:cf:d7:
ae:c7:38:2f:d7:33:c3:9b:3a:cb:ba:e7:68:2d:fe:
f6:10:d3:7e:23:bd:e6:b1:d1:c4:d5:58:95:ef:e3:
63:78:fd:9c:32:09:8a:dc:59:59:24:9b:62:45:9a:
7e:94:54:9a:26:d2:d6:26:fd:18:53:80:5b:a9:42:
41:eb:70:1e:eb:71:c2:11:09:ba:87:9f:4a:5f:f3:
6f:59:f8:d4:d8:87:4f:d5:1a:22:0f:b8:e2:f2:c0:
b6:b1:93:87:ca:7c:ce:23:5b:1f:b1:ef:5c:09:cc:
c1:82:6d:17:39:6f:5a:2b:3a:5d:b1:4b:40:5b:b7:
2d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B1:D4:0E:EF:3B:08:04:70:41:E3:51:49:17:51:B0:2E:B2:AD:4C
X509v3 Authority Key Identifier:
keyid:2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/UrHUDu87CARwQeNRSRdRsC6yrUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.2.0/24
Signature Algorithm: sha256WithRSAEncryption
82:69:ea:b1:74:a5:3f:0f:05:4b:8e:6f:0d:aa:74:06:dd:ff:
db:d9:6a:92:48:64:d2:8d:54:e8:ac:38:83:b9:ed:4f:ce:e3:
fa:e1:f3:27:08:9a:8b:87:71:d8:c3:6b:d2:0f:a6:3c:79:47:
e6:e9:7f:bf:6a:69:f2:6b:a2:76:73:a7:01:3a:d5:49:98:3a:
1f:d1:eb:9e:72:80:9e:70:d1:3e:95:2a:5b:6a:11:27:b1:33:
71:24:80:85:e1:9b:e2:d5:18:ab:23:0f:66:83:05:15:ba:44:
43:f7:b6:23:d7:31:91:0b:d7:8c:b1:40:28:6c:05:03:3a:df:
11:06:61:75:33:84:eb:bb:b9:99:bb:bd:c3:7b:9c:a4:7e:10:
1c:59:21:0f:2a:8f:c0:0a:23:ee:44:90:b2:55:25:d0:bd:b0:
b5:b0:61:44:ec:ec:4d:f7:64:e8:07:b7:9b:fd:00:db:76:4f:
e9:3b:b2:d4:14:00:fe:51:a7:d4:87:fb:26:30:83:ef:e5:4d:
8e:5c:7b:e7:79:b5:02:bf:8b:32:73:d8:b7:29:b1:71:bf:8e:
24:7e:0b:46:08:3b:87:27:4b:2a:63:33:e5:b0:b0:53:59:70:
b7:2e:5c:21:67:f6:56:d8:1b:16:d8:c3:bd:77:43:ea:7b:01:
87:90:28:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:32 2024 by rpki-client on console.sobornost.net