Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/f852ac-9e98-45b7-877f-229e2cb0f66c/1/FD40ZqwQ3sLFSIhwLWUXruC9hDE.roa
File: FD40ZqwQ3sLFSIhwLWUXruC9hDE.roa (raw, json)
Hash identifier: +oStU6TlhUxdSXDxRzYUj0K1bf+YnEH5LYkpLdNTgCI=
Subject key identifier: 14:3E:34:66:AC:10:DE:C2:C5:48:88:70:2D:65:17:AE:E0:BD:84:31
Certificate issuer: /CN=fde76ca85e96541a5add3cacaf1e5e114faa47ef
Certificate serial: 018B3D16CDC906421EDE87524E428462D2EE
Authority key identifier: FD:E7:6C:A8:5E:96:54:1A:5A:DD:3C:AC:AF:1E:5E:11:4F:AA:47:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_edsqF6WVBpa3Tysrx5eEU-qR-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/f852ac-9e98-45b7-877f-229e2cb0f66c/1/FD40ZqwQ3sLFSIhwLWUXruC9hDE.roa
Signing time: Tue 17 Oct 2023 10:03:06 +0000
ROA not before: Tue 17 Oct 2023 10:03:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209665
IP address blocks: 62.32.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:16:cd:c9:06:42:1e:de:87:52:4e:42:84:62:d2:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde76ca85e96541a5add3cacaf1e5e114faa47ef
Validity
Not Before: Oct 17 10:03:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=143e3466ac10dec2c54888702d6517aee0bd8431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:22:9f:f7:38:55:e2:ad:d4:e4:98:4e:1b:17:
83:29:c4:8b:7e:f2:7a:c8:40:8f:06:25:1b:42:a5:
c7:80:65:9c:42:ba:74:dc:ad:18:f3:cf:38:68:5a:
d0:e1:7e:79:5b:cc:6b:d1:bd:0e:d5:97:ec:dd:6b:
b4:c0:6a:f0:1c:d6:d8:9c:1d:a5:c8:6a:eb:a7:c4:
73:fc:78:ad:46:a7:73:8c:de:5e:6c:af:31:c0:19:
a6:2f:5f:1f:1b:df:75:bc:f6:82:7f:58:9b:4d:f5:
12:e8:6b:6d:12:fb:36:b2:3a:a5:67:70:74:8c:e7:
c4:c1:16:07:71:59:d2:c3:99:0e:fb:fd:94:d1:6e:
86:e5:2e:cd:f7:6d:e2:1d:8f:d2:14:04:c3:e2:56:
3f:c9:0d:fc:14:61:7d:0f:9a:b4:07:67:2a:c1:4a:
7d:b4:aa:36:5e:1f:ba:5d:78:bf:67:2d:26:f7:f3:
c9:b7:0b:c3:a9:20:5a:07:a9:71:aa:ba:27:5b:e0:
bf:66:62:2c:8b:f5:50:b7:e7:b8:ce:1d:5a:5a:3d:
b1:64:69:dd:e6:c0:d3:c0:94:2e:87:2d:f7:2b:0a:
3f:c2:30:35:2b:10:1f:09:42:89:63:8c:4f:c3:c4:
2b:f2:53:00:fd:97:d5:53:a8:74:5d:b3:2e:53:71:
89:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3E:34:66:AC:10:DE:C2:C5:48:88:70:2D:65:17:AE:E0:BD:84:31
X509v3 Authority Key Identifier:
keyid:FD:E7:6C:A8:5E:96:54:1A:5A:DD:3C:AC:AF:1E:5E:11:4F:AA:47:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_edsqF6WVBpa3Tysrx5eEU-qR-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/f852ac-9e98-45b7-877f-229e2cb0f66c/1/FD40ZqwQ3sLFSIhwLWUXruC9hDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/f852ac-9e98-45b7-877f-229e2cb0f66c/1/_edsqF6WVBpa3Tysrx5eEU-qR-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.32.78.0/24
Signature Algorithm: sha256WithRSAEncryption
97:8a:c3:70:86:91:26:d7:ba:ed:7e:86:e6:dd:1e:08:26:c1:
3e:96:f6:12:f1:64:bb:ef:bb:77:9f:a9:57:ff:9c:a3:9d:2e:
f6:3d:c8:df:02:72:e0:16:b7:a9:98:ba:ad:59:8c:4a:67:6d:
ef:58:c2:9b:7e:34:71:29:87:91:2d:60:3c:52:23:c1:53:93:
02:35:93:47:9d:3c:75:1d:89:e8:17:2f:82:ed:a7:46:09:a1:
7a:59:a6:84:1f:ee:1e:8c:e0:d2:b2:0d:17:be:60:00:2f:1a:
7a:39:be:5e:13:0e:39:b9:00:55:fc:a3:b2:82:bf:74:88:17:
9d:0a:29:34:60:d0:79:0e:78:f4:f7:d2:c3:55:36:27:41:25:
bb:de:f1:e8:67:e8:10:00:26:fb:3b:cf:29:50:0f:43:5d:bf:
c2:0f:4d:33:f0:60:d1:f0:e9:7d:68:f1:25:d3:18:96:a8:4b:
2b:28:91:89:a6:86:52:37:b5:4f:c1:b9:8d:93:09:a0:4e:2e:
6f:b5:56:bc:0a:43:a6:2d:bc:e2:f7:44:dc:05:3f:50:34:ce:
32:c3:d8:60:00:d3:0a:28:af:80:7a:26:d7:f1:df:02:17:c6:
10:82:d3:e6:4a:f8:91:05:92:6e:96:64:cc:ef:59:ac:a2:66:
55:db:eb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:42 2024 by rpki-client on console.sobornost.net