Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/yAT7-lnYsmU1RF7VhdcuOS5UAaI.roa
File: yAT7-lnYsmU1RF7VhdcuOS5UAaI.roa (raw, json)
Hash identifier: Nm1SPr8B4/YVt7A7skQSBd0ejrk/vPtcIlHXTYV4kwM=
Subject key identifier: C8:04:FB:FA:59:D8:B2:65:35:44:5E:D5:85:D7:2E:39:2E:54:01:A2
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 0185727111415781C715F356A8279348780B
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/yAT7-lnYsmU1RF7VhdcuOS5UAaI.roa
Signing time: Mon 02 Jan 2023 12:24:50 +0000
ROA not before: Mon 02 Jan 2023 12:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 185.68.200.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:11:41:57:81:c7:15:f3:56:a8:27:93:48:78:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Jan 2 12:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c804fbfa59d8b26535445ed585d72e392e5401a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5d:e7:9e:51:de:f5:c3:41:cd:03:f8:2a:31:
41:3a:4b:1f:7f:35:90:87:7a:4c:95:91:91:00:a2:
6a:e6:4c:03:b2:40:f8:47:f5:e4:a9:30:0c:13:c3:
4c:af:d8:7e:66:30:ab:21:88:71:34:a0:6f:6c:2c:
8f:0e:e6:45:97:29:41:f1:dc:e5:06:02:90:9e:ec:
87:61:e7:96:fe:5a:c1:ed:f2:85:f1:de:ee:4d:3c:
6e:89:c3:3c:b5:50:d4:ab:d9:94:4c:65:03:02:6d:
cd:b3:db:ac:d3:06:d8:b7:14:54:b7:cf:42:99:69:
09:0d:d3:d2:34:9e:58:a1:e4:7e:0d:d6:ce:03:a7:
ea:e3:0b:fa:40:ad:5c:d9:85:dc:6f:44:8f:3a:fa:
ed:ea:bc:1e:d0:fc:d9:0d:6d:80:fa:1a:20:97:86:
b4:74:0b:f5:cb:60:61:04:18:e2:81:63:07:f1:24:
32:37:80:05:3c:e1:81:e9:e3:80:36:fb:b9:84:ae:
ec:17:81:cf:49:ba:9c:84:3c:4b:31:cf:4a:55:31:
be:4e:3c:ee:58:bf:7c:3b:a8:f8:fa:ad:7b:df:57:
83:56:6e:1a:8e:a2:c8:ee:a3:0f:80:fb:a9:dc:a2:
62:83:97:f5:a7:5e:ba:6c:e3:2f:32:14:29:78:98:
f6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:04:FB:FA:59:D8:B2:65:35:44:5E:D5:85:D7:2E:39:2E:54:01:A2
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/yAT7-lnYsmU1RF7VhdcuOS5UAaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.200.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:cc:f6:d7:53:d4:cd:9b:05:5a:6d:3c:29:17:1b:e4:37:70:
6e:bf:db:a4:72:bd:00:f1:75:17:c3:54:63:09:52:70:69:a4:
74:ac:1f:7b:dc:c5:db:cb:3b:2e:12:79:7c:89:7b:7d:28:85:
24:01:dd:be:d7:00:20:22:3a:35:9d:5c:27:64:df:0e:03:e9:
fa:7f:3d:13:86:e0:d5:23:23:6c:bc:91:7a:40:97:bb:91:90:
f1:38:cd:e7:b7:26:88:17:d8:7e:dc:dc:ba:a1:95:97:26:2f:
b0:08:2f:94:8f:c0:54:d3:23:8d:c7:6b:45:e8:55:e3:8f:cb:
73:0f:42:af:99:24:1b:e0:bb:ab:f8:c7:86:b9:e6:ce:67:ad:
f7:09:51:83:c6:b1:8d:2c:e0:7d:2a:b6:9c:d5:60:55:3e:b5:
29:2f:6b:c4:54:18:34:e2:6d:e4:9b:d7:3e:44:9b:12:d4:08:
3c:2d:e9:eb:56:d6:22:f4:1a:6a:72:03:f1:90:91:b1:f5:6a:
55:0b:f5:be:8a:c0:10:d1:9d:68:3e:14:20:90:09:86:f0:23:
66:66:ac:c8:03:a6:c0:a4:cc:15:e0:1d:ab:01:7a:28:c9:c6:
06:72:58:5a:62:e5:3b:72:69:cf:ff:c7:4f:d2:d2:d9:20:f3:
42:70:a6:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:56 2024 by rpki-client on console.sobornost.net