Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/lYVZV9ZHQAJ_yPDTxc46Eq8NoyM.roa
File: lYVZV9ZHQAJ_yPDTxc46Eq8NoyM.roa (raw, json)
Hash identifier: i1cadvFzP0k+dMxxz8iCa5+aC/tp+d6GSOK7zCnbyuQ=
Subject key identifier: 95:85:59:57:D6:47:40:02:7F:C8:F0:D3:C5:CE:3A:12:AF:0D:A3:23
Certificate issuer: /CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Certificate serial: 0185711E72885C4B7411E0B811512E9F9B82
Authority key identifier: 0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/lYVZV9ZHQAJ_yPDTxc46Eq8NoyM.roa
Signing time: Mon 02 Jan 2023 06:14:58 +0000
ROA not before: Mon 02 Jan 2023 06:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50131
IP address blocks: 193.105.95.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:72:88:5c:4b:74:11:e0:b8:11:51:2e:9f:9b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c16bb527a52859e0f69b88d2fedede1bde9ff2d
Validity
Not Before: Jan 2 06:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95855957d64740027fc8f0d3c5ce3a12af0da323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e4:95:dc:48:17:af:ed:9f:65:4a:a0:e4:5b:
42:a6:54:a2:7d:d7:e1:31:8e:95:f2:0e:4b:c1:a6:
cd:ee:56:52:61:40:ba:48:d6:27:b8:7a:2b:6a:f5:
62:29:f8:ad:8a:39:f6:46:78:a6:e5:ae:a2:ef:90:
ea:cf:35:b4:51:4c:6d:36:e8:6a:79:5d:68:20:43:
ff:08:53:15:a0:fa:d2:27:28:a2:4f:89:fd:6d:f3:
2c:ab:73:ca:d2:45:87:f6:40:5b:9a:03:b8:dd:22:
67:7d:31:04:c6:84:97:91:eb:b6:4a:50:83:62:00:
f3:ee:fe:77:26:99:48:64:41:4d:07:08:4d:2c:93:
5d:8b:96:22:33:00:cf:d3:1c:b4:61:0c:74:30:c4:
8f:c1:ae:fd:1b:a9:c2:a6:36:41:f9:ae:5f:a1:79:
2f:a2:1d:1b:73:2a:b4:25:a3:f1:4c:96:4f:da:4c:
e0:51:5e:60:1c:d1:61:86:db:cb:26:bc:9d:18:59:
41:3b:e5:f9:7d:50:1b:39:d2:b2:8f:cd:66:bb:83:
ad:0d:a3:05:14:ef:76:f3:3a:d2:84:c7:46:1c:1e:
11:ad:61:5b:4d:f7:f6:67:cb:6a:a7:e2:06:83:90:
4d:d8:d8:f4:14:e0:a0:e9:fe:9b:b9:40:67:b7:c3:
69:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:85:59:57:D6:47:40:02:7F:C8:F0:D3:C5:CE:3A:12:AF:0D:A3:23
X509v3 Authority Key Identifier:
keyid:0C:16:BB:52:7A:52:85:9E:0F:69:B8:8D:2F:ED:ED:E1:BD:E9:FF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBa7UnpShZ4PabiNL-3t4b3p_y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/lYVZV9ZHQAJ_yPDTxc46Eq8NoyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3b433e-4c88-43f2-8bf2-2468836f154b/1/DBa7UnpShZ4PabiNL-3t4b3p_y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.95.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:93:df:8c:f7:70:6e:ec:af:e6:f5:c4:7b:53:84:51:be:6e:
98:31:8e:9f:b0:27:9f:17:b6:08:d8:92:cb:7a:7a:62:bb:44:
2c:4e:39:96:ed:b9:15:3f:b6:4c:3f:76:65:ea:1f:51:49:29:
bb:78:e4:94:4c:79:cf:78:e1:0e:82:7c:35:41:fd:e9:1d:be:
36:f2:86:79:85:d6:e7:91:ed:5d:00:4f:a4:ff:8a:5e:f8:a0:
bc:d2:3d:47:21:58:3e:eb:35:2b:d9:ec:54:50:eb:cf:b6:5d:
9d:8b:a4:0e:7a:5b:94:89:9b:1e:6f:2c:e1:db:13:f8:db:e4:
93:6d:b8:7d:30:b4:34:34:96:d5:e3:15:62:f9:27:2b:fb:f6:
ae:46:43:d7:ef:92:b4:4d:00:e4:86:e0:5a:b5:fa:5f:37:b2:
0f:8a:bd:2e:94:f8:09:fe:8d:5e:4e:a9:20:8f:df:61:38:23:
4b:cd:dc:96:7e:76:f9:44:02:63:5c:78:57:4a:da:1b:da:67:
bd:87:74:2f:3d:06:35:12:45:0d:61:14:31:22:46:65:14:f3:
96:61:27:96:f0:f2:b0:8c:ff:88:96:68:be:13:4c:d0:e0:58:
93:df:9b:06:ad:2d:67:fa:86:07:44:ea:93:27:ea:7a:1d:aa:
36:3d:f0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:18 2024 by rpki-client on console.sobornost.net