Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/l92evwmCLiplyazswyiKExgd-gg.roa
File: l92evwmCLiplyazswyiKExgd-gg.roa (raw, json)
Hash identifier: hNATJJYXFnRDh+YHyKw/glw3odJlV8gQ8FnNwIWUzN0=
Subject key identifier: 97:DD:9E:BF:09:82:2E:2A:65:C9:AC:EC:C3:28:8A:13:18:1D:FA:08
Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Certificate serial: 018573BA9B4D1927209FB3233F450BAAF808
Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/l92evwmCLiplyazswyiKExgd-gg.roa
Signing time: Mon 02 Jan 2023 18:24:47 +0000
ROA not before: Mon 02 Jan 2023 18:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3227
IP address blocks: 185.37.61.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:9b:4d:19:27:20:9f:b3:23:3f:45:0b:aa:f8:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0
Validity
Not Before: Jan 2 18:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97dd9ebf09822e2a65c9acecc3288a13181dfa08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ab:40:a3:66:dc:53:08:52:c3:42:f4:a7:74:
1b:0a:54:4d:d6:8e:b6:c4:e5:e8:6d:d2:3d:85:04:
8d:27:8d:57:c5:54:e0:1e:95:da:ee:76:d1:b2:c2:
64:93:1b:3a:39:97:8c:de:a9:fd:94:bb:8f:c3:79:
15:30:e1:87:97:de:30:ab:ae:8e:ab:45:2e:4e:0e:
c2:80:74:24:97:e5:d7:b2:36:81:37:c7:44:81:34:
e7:1f:b6:fb:df:24:56:6d:56:91:07:1a:3f:16:a4:
b7:08:45:fe:14:94:36:0f:34:e5:bd:f9:3d:93:e8:
50:47:ea:6e:48:24:27:86:32:cb:4e:53:44:e1:5b:
ca:8e:97:a0:da:b8:1b:b7:c9:21:3c:8c:1d:73:d9:
5e:cf:18:95:d2:a1:6c:23:9b:ba:ae:07:33:94:04:
9a:6f:bf:17:39:67:d6:19:0d:e4:d8:60:c2:64:34:
05:82:be:0a:ac:68:e2:cf:c1:0e:bf:c0:70:50:1f:
1c:e4:bc:ed:f6:c9:1d:20:af:44:95:3f:e9:04:2e:
ef:1a:ee:25:3e:27:58:17:dc:93:31:6b:a7:ff:a0:
17:df:6c:0a:62:c6:12:e8:d1:c5:4e:65:ae:c8:07:
03:87:51:76:53:3c:07:d6:63:54:6e:81:94:34:9d:
76:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DD:9E:BF:09:82:2E:2A:65:C9:AC:EC:C3:28:8A:13:18:1D:FA:08
X509v3 Authority Key Identifier:
keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/l92evwmCLiplyazswyiKExgd-gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.61.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2a:fe:0d:4e:9b:82:49:6a:e7:67:4e:e3:7c:05:b0:63:1a:
0a:46:c2:64:81:d5:5e:ac:f1:d6:e3:b4:08:c1:46:4c:01:23:
02:7c:ed:44:2c:30:8b:57:25:49:3b:ad:af:75:43:4d:78:69:
4f:2a:91:6e:09:55:8a:33:8b:a7:65:86:d2:f8:dc:bb:49:9e:
15:67:1c:b2:01:2f:2c:78:f8:c7:6e:26:37:66:60:4c:08:5f:
8b:e0:2e:27:15:93:10:5d:81:33:a6:1f:10:cf:d1:25:05:3a:
db:07:17:f5:e8:ba:83:e1:21:65:ac:19:d2:ad:a1:2b:25:7a:
6a:fe:c9:f0:89:13:e5:3d:36:1d:bd:86:d9:ac:bd:97:42:a2:
a9:f8:24:a5:fd:f2:7e:25:e3:bd:24:45:b0:d1:52:57:a8:45:
9a:33:f6:4f:34:0c:e0:d5:04:80:56:b6:24:02:f9:03:15:86:
cc:9a:4a:3a:94:7f:7f:05:22:23:60:76:02:d9:09:fc:a5:f2:
fe:72:da:c2:bf:80:d0:9c:f7:e4:93:7e:ff:e9:bf:7b:7b:96:
56:3b:ad:07:71:fb:74:ba:e2:61:11:d2:d8:86:1c:e2:69:c3:
70:3d:b0:1a:8d:6b:b0:aa:40:66:66:76:25:26:9f:cf:05:65:
b5:ac:0f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:07 2024 by rpki-client on console.sobornost.net