Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/dYEsnZWZP7qhXX1zauBgpkIjjMs.roa
File: dYEsnZWZP7qhXX1zauBgpkIjjMs.roa (raw, json)
Hash identifier: bwQboN8gaAmfIxX3tOiR8jmPdVXhco01tmB2fwffxHc=
Subject key identifier: 75:81:2C:9D:95:99:3F:BA:A1:5D:7D:73:6A:E0:60:A6:42:23:8C:CB
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 01887696F2B261DAF2F5F274A5FDDFF2162B
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/dYEsnZWZP7qhXX1zauBgpkIjjMs.roa
Signing time: Thu 01 Jun 2023 10:53:03 +0000
ROA not before: Thu 01 Jun 2023 10:53:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202081
IP address blocks: 77.79.249.0/24 maxlen: 24
195.167.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:76:96:f2:b2:61:da:f2:f5:f2:74:a5:fd:df:f2:16:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jun 1 10:53:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75812c9d95993fbaa15d7d736ae060a642238ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:dd:88:d2:e0:d1:1c:8e:cd:d9:c3:a3:5b:6c:
43:4e:d3:a4:de:37:12:49:c5:96:41:34:23:79:ee:
70:e0:49:2d:f9:e6:2a:1f:82:b5:e3:c9:9f:60:70:
00:98:cc:8f:e3:8e:94:cb:ad:b5:aa:2a:a5:b9:b4:
04:8b:5d:b7:c5:56:56:61:12:63:5f:81:32:4a:b5:
2a:de:14:e5:8f:6f:72:c9:07:2d:43:11:db:20:d9:
4d:21:42:f3:14:77:93:d0:52:b1:09:ed:e9:a6:9d:
ac:2f:99:98:e1:17:57:da:d1:59:3b:6d:53:f7:91:
7e:0d:78:6f:50:08:48:dd:e1:81:c7:6f:b8:f3:a8:
bd:f3:f7:de:9f:79:f1:95:76:1a:5c:09:18:59:9a:
3f:01:13:f2:4f:c5:1e:fb:0e:c7:db:65:21:05:7f:
a9:9c:52:06:eb:be:bb:5e:be:4a:dc:5d:23:18:e6:
23:99:da:ed:9b:7b:c5:01:5f:82:ae:66:41:83:15:
5d:8c:7c:35:75:e7:6d:7e:ff:5b:5b:b3:2a:10:c3:
4b:49:62:09:da:cc:7d:f3:04:8f:4b:90:6c:f3:d7:
4d:24:0c:90:93:8d:83:e1:92:e9:40:5e:67:70:88:
b8:25:87:fd:1c:fa:db:29:15:8e:b2:ff:2c:3c:2f:
7c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:81:2C:9D:95:99:3F:BA:A1:5D:7D:73:6A:E0:60:A6:42:23:8C:CB
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/dYEsnZWZP7qhXX1zauBgpkIjjMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.79.249.0/24
195.167.152.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ab:fb:f5:83:5a:4b:4d:5d:88:3c:24:b8:f0:d0:41:fd:77:
24:55:1d:41:01:fb:c3:38:e3:f9:2b:9a:a7:39:06:0b:c3:11:
df:d6:d4:7e:48:3f:bf:11:27:94:0f:3a:8d:67:b7:3d:c7:4a:
62:d2:1c:0f:6a:0b:ba:c8:8c:54:14:2a:e5:36:5e:04:f8:c9:
87:ba:c5:b5:6d:4d:39:4e:2b:d4:67:11:2e:39:85:82:e9:2f:
28:84:72:28:d5:0d:32:fd:cb:b9:f9:1d:d7:d6:b3:d8:2a:39:
cf:81:eb:7b:62:43:91:9c:2d:58:d4:dc:cb:07:95:de:73:7a:
83:80:92:15:df:c2:cf:10:c5:2c:d2:1e:3a:f4:a3:8b:00:88:
d8:08:06:49:88:15:fe:71:f8:2d:ed:ce:51:92:59:5a:ed:99:
a6:ea:b7:12:40:e0:91:2d:3f:08:1e:a3:ab:3b:7f:d6:c6:40:
79:92:0c:e6:0a:be:e7:1c:10:9b:59:f8:71:18:f5:c5:aa:60:
06:08:7c:f5:e8:b8:e7:28:29:b1:4f:56:c1:23:08:85:ae:21:
e2:eb:cd:33:f5:89:4f:9e:6c:09:53:57:73:32:1b:16:8c:b6:
39:13:28:d9:b8:58:fd:a1:c0:d6:63:77:5b:f9:e3:55:1c:1b:
ef:2a:8d:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:35:15 2024 by rpki-client on console.sobornost.net