Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/LPkE8xMwKI7ZYDfv6rrJs3hT1YU.roa
File: LPkE8xMwKI7ZYDfv6rrJs3hT1YU.roa (raw, json)
Hash identifier: SvowUXxSAD+VfbllgupJNbqVIc3Xq5gmWng+osZMH+4=
Subject key identifier: 2C:F9:04:F3:13:30:28:8E:D9:60:37:EF:EA:BA:C9:B3:78:53:D5:85
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 01856C7844375B952C5457FAFC498559E1B4
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/LPkE8xMwKI7ZYDfv6rrJs3hT1YU.roa
Signing time: Sun 01 Jan 2023 08:34:59 +0000
ROA not before: Sun 01 Jan 2023 08:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42523
IP address blocks: 194.62.152.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:44:37:5b:95:2c:54:57:fa:fc:49:85:59:e1:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Jan 1 08:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cf904f31330288ed96037efeabac9b37853d585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ab:ba:8b:01:de:44:da:6d:bd:0e:47:f3:5f:
6f:3e:96:b4:9f:4d:89:3d:01:58:89:c7:4f:7d:7f:
88:03:a8:36:d2:60:ad:d7:40:d6:30:51:bd:3c:ba:
f1:2e:83:48:6c:0e:57:d6:b4:5a:14:4d:fa:f1:6a:
a6:e1:d3:a9:48:ec:bc:89:96:79:e6:df:e2:7a:78:
a4:3a:9b:ad:8c:0b:9d:ca:b3:68:fa:fc:b4:48:23:
8f:fc:ee:2a:c1:cf:ba:d4:14:f2:28:3e:e4:2c:b7:
e8:14:9e:0f:c3:9c:61:3a:26:94:07:f2:e4:f0:9d:
6f:1a:94:21:bb:64:ac:1a:24:1f:e2:d0:21:37:fe:
4c:a6:f0:1d:47:a9:f6:36:59:ab:ce:83:11:64:f6:
1b:8b:e2:0f:d8:76:cf:e0:1d:dc:9e:e4:8a:81:a0:
67:a7:21:29:fc:a5:8a:70:54:f1:44:bd:a9:a6:4b:
3f:da:75:76:06:76:08:93:07:4b:8d:18:19:05:e6:
b9:db:0b:2b:05:ab:df:c5:5f:f9:65:df:71:f9:6d:
1a:0e:7b:6d:fd:71:21:ca:5e:ca:88:b8:2c:a2:c6:
8f:34:75:80:dc:f7:fc:e7:40:90:83:97:4d:72:73:
8d:e7:d3:5a:3a:5d:0d:de:2d:90:0b:98:dd:9e:a6:
e9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F9:04:F3:13:30:28:8E:D9:60:37:EF:EA:BA:C9:B3:78:53:D5:85
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/LPkE8xMwKI7ZYDfv6rrJs3hT1YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.152.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:09:65:38:60:70:b2:30:37:b0:bc:0e:c6:85:fe:df:15:52:
70:d9:4d:1f:44:b3:2f:34:11:5d:60:fd:90:19:5c:a9:36:4e:
43:b5:d0:9d:d1:db:e7:05:b4:37:62:81:9e:7a:cc:e9:0b:38:
12:5b:41:03:98:be:37:63:97:6a:ee:30:49:ce:d8:4f:c7:81:
c8:a8:b1:b9:c9:f3:1b:fd:1f:4a:0b:f8:c0:e5:11:17:d2:57:
ec:82:4f:6b:02:4d:55:00:0f:4b:56:a0:98:94:09:00:53:1a:
8f:32:ea:33:a4:59:f3:a4:e2:e8:f7:0c:ca:69:e2:c4:2a:c5:
7b:84:7a:6f:50:9b:44:b0:14:4c:64:27:c4:bb:fd:0b:bc:c5:
a1:e2:f9:d4:9d:fd:65:8f:6e:b3:4f:bb:20:1e:80:f1:86:86:
df:c4:51:cb:42:55:2b:27:f8:97:e6:6f:41:f2:5a:c1:06:94:
b7:1d:99:5b:c9:5f:dd:95:e3:e0:40:4f:c5:6c:80:74:c2:30:
94:58:3e:c1:a2:7b:98:dc:9f:6b:1e:7e:a6:39:43:62:e0:9a:
d5:d4:02:f7:88:46:15:4f:b2:44:90:41:8d:e3:0d:03:08:84:
4c:d6:c5:19:2e:72:8b:08:97:69:16:bd:91:36:cb:2c:c5:7a:
a8:8d:b0:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:00:58 2024 by rpki-client on console.sobornost.net