Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/6ezAxdZplNwL76gH_7fltsG091o.roa
File: 6ezAxdZplNwL76gH_7fltsG091o.roa (raw, json)
Hash identifier: drF1/kap7OWP0h4wK5Gk4ezxSJWNvRewJVWLX0SILWw=
Subject key identifier: E9:EC:C0:C5:D6:69:94:DC:0B:EF:A8:07:FF:B7:E5:B6:C1:B4:F7:5A
Certificate issuer: /CN=d44bd5653013fa7ca34f52284309a688b249e7a0
Certificate serial: 01856F5DE8D0FB34F8E6E27CB683FF7185CC
Authority key identifier: D4:4B:D5:65:30:13:FA:7C:A3:4F:52:28:43:09:A6:88:B2:49:E7:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EvVZTAT-nyjT1IoQwmmiLJJ56A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/6ezAxdZplNwL76gH_7fltsG091o.roa
Signing time: Sun 01 Jan 2023 22:05:03 +0000
ROA not before: Sun 01 Jan 2023 22:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44858
IP address blocks: 77.241.68.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:e8:d0:fb:34:f8:e6:e2:7c:b6:83:ff:71:85:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d44bd5653013fa7ca34f52284309a688b249e7a0
Validity
Not Before: Jan 1 22:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9ecc0c5d66994dc0befa807ffb7e5b6c1b4f75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bb:03:66:45:fd:38:00:67:6c:cd:29:bc:83:
da:95:3e:ac:1e:9e:e7:ab:ae:d8:5f:92:17:c6:18:
ce:f1:93:5a:79:0e:59:e4:75:61:23:07:97:77:15:
11:db:5a:e0:0c:40:b4:89:80:a6:9c:61:f3:d3:0c:
8a:c1:fe:71:0a:69:2c:0e:38:44:05:1f:d9:ad:de:
9f:cd:d3:9e:5e:5a:b1:85:4f:33:4c:d4:d7:36:72:
41:73:ea:5a:37:2b:00:e4:1a:eb:8d:d1:cb:0f:39:
fd:ff:08:93:ff:41:3d:89:16:eb:0c:11:47:fe:24:
9b:b5:83:9d:9e:12:e6:13:40:82:eb:68:ef:47:b4:
20:cd:e1:a6:38:de:9f:7d:88:e9:a6:e3:c0:e4:cc:
d2:67:07:af:0f:46:68:aa:0d:c5:ae:b2:7c:cd:54:
b8:a2:24:a3:6c:47:1d:3b:11:9a:8c:6d:fd:02:33:
dd:a3:97:73:c5:40:4c:1d:ec:b1:02:42:5e:8b:51:
3f:a7:6d:ca:9c:7f:b0:25:18:91:5b:e7:58:b2:6f:
ae:1e:82:65:3b:b4:4e:0c:82:bd:d5:64:d1:8f:12:
e1:76:6e:57:9d:1e:1d:db:32:74:d2:d6:6f:da:6f:
9d:28:f5:86:38:5d:09:c9:12:2e:c7:87:ac:e0:a8:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:EC:C0:C5:D6:69:94:DC:0B:EF:A8:07:FF:B7:E5:B6:C1:B4:F7:5A
X509v3 Authority Key Identifier:
keyid:D4:4B:D5:65:30:13:FA:7C:A3:4F:52:28:43:09:A6:88:B2:49:E7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EvVZTAT-nyjT1IoQwmmiLJJ56A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/6ezAxdZplNwL76gH_7fltsG091o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a3f9b-1b87-4855-ba3c-b5012662020d/1/1EvVZTAT-nyjT1IoQwmmiLJJ56A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.68.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:4a:ee:0c:c1:37:50:ce:33:53:f9:ec:7a:87:a4:c2:44:7f:
47:93:f7:40:c9:4d:2a:75:bf:6c:2f:f8:61:a7:75:40:21:98:
af:ce:3c:8d:53:12:26:a6:a1:3b:83:aa:4f:a2:ab:ed:c7:6b:
9f:6f:a9:24:40:28:dd:7a:53:95:fc:8f:d9:5c:19:5c:42:d8:
8b:4d:61:84:75:af:7d:08:15:f5:fb:24:e4:9b:f1:cf:76:f3:
4c:f4:93:53:6f:47:47:9e:b1:c0:90:25:eb:19:c0:d0:45:38:
a0:3e:fb:4b:ca:5a:62:17:38:e8:11:8b:d6:59:c1:0c:59:38:
4e:2e:e6:da:a1:cb:d5:cc:0b:16:f0:ba:fb:38:36:6d:d6:f1:
18:8a:b2:82:02:78:21:2d:56:94:08:ce:4b:80:95:73:96:c6:
18:e6:ca:0a:6b:7f:d0:92:29:1b:32:33:e4:d6:5c:ad:6b:6a:
68:72:70:8f:a1:81:40:03:00:7c:6c:8d:73:94:cb:73:d6:aa:
69:cc:e1:5c:d2:65:27:dc:f1:39:68:bb:ad:95:85:a4:63:a5:
57:45:31:08:79:e5:0a:3a:6f:98:6b:0e:14:1f:7c:54:1b:dd:
85:0f:7e:df:b6:05:13:a3:3d:88:68:dc:74:a9:1c:b2:b3:be:
7a:ee:d3:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:19 2024 by rpki-client on console.sobornost.net