Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/_mZDVuIJ5aBLq1YO5Wk3hJ5YIxg.roa
File: _mZDVuIJ5aBLq1YO5Wk3hJ5YIxg.roa (raw, json)
Hash identifier: LJnMITnYSBczO4kTLxVFj4hL8sDzY8SKz9EEQNRrkqU=
Subject key identifier: FE:66:43:56:E2:09:E5:A0:4B:AB:56:0E:E5:69:37:84:9E:58:23:18
Certificate issuer: /CN=c9c02d4234f4bc4e87555e41c03779d5620a5155
Certificate serial: 018CCA6B99A7BD5214ED3D2B9AA9FCA29F38
Authority key identifier: C9:C0:2D:42:34:F4:BC:4E:87:55:5E:41:C0:37:79:D5:62:0A:51:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ycAtQjT0vE6HVV5BwDd51WIKUVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/_mZDVuIJ5aBLq1YO5Wk3hJ5YIxg.roa
Signing time: Tue 02 Jan 2024 13:44:58 +0000
ROA not before: Tue 02 Jan 2024 13:44:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49775
IP address blocks: 185.194.252.0/23 maxlen: 23
185.194.252.0/22 maxlen: 22
185.194.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 06 Mar 2024 14:26:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:6b:99:a7:bd:52:14:ed:3d:2b:9a:a9:fc:a2:9f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9c02d4234f4bc4e87555e41c03779d5620a5155
Validity
Not Before: Jan 2 13:44:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe664356e209e5a04bab560ee56937849e582318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:66:8c:ce:fa:01:28:ef:89:e9:c4:59:53:48:
53:b2:ae:80:59:ee:12:c3:f4:ea:fd:ba:d6:fc:f8:
74:ac:87:fa:62:d8:44:59:53:3d:68:0a:a1:4b:6d:
1e:73:b6:f7:f9:72:7e:2f:6c:17:10:9e:a5:48:65:
a7:0a:b7:14:77:b2:2d:98:1f:95:61:39:35:a3:a9:
a2:4d:e7:f9:99:86:17:46:4f:02:4e:91:5c:0c:26:
48:72:9a:03:af:17:44:c4:c1:d9:ab:9a:51:91:ed:
55:04:6f:8c:fa:6d:49:39:f8:98:77:13:d7:66:29:
72:5a:d8:ce:e3:2e:dd:1b:79:1f:bf:7f:09:95:c6:
99:c0:51:ed:88:6a:27:40:2a:18:b7:38:f9:c3:86:
44:af:7c:dc:d2:ad:5e:e5:ac:46:f8:fd:49:1e:5c:
1b:03:49:16:aa:7a:f2:cc:d3:fe:ee:a3:25:d1:3e:
3b:6a:55:8b:b3:34:09:0d:72:45:94:8d:70:68:37:
4d:37:90:85:b9:f6:30:8a:86:ae:f8:31:df:52:f9:
f7:35:7b:87:40:a5:07:d3:02:8c:eb:5c:65:d8:03:
3c:5d:0d:86:2b:fa:b9:d7:92:9e:e7:9b:26:b6:a2:
98:15:b2:ef:3a:a2:5a:c5:35:47:64:5a:30:34:d1:
c5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:66:43:56:E2:09:E5:A0:4B:AB:56:0E:E5:69:37:84:9E:58:23:18
X509v3 Authority Key Identifier:
keyid:C9:C0:2D:42:34:F4:BC:4E:87:55:5E:41:C0:37:79:D5:62:0A:51:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ycAtQjT0vE6HVV5BwDd51WIKUVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/_mZDVuIJ5aBLq1YO5Wk3hJ5YIxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/ycAtQjT0vE6HVV5BwDd51WIKUVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.252.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:0e:55:8f:43:d1:be:87:a1:90:60:6f:bd:8c:d7:84:97:41:
58:80:43:27:61:93:f9:a4:96:fb:b0:37:29:b2:bf:70:29:3c:
f3:29:a1:8e:9d:e7:ee:73:72:e5:f9:fa:53:80:27:75:b4:f9:
d2:e8:a3:ca:a3:82:de:02:f7:f0:a5:17:f9:46:a1:1b:86:ee:
ed:83:39:48:60:14:63:27:e4:b3:09:b6:45:44:cb:b6:13:52:
46:14:be:94:d9:ee:09:cf:c5:17:7e:79:0c:78:47:91:c9:d5:
1b:69:91:45:24:70:d5:13:6f:05:0e:ca:ff:95:ff:72:cc:4b:
f1:6e:6f:a7:5b:6d:4d:2d:7e:00:2d:95:b7:24:ac:1a:4b:a0:
cc:56:ed:d9:19:6e:3f:eb:2d:a0:19:24:8d:62:70:68:37:58:
35:3d:5c:c3:9d:82:3c:7c:bd:6b:68:5d:c9:15:36:b5:f4:54:
89:84:91:cc:de:91:50:31:2e:08:ce:39:74:36:0c:2d:6d:ba:
aa:9b:ca:35:87:14:32:bd:ed:2c:af:47:13:39:44:4d:43:30:
41:81:f7:15:66:7a:1c:15:fb:2c:4f:d9:39:74:5a:2b:d9:b6:
74:cf:4f:b9:a5:37:bc:f6:f5:4b:94:e1:26:fe:5a:13:8d:e9:
32:5f:44:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 6 18:13:27 2024 by rpki-client on console.sobornost.net