Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/90XTwBaGmb1wZGI9KIQdAcSGpdQ.roa
File: 90XTwBaGmb1wZGI9KIQdAcSGpdQ.roa (raw, json)
Hash identifier: 4rnQkWLzauux6ZE93/L1bEmVZtA8Znn/rxjvzICGqLc=
Subject key identifier: F7:45:D3:C0:16:86:99:BD:70:64:62:3D:28:84:1D:01:C4:86:A5:D4
Certificate issuer: /CN=dd6daef6664a7529b629f3fd65004915230f1be9
Certificate serial: 018ABF110142351B5188EB7B369F345662F9
Authority key identifier: DD:6D:AE:F6:66:4A:75:29:B6:29:F3:FD:65:00:49:15:23:0F:1B:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2u9mZKdSm2KfP9ZQBJFSMPG-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/90XTwBaGmb1wZGI9KIQdAcSGpdQ.roa
Signing time: Fri 22 Sep 2023 22:44:37 +0000
ROA not before: Fri 22 Sep 2023 22:44:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 185.136.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bf:11:01:42:35:1b:51:88:eb:7b:36:9f:34:56:62:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6daef6664a7529b629f3fd65004915230f1be9
Validity
Not Before: Sep 22 22:44:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f745d3c0168699bd7064623d28841d01c486a5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1c:0e:a1:26:28:83:9b:66:96:9f:33:28:5d:
e8:45:d0:6a:d6:80:71:6d:1e:cb:78:65:48:ed:93:
b4:f6:d6:eb:4d:43:c3:34:7f:0c:70:de:51:8f:ae:
d1:7a:77:f0:84:9e:41:22:46:6d:4c:db:32:6f:2e:
7d:45:c1:07:bf:de:dc:e4:27:87:91:f2:33:a3:81:
d7:57:5a:1f:b7:dc:f7:97:05:e6:b3:28:83:c5:44:
67:4c:ae:de:5a:4c:d0:c8:67:4e:16:24:0a:a2:8c:
86:c7:26:8f:8f:6e:55:ba:b8:dd:c5:eb:cc:08:f6:
14:2c:8b:90:5f:59:f2:d3:c7:ff:d9:ff:4c:11:be:
ea:0c:2e:a6:ad:7e:0c:77:80:af:8c:4d:43:ac:48:
89:48:ee:ef:ec:fe:1e:5d:5d:4d:50:df:b2:60:e2:
ad:ac:04:c5:6e:0b:4a:20:8e:15:27:06:68:b8:2a:
d9:83:02:04:a1:17:5b:e8:0f:d8:31:9b:d1:38:00:
79:e6:cf:2f:e5:82:fe:d8:77:e7:2e:6b:a2:11:d6:
c8:1c:c5:fd:8b:bb:b1:67:01:35:34:12:7a:86:ce:
b8:10:2b:24:2e:a2:da:20:1f:e6:3d:7f:de:ac:bd:
0e:20:c4:0d:21:f1:a1:b0:59:77:2d:64:50:15:00:
af:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:45:D3:C0:16:86:99:BD:70:64:62:3D:28:84:1D:01:C4:86:A5:D4
X509v3 Authority Key Identifier:
keyid:DD:6D:AE:F6:66:4A:75:29:B6:29:F3:FD:65:00:49:15:23:0F:1B:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2u9mZKdSm2KfP9ZQBJFSMPG-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/90XTwBaGmb1wZGI9KIQdAcSGpdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7dd42b-66ed-4c13-a336-cfe1335f27fb/1/3W2u9mZKdSm2KfP9ZQBJFSMPG-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.87.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:65:61:04:e5:13:28:6c:d2:61:94:a9:8c:c9:a2:f2:4b:b3:
4a:0c:ec:ab:6c:8f:0f:15:35:1a:d9:e6:52:a1:6c:51:d5:9d:
2e:6d:5a:05:f0:9f:7b:13:e1:26:bc:34:62:b9:3c:2d:19:22:
ca:b8:25:dd:42:f7:13:c1:bd:d6:72:97:97:60:ea:bc:9a:7d:
b0:c6:58:86:15:e7:ec:ab:40:dd:ff:18:63:ec:46:59:45:c0:
f4:39:1f:f7:fb:31:30:9a:9d:66:b1:a8:db:c4:0e:ef:bf:2c:
1b:a9:7a:52:f0:4f:b0:35:d9:eb:69:e0:de:86:f9:4d:8b:e2:
54:36:a0:50:a1:b6:31:2f:03:8c:24:d0:53:48:57:33:84:39:
92:20:8a:ea:6a:4a:23:71:c1:d9:76:a5:99:aa:13:70:41:31:
72:4d:6a:fe:9e:e5:d9:38:08:d7:9d:e0:dc:3a:4a:5d:83:e3:
1c:ad:6a:e9:7b:16:c4:76:8f:50:98:9b:7f:de:29:ea:76:4b:
20:99:86:ec:b0:44:ab:95:b1:ab:8f:6d:03:5f:bf:70:99:aa:
79:31:32:9c:93:df:68:31:30:a9:6a:8f:d4:bf:0c:ee:dc:52:
fc:dd:b9:5d:e6:f6:51:f4:9b:c4:26:9d:3b:f5:24:75:b8:e5:
f0:f5:08:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net