Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/6Jb9xyof7c08v5mNI-cz6OFTxTk.roa
File: 6Jb9xyof7c08v5mNI-cz6OFTxTk.roa (raw, json)
Hash identifier: g8bdbPRE5jioZcztrrcLGSdGu8MlWIGitmaJBAiLMkA=
Subject key identifier: E8:96:FD:C7:2A:1F:ED:CD:3C:BF:99:8D:23:E7:33:E8:E1:53:C5:39
Certificate issuer: /CN=db8a0a3d6a44a58304e1b1dbf62e5d7a16b3887a
Certificate serial: 01856FF9896D4690A09C472318DEEDDE20B5
Authority key identifier: DB:8A:0A:3D:6A:44:A5:83:04:E1:B1:DB:F6:2E:5D:7A:16:B3:88:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24oKPWpEpYME4bHb9i5dehaziHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/6Jb9xyof7c08v5mNI-cz6OFTxTk.roa
Signing time: Mon 02 Jan 2023 00:55:02 +0000
ROA not before: Mon 02 Jan 2023 00:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43185
IP address blocks: 77.95.208.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:89:6d:46:90:a0:9c:47:23:18:de:ed:de:20:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db8a0a3d6a44a58304e1b1dbf62e5d7a16b3887a
Validity
Not Before: Jan 2 00:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e896fdc72a1fedcd3cbf998d23e733e8e153c539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:14:80:0a:4d:c7:b0:e6:a9:5c:56:2d:8a:4d:
19:d9:f1:9c:92:34:c0:34:bf:40:09:43:71:ec:ef:
19:5e:62:64:cd:8c:c0:f1:50:3b:35:81:b8:3f:ca:
ec:61:f3:5f:f4:96:09:9f:05:d3:c0:8c:29:0c:0b:
13:b5:b6:7f:a2:3c:81:66:5e:a7:18:9b:88:dd:47:
8c:35:7c:18:2e:84:fc:e7:2a:2a:12:f4:e2:11:e2:
44:33:97:2d:b7:42:98:27:69:7e:35:77:f8:1c:b9:
07:8a:3f:e6:c4:3e:10:19:ac:23:db:ec:aa:5d:e4:
b3:bb:32:9c:ad:c1:96:78:fe:e3:5a:eb:eb:75:09:
75:0d:16:58:fb:b1:87:4e:db:26:66:97:89:0d:bd:
bb:0d:26:ec:5a:14:f0:32:71:6d:53:d6:58:db:84:
78:83:be:02:96:8f:53:2f:a6:52:f1:2d:b8:e7:a1:
e5:4a:3d:b6:01:4b:9d:53:26:62:2a:46:8b:fb:ab:
37:45:38:2a:57:f2:b0:81:aa:12:e8:7e:5f:18:b4:
96:94:1f:a9:9e:b3:c4:e1:ea:5c:4e:cd:97:97:e0:
fc:ca:a7:36:70:1c:f0:69:f7:ff:68:8f:0b:f7:d1:
8f:cc:f3:dd:e8:16:92:63:2b:95:18:14:6b:c2:32:
1c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:96:FD:C7:2A:1F:ED:CD:3C:BF:99:8D:23:E7:33:E8:E1:53:C5:39
X509v3 Authority Key Identifier:
keyid:DB:8A:0A:3D:6A:44:A5:83:04:E1:B1:DB:F6:2E:5D:7A:16:B3:88:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24oKPWpEpYME4bHb9i5dehaziHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/6Jb9xyof7c08v5mNI-cz6OFTxTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e5a253-19cf-4ce8-9c5c-56c6d551a932/1/24oKPWpEpYME4bHb9i5dehaziHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.208.0/21
Signature Algorithm: sha256WithRSAEncryption
36:78:6d:b2:17:e1:08:31:86:0e:9f:26:4c:20:c2:b7:1e:c3:
dc:a9:c9:51:53:f3:8c:16:66:5f:24:ed:df:23:71:f9:4c:9a:
ff:36:ae:6e:69:f1:6f:c1:91:2e:95:1b:97:61:78:59:f5:26:
80:d4:67:e0:ea:eb:0c:f6:a8:ce:98:fe:4d:5e:4c:12:e0:f6:
97:d5:38:32:d5:c2:18:da:ca:af:39:98:d6:0d:af:c6:2f:e7:
f8:cc:a7:45:56:dc:6d:5b:e6:1c:65:90:49:8a:73:d9:65:ee:
13:7f:8c:3d:d7:9d:92:4a:7f:b4:8c:c6:07:86:b9:c5:19:29:
3c:4a:23:0a:2a:2a:38:b5:96:92:0e:80:ca:30:93:37:12:68:
6c:a7:48:b7:3d:e6:d7:75:02:2a:db:38:51:6a:61:bb:60:3e:
1a:75:a3:f0:f3:fd:22:cc:ef:02:67:eb:49:db:c7:33:96:67:
ac:a7:a0:4c:13:fa:9f:a3:49:39:01:06:74:18:6d:1b:16:31:
06:1e:07:19:36:b9:d2:fc:ab:c5:fd:01:f1:89:62:81:0d:b5:
72:b3:94:7b:b4:21:c2:08:ae:99:ea:b8:a5:80:5c:a8:5b:27:
4d:64:d0:61:36:bb:6a:8a:fc:e5:d8:98:bb:27:75:a7:1a:f5:
f4:39:af:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:13 2024 by rpki-client on console.sobornost.net