Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/zIzX9EDVT_bHEnz3SP0DLIZ9WNU.roa
File: zIzX9EDVT_bHEnz3SP0DLIZ9WNU.roa (raw, json)
Hash identifier: DX2tEDFsnbsujke1SeEfyhn+e6zLV7VznpydMyE75mQ=
Subject key identifier: CC:8C:D7:F4:40:D5:4F:F6:C7:12:7C:F7:48:FD:03:2C:86:7D:58:D5
Certificate issuer: /CN=be40b3c2be7835d7b37b5826102f8746a5199d49
Certificate serial: 01856BE5BC575943998DD024A87321175CC1
Authority key identifier: BE:40:B3:C2:BE:78:35:D7:B3:7B:58:26:10:2F:87:46:A5:19:9D:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkCzwr54Ndeze1gmEC-HRqUZnUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/zIzX9EDVT_bHEnz3SP0DLIZ9WNU.roa
Signing time: Sun 01 Jan 2023 05:54:56 +0000
ROA not before: Sun 01 Jan 2023 05:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50352
IP address blocks: 91.242.250.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:bc:57:59:43:99:8d:d0:24:a8:73:21:17:5c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be40b3c2be7835d7b37b5826102f8746a5199d49
Validity
Not Before: Jan 1 05:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc8cd7f440d54ff6c7127cf748fd032c867d58d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:52:da:26:13:a8:ab:75:67:e3:bb:3b:3d:e8:
3e:2c:06:28:44:7e:8e:e9:64:22:23:95:ac:a2:97:
54:0a:1c:ab:6e:95:5e:f1:de:ca:45:5e:e3:28:25:
e5:f5:68:bf:f4:a9:ef:76:2d:9d:ec:5e:97:c1:70:
54:91:54:9d:04:33:92:bd:3c:f5:49:0c:e6:08:d2:
25:7c:6c:c5:89:7c:a2:bf:75:64:0d:39:61:a5:41:
36:4b:36:88:8d:e5:7c:1c:13:60:57:10:ef:55:fe:
61:65:c2:e4:78:a5:2b:a0:1f:0d:d9:9f:76:83:5a:
0f:51:bd:9e:61:92:d0:f3:a9:55:77:ae:53:cf:6e:
27:ca:1d:e7:44:62:d6:51:62:32:e2:a6:a1:1f:1b:
8a:32:20:64:99:5d:c7:d2:50:fc:f7:ac:58:97:30:
13:ad:b5:d9:0c:a6:08:4a:cb:6d:9e:84:c9:63:82:
57:ec:55:0b:c8:9d:91:6b:4b:b8:56:c3:38:a4:e3:
34:f0:fc:e4:62:2b:49:97:2a:d1:93:c8:cb:72:ae:
df:b1:68:9a:65:13:c8:6c:a5:22:81:1e:e8:54:05:
14:c3:a2:9c:3f:d5:49:2f:cf:0a:10:5a:21:30:a4:
10:66:a7:31:ca:b4:12:31:f9:47:5f:f0:05:4e:dd:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8C:D7:F4:40:D5:4F:F6:C7:12:7C:F7:48:FD:03:2C:86:7D:58:D5
X509v3 Authority Key Identifier:
keyid:BE:40:B3:C2:BE:78:35:D7:B3:7B:58:26:10:2F:87:46:A5:19:9D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkCzwr54Ndeze1gmEC-HRqUZnUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/zIzX9EDVT_bHEnz3SP0DLIZ9WNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c71636-edd8-4d11-85e8-b834faf6aced/1/vkCzwr54Ndeze1gmEC-HRqUZnUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.250.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a9:7f:1d:ca:43:c3:34:60:2e:05:a2:f3:48:83:f8:75:2d:
20:dc:11:a3:fe:10:6e:9e:a2:b8:3c:ce:f5:04:ed:5b:0f:3e:
41:e0:da:f4:92:3b:b7:5b:17:a3:67:4a:bc:95:a3:c0:07:e7:
7f:b3:9f:6a:67:c5:63:ab:55:e3:f1:d2:67:46:96:c6:a0:a0:
cc:59:a8:fc:c2:0a:bf:71:a0:68:e9:99:5a:b5:c2:99:96:fe:
5e:2d:b0:ed:15:f3:5d:a5:18:01:40:d0:32:ea:4b:8a:2c:ff:
5a:60:ab:7d:03:b3:89:e2:8f:51:64:2a:d6:f6:44:c4:86:6e:
af:c8:45:14:7d:fb:e8:9f:74:03:35:a9:20:eb:3e:d7:fa:ae:
43:39:fe:d2:81:69:23:9d:e6:fc:e4:1c:2a:64:30:87:ea:31:
78:0c:7e:61:5f:91:95:52:3f:51:33:35:f5:d4:36:03:15:d6:
7c:78:d8:73:95:bc:72:94:db:72:2b:24:cc:29:81:1a:13:00:
14:f8:63:f1:de:6f:c0:fe:59:e8:76:4c:66:ba:40:fc:b4:3a:
ac:cd:22:ed:ec:93:0b:8b:c4:5e:30:e5:b7:2a:a9:d9:fd:29:
90:89:d9:91:f3:c5:42:bc:cd:75:a2:6f:4c:7d:90:98:41:58:
cf:be:02:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net