Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/dTWkNoMzyh4uxN7hAJpTFTvmTdQ.roa
File: dTWkNoMzyh4uxN7hAJpTFTvmTdQ.roa (raw, json)
Hash identifier: MED8xN8Tml3sZIkcbgavSDI/YZAPs1llo47bJEZIUNc=
Subject key identifier: 75:35:A4:36:83:33:CA:1E:2E:C4:DE:E1:00:9A:53:15:3B:E6:4D:D4
Certificate issuer: /CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Certificate serial: 0188710597CCAE9323E0F522BEB15E7DB766
Authority key identifier: 3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/dTWkNoMzyh4uxN7hAJpTFTvmTdQ.roa
Signing time: Wed 31 May 2023 08:56:11 +0000
ROA not before: Wed 31 May 2023 08:56:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.211.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:05:97:cc:ae:93:23:e0:f5:22:be:b1:5e:7d:b7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec2c20d6b3acf84802c2b7ca0722deb72c670bb
Validity
Not Before: May 31 08:56:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7535a4368333ca1e2ec4dee1009a53153be64dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:aa:da:9e:b3:79:c7:d9:84:c5:89:d5:9d:7a:
e8:05:f7:dc:18:28:c5:96:3b:8c:c9:e0:4a:3a:90:
31:ab:70:66:f1:35:b5:09:3c:8c:30:4d:6b:49:b8:
3c:ac:63:f1:e3:7f:c2:aa:8e:51:17:a5:cd:b7:b7:
c0:55:1a:ae:a4:4d:9b:09:ed:cd:64:ec:72:55:5e:
c2:c1:c2:fc:30:f4:74:75:ce:57:fb:0f:cb:82:d9:
3d:ab:70:47:f6:0d:a9:33:1d:34:43:7b:bc:24:b0:
4b:0e:57:f6:bf:2f:64:39:3f:88:04:c1:1c:7e:4b:
e4:93:ee:bb:0a:c9:82:78:47:21:ab:1e:ed:a8:d0:
ed:2f:56:11:8d:12:b0:d2:a2:7c:54:f1:44:08:a8:
cc:a2:e3:e6:57:2a:c9:9a:2b:70:b5:22:86:fc:62:
4c:83:bd:2f:cc:dd:b4:52:98:5d:bd:ba:c6:95:4f:
a9:45:2a:af:65:18:0b:c7:0c:16:df:3c:2c:52:2d:
4b:d6:3c:12:d6:df:9e:c7:00:4e:3b:ac:79:ff:cc:
4e:e4:72:44:c9:70:52:c6:33:20:a6:d5:02:4d:4d:
43:7a:43:59:6e:1d:7e:a0:e0:43:e8:f9:05:fd:d9:
1c:53:8e:87:35:9f:9a:08:21:32:70:8a:f8:45:eb:
cc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:35:A4:36:83:33:CA:1E:2E:C4:DE:E1:00:9A:53:15:3B:E6:4D:D4
X509v3 Authority Key Identifier:
keyid:3E:C2:C2:0D:6B:3A:CF:84:80:2C:2B:7C:A0:72:2D:EB:72:C6:70:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsLCDWs6z4SALCt8oHIt63LGcLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/dTWkNoMzyh4uxN7hAJpTFTvmTdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2710b0-6c4a-4a94-b92a-b1cefc995379/1/PsLCDWs6z4SALCt8oHIt63LGcLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.211.167.0/24
Signature Algorithm: sha256WithRSAEncryption
05:b7:a2:25:b5:0c:9f:71:9f:7a:c1:60:b7:b0:4e:0e:f6:53:
b6:b7:69:7b:1e:95:71:d2:82:57:dd:1f:71:61:5a:67:04:79:
c3:fc:12:b4:dc:f2:46:b6:e6:5c:39:6a:45:02:74:b2:bc:a9:
3c:ac:e9:22:cc:ea:0a:d7:e5:b9:b6:42:60:73:da:7c:02:29:
b0:db:a5:50:18:16:5d:a4:9c:5a:9b:47:71:f1:15:b1:f5:ce:
57:eb:0a:17:d0:92:ac:58:f0:68:90:ba:ef:a5:a9:f0:c9:8b:
4a:71:e2:af:ca:f9:b8:c4:09:75:76:30:a1:9a:35:32:04:77:
6d:62:dd:40:35:24:5f:30:43:e8:7f:30:c8:b6:59:76:ac:11:
af:59:ca:d5:ed:94:ca:b7:71:85:a8:40:3f:dd:73:90:26:bc:
c1:a0:10:34:e6:a4:c3:25:51:70:2e:c9:59:ce:e6:45:cd:f6:
3c:11:b2:ee:03:b4:37:17:ae:80:fd:f5:9a:f9:88:dc:4c:43:
1d:54:1e:62:52:46:e5:d9:8d:ab:7c:67:bf:76:4b:51:2d:62:
18:36:92:e0:d1:70:0d:4a:74:55:ed:b8:cf:6a:f9:c5:10:f4:
80:dd:a9:1e:ee:48:6f:f8:d3:57:ab:5f:47:db:b0:7f:8b:b4:
53:d8:c4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net