Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/4ayYtP1v_IrrMdxCAaqcm09Lflk.roa
File: 4ayYtP1v_IrrMdxCAaqcm09Lflk.roa (raw, json)
Hash identifier: ceZgS6ztui0iNxRwd3HIRW1k/eV87orZCC5UvxVkC4A=
Subject key identifier: E1:AC:98:B4:FD:6F:FC:8A:EB:31:DC:42:01:AA:9C:9B:4F:4B:7E:59
Certificate issuer: /CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Certificate serial: 01857139E75C8A547667213D6BF0C5EEE0FD
Authority key identifier: 75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/4ayYtP1v_IrrMdxCAaqcm09Lflk.roa
Signing time: Mon 02 Jan 2023 06:44:58 +0000
ROA not before: Mon 02 Jan 2023 06:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3561
IP address blocks: 213.109.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:e7:5c:8a:54:76:67:21:3d:6b:f0:c5:ee:e0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Validity
Not Before: Jan 2 06:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1ac98b4fd6ffc8aeb31dc4201aa9c9b4f4b7e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:74:72:27:4f:e8:93:8b:e9:4b:75:a2:cd:91:
ce:ca:0d:ad:c5:d3:00:be:8a:60:7e:9a:6e:62:32:
4c:e4:b3:f2:25:d6:53:83:05:f4:04:7c:92:f3:b8:
c6:0c:63:eb:af:f7:b4:bb:da:a4:08:bf:1c:e4:16:
13:04:e7:54:9d:4a:35:d4:8f:b5:26:e4:06:8a:4e:
d6:77:f0:5f:1b:4c:cf:eb:ab:81:49:65:74:ff:9d:
9c:55:62:7d:63:2e:a3:69:92:82:61:79:d1:26:91:
a7:1e:70:af:52:02:01:11:26:b1:8f:ba:8d:e4:21:
81:08:da:28:18:c1:60:d5:91:39:0c:21:01:64:20:
d0:bd:61:1a:ad:f3:90:c4:1d:7d:e5:34:1f:08:ad:
f8:91:66:2e:ae:51:a4:f0:ab:82:d9:81:8e:8d:4b:
f7:7d:40:01:73:0b:70:37:1f:c5:00:51:e0:f6:a4:
bc:16:f4:67:6c:70:76:31:ca:5a:e8:2b:00:c6:04:
3e:86:e5:c4:7e:20:5c:2f:cf:46:df:4f:3b:0b:20:
26:23:13:73:b8:ff:97:f5:65:d5:ef:8f:64:69:e2:
30:8f:30:55:99:28:a7:37:33:47:b9:17:ab:9f:5d:
ba:3c:17:1e:86:c5:7f:4c:1d:51:4c:72:34:1a:4f:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:AC:98:B4:FD:6F:FC:8A:EB:31:DC:42:01:AA:9C:9B:4F:4B:7E:59
X509v3 Authority Key Identifier:
keyid:75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/4ayYtP1v_IrrMdxCAaqcm09Lflk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/deiysou6PcToYdXL9bwcyYyJ5XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.207.0/24
Signature Algorithm: sha256WithRSAEncryption
00:a4:48:fd:7c:0b:22:4f:c3:97:a1:c9:c4:f1:92:89:df:2e:
04:ff:d7:72:e0:3e:e9:63:96:0c:34:cb:de:b9:bd:1f:12:21:
50:5a:df:2a:fb:c0:09:00:1a:4b:aa:51:0e:a0:0e:21:0e:3a:
7e:6f:9e:e1:f6:2a:14:bd:28:b5:47:dd:a2:6c:4b:20:48:93:
f1:b8:62:66:14:50:38:c9:a7:e4:b0:fd:96:9c:f3:34:e0:41:
5d:3f:dc:7a:57:ca:10:76:1f:cb:d7:ee:0b:be:4e:05:d8:3f:
fa:44:9c:45:50:ba:88:96:3b:93:94:cd:8e:0e:f1:c8:11:a9:
a9:f6:bb:6d:ae:e7:d6:ad:0b:a1:c1:15:45:2f:fa:4d:f2:24:
cc:34:f5:b0:87:b0:8a:92:f8:df:76:5b:e2:1b:ce:ed:e8:8f:
b1:b0:08:a4:72:e3:6c:13:73:3e:8c:a9:d4:ee:ef:0c:b0:1b:
ec:83:f0:a7:75:fd:b0:8a:35:b6:3a:da:be:54:e1:bb:1f:e1:
6a:f6:e2:77:10:4c:14:2f:85:1a:d5:89:8a:a7:e4:e6:99:1f:
8c:07:78:6d:ed:36:50:89:9d:41:58:28:3a:61:d7:f3:4c:9c:
97:06:91:d6:d4:89:43:d8:be:7f:bd:60:63:81:86:d4:e7:c4:
74:f0:af:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:30 2024 by rpki-client on console.sobornost.net