Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/tzOWKGtfUVrzVY4FiJAEykPV20Q.roa
File: tzOWKGtfUVrzVY4FiJAEykPV20Q.roa (raw, json)
Hash identifier: s6x3f3e/Chd7VWVarXn/0aGgUbl8tCKtcTP1/JcQkfw=
Subject key identifier: B7:33:96:28:6B:5F:51:5A:F3:55:8E:05:88:90:04:CA:43:D5:DB:44
Certificate issuer: /CN=57c76a80ec2912a568935cb57b6a650f03dfd8d2
Certificate serial: 018573313B8389C4DF657552D80ED8C7EE15
Authority key identifier: 57:C7:6A:80:EC:29:12:A5:68:93:5C:B5:7B:6A:65:0F:03:DF:D8:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8dqgOwpEqVok1y1e2plDwPf2NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/tzOWKGtfUVrzVY4FiJAEykPV20Q.roa
Signing time: Mon 02 Jan 2023 15:54:44 +0000
ROA not before: Mon 02 Jan 2023 15:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48705
IP address blocks: 193.39.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:3b:83:89:c4:df:65:75:52:d8:0e:d8:c7:ee:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57c76a80ec2912a568935cb57b6a650f03dfd8d2
Validity
Not Before: Jan 2 15:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b73396286b5f515af3558e05889004ca43d5db44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:86:88:16:06:8e:73:5e:f6:cf:76:6e:3d:
72:c4:fe:31:4e:13:29:37:7a:7d:d3:f0:f6:89:da:
9a:f9:d9:a9:66:e7:e1:11:d1:9e:00:be:ae:88:ec:
8f:d4:3a:0b:3e:9e:f3:c0:5b:32:ca:39:35:c8:10:
63:2b:46:fa:69:11:08:33:33:8d:1e:ea:1d:2f:3c:
92:28:e9:4c:17:33:3a:13:74:a3:cb:61:fd:3d:21:
05:56:d4:38:67:1d:f9:3a:e0:79:8f:74:fc:9b:46:
b0:27:6f:e6:ae:93:0e:69:e8:e7:0d:9e:36:b3:76:
3a:e6:db:19:3f:51:32:1f:8e:13:14:6b:7b:e8:8a:
5a:6b:a1:19:ae:c9:bc:81:1d:7b:11:ff:00:2d:19:
9c:6b:36:02:95:b9:d0:b6:0e:de:87:c1:e9:33:6b:
46:7e:52:f9:80:e7:9b:73:a1:e1:83:43:85:9b:d4:
64:ca:45:14:ae:48:ab:12:13:6c:fe:c6:e8:4c:36:
b3:92:ae:4e:2e:94:1a:b7:d4:ec:dc:0a:4c:28:d2:
7c:2c:95:04:21:5f:56:76:b9:34:de:9e:6a:5e:c5:
c8:05:cc:c5:7e:b2:67:50:1a:4e:e8:ff:f6:32:56:
7f:19:14:7b:85:ed:ea:9d:69:3c:ab:7f:27:46:aa:
a7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:33:96:28:6B:5F:51:5A:F3:55:8E:05:88:90:04:CA:43:D5:DB:44
X509v3 Authority Key Identifier:
keyid:57:C7:6A:80:EC:29:12:A5:68:93:5C:B5:7B:6A:65:0F:03:DF:D8:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8dqgOwpEqVok1y1e2plDwPf2NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/tzOWKGtfUVrzVY4FiJAEykPV20Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/V8dqgOwpEqVok1y1e2plDwPf2NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.66.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d2:13:29:3d:cf:89:d7:cf:cc:3b:0a:8a:18:ca:62:63:ed:
4d:6c:d1:22:33:2c:5c:d7:80:7d:33:c6:c8:d1:81:d1:e7:0e:
5c:ce:f8:b4:2b:a5:05:e5:66:59:87:50:13:f9:08:d1:a5:16:
41:1a:b7:c3:80:8a:67:b1:27:75:b4:b2:0a:d9:e0:32:48:5e:
a1:c8:01:04:64:3d:17:33:4b:90:6b:c5:c5:0f:22:a3:ab:fe:
6b:7e:5c:44:81:44:39:69:c8:9f:ca:de:fc:09:0c:51:f7:f2:
62:0b:25:93:e9:5c:00:d2:d3:b8:82:f2:2a:14:b6:61:4f:ea:
97:03:65:6a:57:60:ea:ca:2a:cf:54:05:dd:c0:c5:af:e7:e3:
c7:f1:bf:2e:1b:cf:3b:34:88:aa:2d:f8:29:74:9c:3e:2c:44:
2f:ca:c9:60:ba:83:f8:0c:d0:ac:8d:a1:44:4b:69:96:de:8b:
14:b6:03:cd:06:87:98:20:71:fa:ea:d8:c2:45:30:c4:8d:2e:
51:c0:e5:73:b1:01:55:4b:d6:de:57:ae:9b:63:1a:94:6d:9d:
57:24:fb:99:88:04:24:75:a7:95:51:e1:18:4c:cb:b1:51:e9:
3c:fc:a6:02:f1:c6:95:67:21:0e:59:a6:26:bb:79:75:75:0c:
3c:45:d7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:26 2024 by rpki-client on console.sobornost.net