Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/dcad13-e9e8-4d4f-afc2-62bc8fc755dd/1/EOPkDfF0VRQi089iVnzrTIviF5w.roa
File: EOPkDfF0VRQi089iVnzrTIviF5w.roa (raw, json)
Hash identifier: PgSvZPVgF1IWE0eXENAikPEb3mVOkvK6aHlEykbSjDE=
Subject key identifier: 10:E3:E4:0D:F1:74:55:14:22:D3:CF:62:56:7C:EB:4C:8B:E2:17:9C
Certificate issuer: /CN=8a324e4ce76939b4db57d5d350c2ad007b5980e1
Certificate serial: 01856BD3629C06444A2C899988568A3F0CBD
Authority key identifier: 8A:32:4E:4C:E7:69:39:B4:DB:57:D5:D3:50:C2:AD:00:7B:59:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijJOTOdpObTbV9XTUMKtAHtZgOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/dcad13-e9e8-4d4f-afc2-62bc8fc755dd/1/EOPkDfF0VRQi089iVnzrTIviF5w.roa
Signing time: Sun 01 Jan 2023 05:34:53 +0000
ROA not before: Sun 01 Jan 2023 05:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29446
IP address blocks: 82.146.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:62:9c:06:44:4a:2c:89:99:88:56:8a:3f:0c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a324e4ce76939b4db57d5d350c2ad007b5980e1
Validity
Not Before: Jan 1 05:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10e3e40df174551422d3cf62567ceb4c8be2179c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c5:b8:f5:5e:e7:9a:bd:92:75:56:21:3b:68:
36:de:2f:51:77:77:b1:d3:ce:c8:b7:07:00:5d:70:
8e:8b:4f:b4:cd:74:f2:e8:2b:1e:0c:7c:4f:8c:b0:
1c:71:a5:8c:ce:c0:42:30:0d:d4:ee:2d:41:e4:24:
ef:90:66:90:a8:ea:40:fb:d9:c2:f9:0d:cd:33:76:
84:12:2c:3e:d3:c8:64:c2:8a:ab:30:6b:f7:b8:ae:
0f:3f:73:89:4c:9f:5a:21:38:b0:c3:be:cc:9b:bf:
7e:e4:7f:11:c5:7e:47:7b:75:fd:2a:53:b1:47:02:
0f:33:e7:d8:3c:71:e3:3c:98:cc:96:3b:51:0c:4a:
3d:a2:a1:25:0c:78:8b:b7:d2:c6:13:8a:17:e4:88:
73:5a:21:53:21:62:23:bd:ff:16:b2:c2:1d:60:0a:
b7:07:f4:32:73:cc:f8:f1:5c:32:31:b8:2c:43:26:
ef:8b:1c:98:e1:63:68:67:5b:3a:e1:37:07:2a:a0:
77:7f:61:1a:3f:50:09:e0:47:1b:b9:3f:3e:65:89:
87:da:c1:b6:a6:0a:e5:4a:23:e1:ce:63:b7:8c:0c:
2a:6d:66:fe:cb:59:b3:64:00:19:d6:89:ef:1f:b8:
11:26:b2:7b:23:7e:7a:7b:b9:90:45:11:6e:f9:40:
23:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E3:E4:0D:F1:74:55:14:22:D3:CF:62:56:7C:EB:4C:8B:E2:17:9C
X509v3 Authority Key Identifier:
keyid:8A:32:4E:4C:E7:69:39:B4:DB:57:D5:D3:50:C2:AD:00:7B:59:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijJOTOdpObTbV9XTUMKtAHtZgOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dcad13-e9e8-4d4f-afc2-62bc8fc755dd/1/EOPkDfF0VRQi089iVnzrTIviF5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dcad13-e9e8-4d4f-afc2-62bc8fc755dd/1/ijJOTOdpObTbV9XTUMKtAHtZgOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.128.0/19
Signature Algorithm: sha256WithRSAEncryption
1e:c5:43:e3:9a:72:da:5f:65:5f:6d:b3:0b:17:5c:58:a9:b0:
d6:10:5e:f6:b3:a4:65:21:2b:cf:f2:a5:89:62:17:c1:15:d1:
51:32:d4:90:eb:5f:3c:99:d3:04:e3:ec:89:1f:ac:96:7e:af:
0c:74:0c:84:9e:61:24:80:07:10:92:57:22:64:2f:81:99:2b:
16:52:70:b7:50:0d:6e:0a:df:3d:2a:fb:5e:ef:90:04:89:f1:
ac:90:18:90:37:ee:da:71:7e:f4:03:76:d0:1c:6d:4b:9d:20:
4c:c8:64:93:97:53:32:7f:30:b1:f6:fb:5c:0e:47:c3:d3:f5:
e1:81:07:a7:e7:a1:e2:d2:7f:73:be:f9:fd:82:00:25:7b:62:
04:2b:12:92:b1:b0:a7:f8:bb:52:2e:06:3c:e9:d9:bb:40:92:
60:8d:c8:23:14:61:39:4a:fe:c8:12:c9:c3:d3:c2:1c:11:6a:
3d:21:e2:ed:e5:23:ee:2c:1d:78:f5:70:81:39:36:ee:d6:8b:
13:24:65:3d:c5:ff:7c:46:6e:ee:77:6c:44:8e:92:8b:70:5b:
d9:d6:f3:5f:1f:ad:18:2b:de:6f:d3:82:b4:26:51:97:a8:d5:
e8:cb:d9:8f:a3:19:21:64:23:d1:0e:70:6d:3b:29:31:52:b6:
71:a4:d2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:38 2024 by rpki-client on console.sobornost.net