Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/Q7zp1totxKpcMaLDz3csnavKf-o.roa
File: Q7zp1totxKpcMaLDz3csnavKf-o.roa (raw, json)
Hash identifier: odNH35jcwYjpWAAiQL9RLisxf2fhYAkr56urhgKp2Mc=
Subject key identifier: 43:BC:E9:D6:DA:2D:C4:AA:5C:31:A2:C3:CF:77:2C:9D:AB:CA:7F:EA
Certificate issuer: /CN=726b350e9f4f1259e2f9c609b22e65fbd186206b
Certificate serial: 018ADA11BF6CAFD0CFC7228CF811EEAFFAE4
Authority key identifier: 72:6B:35:0E:9F:4F:12:59:E2:F9:C6:09:B2:2E:65:FB:D1:86:20:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cms1Dp9PElni-cYJsi5l-9GGIGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/Q7zp1totxKpcMaLDz3csnavKf-o.roa
Signing time: Thu 28 Sep 2023 04:35:10 +0000
ROA not before: Thu 28 Sep 2023 04:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216239
IP address blocks: 149.232.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:da:11:bf:6c:af:d0:cf:c7:22:8c:f8:11:ee:af:fa:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=726b350e9f4f1259e2f9c609b22e65fbd186206b
Validity
Not Before: Sep 28 04:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43bce9d6da2dc4aa5c31a2c3cf772c9dabca7fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2d:87:5e:20:ea:03:3f:97:11:b1:49:00:ff:
71:c5:f8:c3:b5:10:c1:01:3c:d2:6a:3a:cd:78:6e:
b6:d9:49:42:4b:be:55:01:80:9d:91:8a:ea:8f:69:
b4:c7:15:68:05:e6:7d:cf:d5:7d:9a:e0:3e:a8:5e:
e0:2c:5b:0e:26:c9:f8:71:4f:ab:e1:c7:5d:9e:d4:
81:e1:db:56:a0:f4:48:f2:a8:e5:db:d5:98:36:c3:
ec:bb:ea:f4:cf:b2:a8:f1:91:a5:5b:cb:12:7b:00:
91:7d:b5:ed:6f:49:f2:88:ca:f6:bb:98:aa:07:f0:
2f:e4:62:9a:d0:cc:b1:c7:d8:cc:42:8c:0b:78:fe:
69:61:84:15:bc:dd:91:b9:c7:19:71:aa:7f:f3:43:
0f:c4:cc:44:9e:e2:a6:0e:1a:87:69:aa:7a:3e:91:
af:a1:9c:1a:fa:f3:23:59:31:61:d4:92:9c:b2:a1:
48:15:23:6c:3d:61:ec:a9:15:94:5b:c3:b3:b0:42:
e7:d9:c7:46:56:58:f1:2f:5e:cb:69:c0:4b:94:3d:
90:2e:64:0e:44:9a:95:8b:53:e7:a9:1f:fd:47:c6:
99:73:e2:1a:84:18:40:50:6e:da:98:ea:2e:c5:66:
e3:ee:c3:9e:35:45:03:0a:8f:33:8a:e3:5d:74:5f:
06:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BC:E9:D6:DA:2D:C4:AA:5C:31:A2:C3:CF:77:2C:9D:AB:CA:7F:EA
X509v3 Authority Key Identifier:
keyid:72:6B:35:0E:9F:4F:12:59:E2:F9:C6:09:B2:2E:65:FB:D1:86:20:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cms1Dp9PElni-cYJsi5l-9GGIGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/Q7zp1totxKpcMaLDz3csnavKf-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/cms1Dp9PElni-cYJsi5l-9GGIGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.232.188.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:66:09:df:71:e4:62:0d:65:be:d7:d6:72:15:48:c7:2e:9e:
92:fd:c8:a6:5f:b6:86:68:eb:54:55:fa:87:57:27:ad:dc:98:
e2:fb:7c:a6:b0:69:06:dc:ec:98:ce:c9:31:c8:08:f1:5d:1f:
32:51:9d:e5:a4:d3:67:09:6d:3a:20:5a:00:dc:3e:1e:86:b2:
d9:0c:28:6e:9c:bf:47:bb:3c:da:58:49:8f:1d:ca:ad:66:8c:
dc:55:cc:5e:a6:90:9f:da:f7:f8:8d:36:42:8d:fd:f8:4a:36:
a5:af:6a:2e:7f:4f:8b:58:b9:1d:51:5c:0c:76:da:79:10:2b:
72:ac:70:2a:83:9f:3a:4e:12:3b:74:6b:a6:cf:2f:b8:18:99:
89:5c:db:b5:4f:5e:16:78:3c:4e:aa:c9:03:26:49:20:3c:6e:
6b:18:45:f1:36:89:46:63:2c:b2:2b:8d:d6:b5:45:78:90:21:
6d:be:0a:39:b4:d1:ec:5e:74:b0:22:ad:6b:2c:3e:22:6c:f3:
94:53:5c:ae:0f:16:55:3c:47:16:3f:5b:96:7d:e7:e1:3c:86:
f7:8e:7d:c5:08:1a:37:3c:39:08:95:a7:4a:71:72:c0:69:69:
46:1a:a0:2a:0c:ba:f8:1a:dd:ab:98:9d:21:a3:ed:e9:75:0d:
52:d0:bc:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:21 2024 by rpki-client on console.sobornost.net