Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/XYUFcDnMTrVfXFjkwHKFQz2Wumk.roa
File: XYUFcDnMTrVfXFjkwHKFQz2Wumk.roa (raw, json)
Hash identifier: jwTehvfLFeGSuYlK9G0Qn/LFyjyccwQlWK9a9EZf+90=
Subject key identifier: 5D:85:05:70:39:CC:4E:B5:5F:5C:58:E4:C0:72:85:43:3D:96:BA:69
Certificate issuer: /CN=7df7cfd6c8826a67f642a373d131955308d9c1ca
Certificate serial: 0185724C5DBCDF0B4CCC03A64B7FB4D6D59E
Authority key identifier: 7D:F7:CF:D6:C8:82:6A:67:F6:42:A3:73:D1:31:95:53:08:D9:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fffP1siCamf2QqNz0TGVUwjZwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/XYUFcDnMTrVfXFjkwHKFQz2Wumk.roa
Signing time: Mon 02 Jan 2023 11:44:45 +0000
ROA not before: Mon 02 Jan 2023 11:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205654
IP address blocks: 185.211.20.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:5d:bc:df:0b:4c:cc:03:a6:4b:7f:b4:d6:d5:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df7cfd6c8826a67f642a373d131955308d9c1ca
Validity
Not Before: Jan 2 11:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d85057039cc4eb55f5c58e4c07285433d96ba69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:77:3e:80:8b:ff:4e:e4:48:1a:e5:69:e4:03:
3c:02:be:7a:cc:69:3f:ee:da:87:05:95:94:49:f2:
c9:97:0e:cb:6c:77:5b:02:92:b6:5d:db:50:df:2c:
37:59:76:57:c6:1c:d3:70:b9:55:06:db:3c:50:cd:
e1:27:0c:4b:b6:02:23:46:d5:07:6e:cd:8c:c2:0a:
98:a2:10:9b:2c:d5:9c:08:76:2c:58:41:bc:b3:74:
cd:5b:fb:5b:e4:53:08:5a:24:57:2a:68:07:17:d5:
b4:65:7e:db:33:7e:27:65:50:24:a7:e5:9e:d0:71:
02:c2:88:3c:9f:5f:8a:ca:ca:56:9e:d5:35:49:58:
dc:b1:89:25:e7:8a:86:f8:bf:9a:cb:d6:9d:57:78:
5c:99:22:7e:7a:95:b6:6f:bf:2a:86:5a:4d:e7:73:
9b:53:85:77:22:92:9e:10:34:45:2e:37:c7:55:00:
98:5d:81:96:68:0e:46:db:e7:d2:59:81:fd:ad:dc:
b6:97:59:f4:1b:47:60:79:6f:92:f2:2a:13:95:08:
e4:cc:99:82:d3:a9:94:00:ba:e4:7b:7e:b2:28:a1:
66:f8:92:f5:f5:8d:91:ae:13:fd:66:e3:95:55:08:
7e:3c:5f:18:ce:6f:18:ce:20:d6:c9:11:26:f4:d4:
56:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:85:05:70:39:CC:4E:B5:5F:5C:58:E4:C0:72:85:43:3D:96:BA:69
X509v3 Authority Key Identifier:
keyid:7D:F7:CF:D6:C8:82:6A:67:F6:42:A3:73:D1:31:95:53:08:D9:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fffP1siCamf2QqNz0TGVUwjZwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/XYUFcDnMTrVfXFjkwHKFQz2Wumk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7a7871-08f3-4757-a9f0-bf1c5cc36b66/1/fffP1siCamf2QqNz0TGVUwjZwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.20.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:7b:25:47:ee:fa:39:0a:dc:a1:8b:e1:a7:cd:20:fb:5b:d1:
45:45:5b:30:11:cb:89:51:d6:1b:63:a3:7f:ba:54:81:ce:9a:
f1:ba:b5:0b:39:bf:64:fb:97:4c:90:85:bc:9f:36:67:c8:24:
3a:bd:e2:07:56:3f:b7:53:d1:19:d3:8f:d9:48:79:ee:a3:ff:
36:b5:7a:95:01:46:a7:d8:90:4c:d6:f4:c8:18:eb:58:58:00:
36:ba:f7:51:c1:89:38:8a:59:c4:7c:2d:09:c6:46:3a:0f:34:
ba:72:23:54:1c:77:ba:bc:a4:3d:d8:81:b9:34:4e:e7:55:72:
0a:b7:df:a0:b4:bc:8a:ef:66:02:88:2b:9d:a7:a0:c4:15:f5:
e9:77:f7:ef:b4:78:22:12:19:7e:f9:1d:67:de:f8:19:49:39:
6e:30:2f:1d:69:a4:b8:2e:54:29:8b:19:54:66:30:24:90:2f:
00:95:c5:08:0e:14:05:44:b1:bb:b8:c7:b2:5f:d7:11:a0:04:
5d:7e:dd:88:ed:fb:e1:cb:f1:fd:f3:bb:77:53:03:d8:50:ad:
9f:0e:69:31:8f:9e:82:21:7a:ca:1c:37:ac:0f:be:14:67:10:
58:5c:5f:97:31:60:45:ec:30:65:ba:54:c1:df:0f:0d:ad:92:
30:77:c8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net