Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/5vT0HwWWdoYUB1-oRK7mFz6gmes.roa
File: 5vT0HwWWdoYUB1-oRK7mFz6gmes.roa (raw, json)
Hash identifier: mtRHpRhQwHny0GQed8TLyQ26z6gNK00PR/TJ33ldeIQ=
Subject key identifier: E6:F4:F4:1F:05:96:76:86:14:07:5F:A8:44:AE:E6:17:3E:A0:99:EB
Certificate issuer: /CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Certificate serial: 01856B9C6C65D2C93CB97BF2BF21DDD0D42A
Authority key identifier: 4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/5vT0HwWWdoYUB1-oRK7mFz6gmes.roa
Signing time: Sun 01 Jan 2023 04:34:51 +0000
ROA not before: Sun 01 Jan 2023 04:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50316
IP address blocks: 45.82.202.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:6c:65:d2:c9:3c:b9:7b:f2:bf:21:dd:d0:d4:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4beccc9d1a76e91469cb63b12bf725d7debafb1b
Validity
Not Before: Jan 1 04:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6f4f41f0596768614075fa844aee6173ea099eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:73:98:e9:e7:dc:a5:9c:4f:9a:ec:30:4b:df:
90:c0:7c:ea:27:5c:58:88:bc:c7:22:3c:fb:b7:e2:
5f:2f:2b:ab:16:68:f4:62:81:6a:55:8b:d5:f3:fb:
9d:49:65:fe:03:02:dd:2c:3d:23:4e:af:0f:32:01:
86:35:2c:2d:87:90:92:3c:9f:88:9e:8c:28:ee:e3:
e7:4c:16:cd:8f:45:5c:4b:f6:82:ea:3c:ec:d2:a7:
d6:b4:1c:6f:d2:4f:1d:13:ee:c5:c7:5c:39:ac:2e:
e0:6e:56:56:b7:18:dd:7e:16:11:56:40:88:fc:2a:
87:d9:4a:d3:5e:24:6e:18:87:60:f0:6a:63:16:8c:
29:a7:ad:1b:74:85:a7:cd:85:92:cf:20:7f:1b:d5:
4e:bc:05:19:16:38:b7:95:23:5f:80:08:99:37:0c:
8d:fc:1e:06:9a:2c:95:35:14:fb:f6:f7:54:2f:62:
5e:4b:db:0a:8d:c4:e3:aa:21:c2:78:29:bf:fc:a2:
91:68:ba:e7:2b:de:94:08:b3:9d:15:6f:19:c2:8e:
79:60:66:0e:b1:fa:4f:6b:d0:f8:59:a6:a7:52:64:
27:0b:3d:7d:fe:bd:1c:7d:51:d4:b1:4d:28:e7:5d:
1b:8f:78:1f:b4:3f:5b:da:55:fb:c1:a5:3a:33:58:
f2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F4:F4:1F:05:96:76:86:14:07:5F:A8:44:AE:E6:17:3E:A0:99:EB
X509v3 Authority Key Identifier:
keyid:4B:EC:CC:9D:1A:76:E9:14:69:CB:63:B1:2B:F7:25:D7:DE:BA:FB:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-zMnRp26RRpy2OxK_cl1966-xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/5vT0HwWWdoYUB1-oRK7mFz6gmes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/768f14-a721-46f0-9199-4f4b994e0eb2/1/S-zMnRp26RRpy2OxK_cl1966-xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.202.0/24
Signature Algorithm: sha256WithRSAEncryption
03:bc:4f:45:cf:f0:6d:dd:2b:db:37:e4:59:78:ec:3b:ca:00:
ed:14:11:91:6a:1c:5b:94:a7:9a:f7:16:e4:6a:6c:a8:7e:3e:
d5:0f:3a:fc:d8:cc:d4:f0:00:ef:46:e9:60:cd:03:80:aa:d7:
a8:7b:2f:76:d5:fb:0a:10:93:6d:40:e4:55:a7:fa:54:f7:d1:
dd:c6:47:c8:6e:83:df:92:38:45:56:26:0c:db:1a:1b:ab:5c:
94:5e:2b:b9:2e:ed:3c:70:8d:06:64:22:8d:9f:eb:76:6b:5b:
22:b9:0b:23:4a:3c:62:ba:96:74:ac:89:70:a1:dc:a5:09:d2:
0e:1b:e2:a3:2e:bf:2d:3a:bf:b7:59:93:bb:79:82:29:d0:03:
93:bc:54:54:0f:25:a8:d8:5c:19:b0:39:1c:db:15:66:d8:76:
b2:b4:26:5f:f7:70:3e:4c:10:23:b3:b8:ec:88:61:9a:1c:f0:
4a:19:1b:e5:4f:92:7d:8d:c8:c8:08:65:88:8d:8e:45:19:64:
58:e7:15:00:68:39:74:13:25:3b:56:94:31:39:00:c2:49:b8:
c0:5e:66:b0:7d:4c:cf:35:75:23:7c:39:a2:fd:ee:fb:41:03:
86:11:98:50:19:a1:6d:ea:1e:92:29:cc:e6:1d:7c:f2:f8:b1:
89:de:1c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:21 2024 by rpki-client on console.sobornost.net