Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/X7gLxuib--fUYxciw1WV9X9UPCg.roa
File: X7gLxuib--fUYxciw1WV9X9UPCg.roa (raw, json)
Hash identifier: WaRfDZ1SaFBtgQTHSZRZgtiDTuVJLz11bJSJixrJK2M=
Subject key identifier: 5F:B8:0B:C6:E8:9B:FB:E7:D4:63:17:22:C3:55:95:F5:7F:54:3C:28
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018A757C4224BC917230D8C4085555D1590A
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/X7gLxuib--fUYxciw1WV9X9UPCg.roa
Signing time: Fri 08 Sep 2023 15:49:52 +0000
ROA not before: Fri 08 Sep 2023 15:49:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 94.74.152.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:75:7c:42:24:bc:91:72:30:d8:c4:08:55:55:d1:59:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 8 15:49:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fb80bc6e89bfbe7d4631722c35595f57f543c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c8:77:2d:d1:8e:29:dc:7b:65:97:f9:5b:9d:
ff:e7:10:a6:ef:e7:9f:73:d0:3d:2e:5e:0f:f7:5e:
80:aa:87:8f:7f:b7:30:2e:12:a2:3c:63:38:e8:78:
b7:c0:ff:5e:36:a1:b2:3d:b9:b0:cb:6b:c0:39:05:
42:f3:fd:6b:84:75:18:b9:3c:ac:4f:c1:c5:c2:f2:
d2:7c:bb:28:df:8b:e0:93:75:4c:74:25:71:bb:99:
9b:1b:6a:13:98:02:5c:ed:a6:93:a5:1e:1b:7c:41:
90:71:b5:5f:e5:e0:e7:d6:32:db:c2:f1:53:e2:ab:
79:ce:3a:df:83:c5:b8:d0:da:4d:bb:77:22:02:03:
fe:e3:83:19:d8:ef:73:84:c4:b1:5c:70:3b:02:a5:
15:01:c5:3f:50:8e:e2:72:68:eb:f3:51:40:94:29:
ad:af:58:95:bd:c6:7a:ea:34:f6:ab:37:a4:02:0c:
6e:a2:66:ad:95:78:4e:77:91:25:e1:c4:21:72:64:
75:c7:fa:79:2d:bb:17:a4:5c:7a:57:ab:47:70:aa:
95:ab:44:4d:1e:90:cc:35:1f:a8:b7:ca:60:60:e8:
cf:87:e1:61:cc:1e:77:d3:83:b1:61:fd:f1:73:9e:
bd:3c:4e:2e:90:f6:dc:9b:a5:88:a8:d9:bc:56:04:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B8:0B:C6:E8:9B:FB:E7:D4:63:17:22:C3:55:95:F5:7F:54:3C:28
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/X7gLxuib--fUYxciw1WV9X9UPCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.74.152.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:1b:46:0f:b7:77:75:66:af:8b:b9:44:9b:1f:4f:b8:6c:6f:
5f:77:50:06:0d:cd:bf:a9:cc:7a:56:07:ff:08:a1:22:b1:76:
99:07:60:b0:55:b4:4b:56:d9:14:58:fd:79:e1:9c:71:ad:d9:
68:a1:82:df:0a:6e:07:31:47:cd:51:47:ec:40:11:94:a5:17:
10:73:6c:b5:b4:cc:ec:cd:de:71:60:12:7c:da:f3:c3:00:93:
e3:b5:4c:94:7a:ba:a1:c7:b8:a4:1f:4b:ab:3c:52:2f:b6:e5:
84:e9:7f:aa:f0:2b:06:e1:c4:6c:41:b6:50:8d:79:a2:20:09:
4a:81:bc:e9:31:77:1e:2b:bb:35:8e:e2:02:13:48:1c:e9:32:
75:4e:e4:63:9b:8d:96:6b:2f:9c:2f:8a:b9:ab:ae:0d:3b:b1:
98:db:97:d8:4b:1d:39:21:7b:0c:4f:60:35:22:6f:a4:81:67:
c5:55:e2:62:f3:c1:10:26:1a:a7:b2:62:11:9f:be:b9:6f:ba:
ce:ba:dc:26:c3:12:63:99:3b:16:79:0f:be:55:f2:41:0c:eb:
fc:92:42:a8:33:d3:93:2c:93:34:b5:d9:df:df:c8:b0:a6:5c:
88:f5:5e:13:57:41:da:b5:c4:07:a8:b0:12:71:90:f2:38:cd:
fc:d4:86:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net