Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/d6jlUX-oWyQCSQyUmPrfPpWtpl0.roa
File: d6jlUX-oWyQCSQyUmPrfPpWtpl0.roa (raw, json)
Hash identifier: 5Ptk+5GZx91Bgw6wpDwgNvHNZJRjFCyCX/w4MsP7LkU=
Subject key identifier: 77:A8:E5:51:7F:A8:5B:24:02:49:0C:94:98:FA:DF:3E:95:AD:A6:5D
Certificate issuer: /CN=726b350e9f4f1259e2f9c609b22e65fbd186206b
Certificate serial: 018747BD8AF983322A0B456B92DDC7AA7941
Authority key identifier: 72:6B:35:0E:9F:4F:12:59:E2:F9:C6:09:B2:2E:65:FB:D1:86:20:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cms1Dp9PElni-cYJsi5l-9GGIGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/d6jlUX-oWyQCSQyUmPrfPpWtpl0.roa
Signing time: Mon 03 Apr 2023 15:30:16 +0000
ROA not before: Mon 03 Apr 2023 15:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 149.232.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:47:bd:8a:f9:83:32:2a:0b:45:6b:92:dd:c7:aa:79:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=726b350e9f4f1259e2f9c609b22e65fbd186206b
Validity
Not Before: Apr 3 15:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77a8e5517fa85b2402490c9498fadf3e95ada65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b6:0c:64:09:75:30:e5:d6:10:8a:58:9c:42:
fa:b6:00:56:be:3e:2e:0e:6c:2e:8b:9b:9b:5f:8a:
03:92:5b:18:73:64:bc:c0:fc:0a:93:54:52:b6:f7:
e3:bc:d9:fe:23:83:2e:5c:3a:2d:17:fa:42:74:88:
c2:a7:1e:f5:0c:ed:f1:40:36:5f:bb:b0:5d:c2:9c:
18:4f:ec:8e:3b:af:76:06:cb:5a:7b:a7:1f:c4:b3:
42:c1:c0:af:ab:37:cf:b3:33:61:0a:26:85:19:e0:
90:86:95:9d:35:1e:6d:47:34:0c:87:8f:3e:b8:b7:
fd:1e:23:0e:4e:15:88:c2:5f:a5:89:13:92:3c:76:
c6:26:9d:02:46:97:60:62:66:71:61:a1:0b:71:a2:
b6:11:41:36:35:d5:b0:6d:67:5e:2d:bd:c3:4a:09:
60:b9:4c:23:d2:74:8f:1d:98:81:65:52:80:a0:0e:
ec:a6:bd:b2:ba:a8:9a:3f:2d:b5:6b:4a:e2:25:3c:
f8:1d:c4:51:de:4e:51:27:01:b1:60:5a:03:92:07:
ed:6b:4b:d3:b8:ac:58:70:b3:55:c4:9f:d0:4c:af:
f6:72:7d:40:33:0e:f6:94:c9:8a:66:bf:34:57:a4:
bf:c5:3e:5c:8e:c4:2a:ba:95:31:b5:eb:b8:e1:31:
3a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A8:E5:51:7F:A8:5B:24:02:49:0C:94:98:FA:DF:3E:95:AD:A6:5D
X509v3 Authority Key Identifier:
keyid:72:6B:35:0E:9F:4F:12:59:E2:F9:C6:09:B2:2E:65:FB:D1:86:20:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cms1Dp9PElni-cYJsi5l-9GGIGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/d6jlUX-oWyQCSQyUmPrfPpWtpl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/477c86-c7d6-4e37-bff6-a0072bac9f48/1/cms1Dp9PElni-cYJsi5l-9GGIGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.232.188.0/24
Signature Algorithm: sha256WithRSAEncryption
67:79:67:8c:3d:13:90:8e:7d:58:8b:71:81:76:89:72:40:c2:
80:55:45:93:06:01:36:8f:51:84:59:2f:cb:a4:fe:17:87:fa:
5a:8b:38:de:81:22:f5:e4:61:8e:59:e3:33:05:87:17:0c:e8:
b3:f4:a6:68:6e:b3:d4:ac:bf:f4:9b:fb:d1:bf:2d:74:3a:1f:
f2:cb:16:c1:df:b4:6e:fb:89:84:06:3e:af:39:a9:50:63:21:
93:6f:8c:8b:63:b6:d9:94:4c:b9:36:f9:a7:5c:1a:6a:e4:16:
6b:dc:cb:f5:4f:1a:3f:92:7a:df:68:c1:2d:c8:96:fc:88:09:
66:d4:3c:98:41:78:ea:aa:5b:fc:b4:35:b1:fe:29:72:27:2e:
9d:28:9e:47:07:05:ae:35:92:85:78:ce:fa:b3:ed:ef:b9:e3:
b6:b7:c9:e4:7d:3b:ba:65:65:32:bc:c9:ca:6c:1e:ba:48:a0:
3a:68:16:a1:06:5c:b3:b9:2c:82:30:41:9d:c3:b8:67:4f:77:
26:86:b2:95:ba:de:22:39:3b:d2:9e:fa:a7:74:22:50:0b:b3:
32:c2:f4:b8:58:28:98:d6:bc:8f:f9:ec:f9:ab:58:9d:7e:6a:
d7:58:c6:ab:46:05:f8:47:bf:73:3c:d1:6b:16:d7:5d:9b:dc:
b2:30:f5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:21 2024 by rpki-client on console.sobornost.net