Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/gWlLgtQNATx-jym-fUUKcHAUaUk.roa
File: gWlLgtQNATx-jym-fUUKcHAUaUk.roa (raw, json)
Hash identifier: HH7phZ0O5+QuxAZhtDZqGh/8mGmY6oPZoadrS5Iz1aY=
Subject key identifier: 81:69:4B:82:D4:0D:01:3C:7E:8F:29:BE:7D:45:0A:70:70:14:69:49
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 01856F26D4DAC9C0401A57BAA7AAFCB01077
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/gWlLgtQNATx-jym-fUUKcHAUaUk.roa
Signing time: Sun 01 Jan 2023 21:04:53 +0000
ROA not before: Sun 01 Jan 2023 21:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57288
IP address blocks: 176.97.8.0/21 maxlen: 21
2001:67c:1138::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:d4:da:c9:c0:40:1a:57:ba:a7:aa:fc:b0:10:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Jan 1 21:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81694b82d40d013c7e8f29be7d450a7070146949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:d4:3d:19:01:75:27:3b:ad:3d:cb:7a:c3:
65:d0:9c:f0:cb:3c:07:01:47:d9:07:ad:10:8e:85:
59:2c:3f:b4:6a:6c:36:95:11:c4:90:28:1c:1b:02:
4a:27:ca:f8:69:e8:81:70:28:cd:3b:bd:62:ae:7c:
28:a1:13:30:07:26:6f:9b:b3:72:91:5d:b7:89:8c:
33:a2:73:5d:4e:ac:8d:ce:a5:80:77:45:50:8b:70:
b6:74:26:5a:25:3a:63:39:44:dc:a2:df:8b:4c:a1:
47:4b:c2:7d:21:99:80:83:72:63:3f:ea:0c:32:71:
1f:10:08:09:66:18:fe:28:3d:49:0a:6c:68:2c:62:
70:57:e9:05:91:a9:e3:7c:cf:04:78:0e:07:82:52:
08:3b:f9:38:8b:fc:62:4b:c6:5e:87:f7:11:c2:13:
83:c8:cc:e5:56:92:e8:c9:d7:74:f9:b5:3a:1a:7b:
40:d1:34:7d:b3:d7:11:bc:7e:0d:f8:b5:f7:24:6d:
91:17:a0:f5:12:b0:40:19:43:07:0d:5a:3f:b2:7d:
cd:86:8a:45:04:d0:0c:2b:9d:ac:a1:30:b0:d9:41:
e5:49:a4:d1:78:17:d3:44:fa:07:1c:ca:2a:bb:09:
2a:ab:0c:b7:5c:57:7b:9d:62:0f:22:ec:57:39:a9:
38:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:69:4B:82:D4:0D:01:3C:7E:8F:29:BE:7D:45:0A:70:70:14:69:49
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/gWlLgtQNATx-jym-fUUKcHAUaUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.8.0/21
IPv6:
2001:67c:1138::/48
Signature Algorithm: sha256WithRSAEncryption
9d:ff:ff:47:c0:c0:14:f7:f8:f4:64:1a:e1:02:66:f3:2b:b6:
82:70:76:14:6a:f1:a4:d8:88:f2:14:31:a3:dc:0e:6b:d3:27:
a5:08:81:66:7f:ee:5f:a2:dc:0f:f8:ca:5d:69:24:9b:c9:ea:
7e:35:ea:de:c3:50:5a:68:a4:a0:fe:0c:19:70:7e:0f:ab:ab:
11:5a:b2:be:ff:f1:e6:c7:d2:8b:71:3f:44:93:3a:e7:74:54:
ed:39:de:0b:4d:2f:e7:1e:cf:1a:7a:5e:66:dc:87:02:80:e6:
cf:08:fe:dc:e4:cd:a3:b5:6f:43:1a:0f:e2:e6:c6:7d:ac:11:
8a:a2:b4:0d:e8:56:9c:2d:a3:92:0f:f8:05:09:e6:35:53:e0:
82:38:f8:d5:c9:7d:72:6d:e3:40:9b:33:5b:e7:3c:20:bd:c3:
4e:84:65:e6:f8:7d:6e:c7:01:49:41:cf:f8:c4:ab:78:02:70:
28:f6:52:ce:48:47:2f:1f:aa:95:33:f0:fd:ab:45:1b:cc:91:
0b:b5:e0:4f:5a:f9:10:81:f1:c3:39:9f:27:b6:46:1c:c4:98:
93:92:05:84:f7:35:18:13:20:fc:31:c8:7a:0c:84:6a:a3:34:
7d:74:9d:78:47:13:5c:f7:89:62:40:6c:2e:35:e5:70:15:38:
5c:59:75:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:08 2024 by rpki-client on console.sobornost.net