Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/etX5z3Aq8sFGVC_6Xg3StZmq3Fs.roa
File: etX5z3Aq8sFGVC_6Xg3StZmq3Fs.roa (raw, json)
Hash identifier: EhWr+EuU0MufDhVsu3sa7gR3JPSpPoTQrg+ftYUSO+o=
Subject key identifier: 7A:D5:F9:CF:70:2A:F2:C1:46:54:2F:FA:5E:0D:D2:B5:99:AA:DC:5B
Certificate issuer: /CN=473ddbc4bb381dbef24d2ff8b4e1f23f2ddf40cc
Certificate serial: 018703E53A571C607275AA5325DD23A3116D
Authority key identifier: 47:3D:DB:C4:BB:38:1D:BE:F2:4D:2F:F8:B4:E1:F2:3F:2D:DF:40:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rz3bxLs4Hb7yTS_4tOHyPy3fQMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/etX5z3Aq8sFGVC_6Xg3StZmq3Fs.roa
Signing time: Tue 21 Mar 2023 11:19:27 +0000
ROA not before: Tue 21 Mar 2023 11:19:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211302
IP address blocks: 185.69.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:e5:3a:57:1c:60:72:75:aa:53:25:dd:23:a3:11:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ddbc4bb381dbef24d2ff8b4e1f23f2ddf40cc
Validity
Not Before: Mar 21 11:19:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ad5f9cf702af2c146542ffa5e0dd2b599aadc5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:50:62:0f:b8:b1:2c:fb:b2:2c:9f:47:48:58:
34:d7:97:6c:5a:d5:51:3f:75:8c:63:4e:ca:df:cc:
c6:d6:e8:4b:32:32:49:ea:99:a9:4f:d6:ed:58:ea:
b3:90:6a:e2:1a:e6:9b:a3:d8:fa:40:4b:32:eb:44:
75:cc:ca:88:43:09:8e:78:c5:7b:14:25:c5:5d:78:
6a:5c:1b:63:19:ad:33:cf:b6:4f:30:99:a0:c8:e7:
e4:83:41:5e:fd:d6:60:67:46:bb:05:e6:cf:24:83:
d6:a2:2a:27:5e:f9:51:71:08:09:76:b7:0b:c4:6e:
e1:ed:35:62:3e:ab:86:05:da:47:79:ae:4f:80:19:
42:6d:a4:34:5e:24:ee:94:84:4f:1e:50:aa:9e:9a:
82:85:e7:71:e6:5b:25:a6:ff:d1:85:70:d6:8f:7e:
4e:6e:1a:7c:07:ea:b3:46:f8:82:16:6d:98:37:f1:
08:f1:a7:4c:49:32:90:1f:e3:32:41:6f:f8:54:67:
63:4e:e1:c7:fe:fb:32:ed:19:ee:19:f8:03:d7:82:
cd:4f:80:b3:f3:6d:2c:9e:54:5e:75:0d:31:6f:b5:
99:fa:fb:53:d4:40:dd:f7:3a:8b:aa:aa:30:32:e3:
d6:45:a2:33:44:e7:b4:29:97:82:33:04:dc:1e:65:
c3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D5:F9:CF:70:2A:F2:C1:46:54:2F:FA:5E:0D:D2:B5:99:AA:DC:5B
X509v3 Authority Key Identifier:
keyid:47:3D:DB:C4:BB:38:1D:BE:F2:4D:2F:F8:B4:E1:F2:3F:2D:DF:40:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rz3bxLs4Hb7yTS_4tOHyPy3fQMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/etX5z3Aq8sFGVC_6Xg3StZmq3Fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/Rz3bxLs4Hb7yTS_4tOHyPy3fQMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:4a:00:8f:6b:26:c9:43:ad:fc:ca:34:d3:67:b3:11:11:d3:
18:e4:d8:9f:e4:74:b9:34:66:26:0f:53:f1:e5:a4:cd:8f:f3:
ff:f0:d4:9f:ff:0a:13:71:f0:e7:50:17:35:0a:17:64:33:1a:
bd:9e:e1:d5:17:d4:1f:43:23:10:35:26:c1:84:69:17:71:d4:
da:64:dc:65:de:ec:67:fb:8c:fc:9c:8c:1e:3b:69:a6:75:3f:
08:9b:ec:32:63:c3:fb:31:89:f5:b1:19:b5:d3:e4:7d:4c:ea:
56:50:d9:72:d4:5f:c2:b2:bd:5d:4f:4a:2f:ac:92:e5:27:02:
f9:55:a6:96:56:9c:13:64:2c:46:35:46:61:13:ca:af:40:20:
03:a2:a9:b3:be:e2:58:e6:06:63:3b:19:61:c9:d2:04:4d:08:
90:54:6e:ed:6e:da:ba:87:9f:4b:7c:21:0b:59:3f:60:f8:6f:
79:1b:8b:5f:2b:2e:30:ac:6e:8e:7c:28:21:47:2e:6e:c7:2e:
85:db:3b:19:a5:2e:be:ec:33:74:4e:2b:7e:d8:1e:eb:d0:2c:
3a:e0:60:6b:12:af:b4:09:4f:1b:0c:22:1a:4e:83:09:34:c9:
2f:d6:1b:aa:15:ed:e8:e1:2b:c9:a3:c5:2e:bd:6f:b2:f9:da:
42:52:e3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:25 2023 by rpki-client on console.sobornost.net