Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/lwV4AEhk215p61YUjmyXJzA9piM.roa
File: lwV4AEhk215p61YUjmyXJzA9piM.roa (raw, json)
Hash identifier: t9pvI+uOh3RGAw4EH1c5VVrtmiGo8jXRBlqapGyN76I=
Subject key identifier: 97:05:78:00:48:64:DB:5E:69:EB:56:14:8E:6C:97:27:30:3D:A6:23
Certificate issuer: /CN=373b47a3cee79982adb170341d02026027332023
Certificate serial: 018570305B4712E21A56F2C1DF86DA4B84F2
Authority key identifier: 37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/lwV4AEhk215p61YUjmyXJzA9piM.roa
Signing time: Mon 02 Jan 2023 01:54:55 +0000
ROA not before: Mon 02 Jan 2023 01:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61167
IP address blocks: 5.159.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:5b:47:12:e2:1a:56:f2:c1:df:86:da:4b:84:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373b47a3cee79982adb170341d02026027332023
Validity
Not Before: Jan 2 01:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=970578004864db5e69eb56148e6c9727303da623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4f:02:57:c3:17:6b:da:05:62:fa:7a:b8:db:
b0:ea:7c:f5:c3:64:95:3e:78:f3:89:ed:06:5d:f5:
a8:f4:d5:15:de:84:8a:e9:bf:62:66:91:e1:6a:96:
a6:93:1b:a6:0a:13:a9:cf:39:22:d9:61:88:c5:0e:
88:cf:22:a3:9e:54:96:0e:26:7a:4e:4c:6a:19:fe:
26:46:42:23:6d:bc:8f:d8:da:eb:52:1e:02:bc:b5:
10:66:08:a7:36:cb:64:eb:fa:74:91:22:59:b9:42:
8f:53:48:86:88:b0:dd:26:2b:f6:6d:43:26:10:9c:
bb:fe:f1:8d:02:eb:90:28:c0:38:7d:14:66:63:ee:
36:bc:f1:da:47:d0:27:dd:f8:e2:c6:62:84:86:9a:
9a:5f:dd:69:51:8d:64:a7:b2:0c:18:5a:cf:e1:28:
c1:84:d0:f6:96:56:bc:cb:c3:78:5d:c1:4d:f2:c9:
b2:a5:e1:ee:d1:fb:93:96:96:4c:76:56:6a:37:60:
89:ea:6f:d4:a7:65:8c:89:80:99:74:3b:cf:c9:74:
7e:54:98:36:18:ec:7e:f3:77:cc:8a:59:0d:39:6d:
d1:4d:dd:1f:ea:87:74:55:be:12:83:85:d4:86:d1:
88:c9:0e:e0:21:08:9b:5d:a3:35:1c:f8:54:c3:39:
2f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:05:78:00:48:64:DB:5E:69:EB:56:14:8E:6C:97:27:30:3D:A6:23
X509v3 Authority Key Identifier:
keyid:37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/lwV4AEhk215p61YUjmyXJzA9piM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.20.0/24
Signature Algorithm: sha256WithRSAEncryption
13:fc:f4:bf:88:0c:c0:b7:09:9d:51:48:6a:02:82:49:20:ed:
2c:04:99:d3:09:54:01:6c:ae:da:af:93:e2:3a:e4:c0:5b:db:
5f:1a:fd:48:39:f7:4e:7f:1d:0e:f3:bf:63:e9:2b:92:8e:65:
68:f8:d6:27:4c:b1:05:91:e9:bf:20:78:b9:14:4e:75:07:1b:
fc:5f:fd:58:a9:c2:b2:cd:98:4c:a2:74:d2:61:26:65:0d:57:
a9:10:32:6e:1c:a5:bc:ef:ef:0f:7f:54:3a:a6:27:e2:02:be:
6c:66:d3:6b:3c:49:f0:05:26:f0:61:36:c9:a8:0f:5a:c3:f0:
90:b6:4d:f7:00:96:ff:a5:dc:92:9d:1b:da:17:97:3e:6b:03:
db:cc:5b:fb:87:16:7f:cd:90:9a:7c:af:e7:88:2e:df:a0:27:
c6:64:20:ef:32:a9:73:15:ff:ff:aa:21:78:4f:f5:33:a2:39:
91:49:67:20:73:29:45:2d:7d:d0:2d:f8:16:c6:35:ff:75:21:
de:80:94:16:0c:78:28:de:f1:39:b6:7e:b8:3b:f1:bc:7a:30:
cb:ce:cd:6d:ec:30:b2:17:69:73:e0:df:04:f1:3a:6e:54:13:
3a:0c:2c:b4:f6:66:a0:05:7d:6e:52:5f:a1:9e:dd:d7:45:1b:
75:87:df:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:37 2024 by rpki-client on console.sobornost.net