Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ilkoZuPFjYsjiQDb4oMXenlMt1c.roa
File: ilkoZuPFjYsjiQDb4oMXenlMt1c.roa (raw, json)
Hash identifier: 88AvT/xf2lQyDsMoQSEhzqNEKYp7K3WJ1Hneb1aRt7g=
Subject key identifier: 8A:59:28:66:E3:C5:8D:8B:23:89:00:DB:E2:83:17:7A:79:4C:B7:57
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0188F3965AB6CC8448C88478D26CDB8518F2
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ilkoZuPFjYsjiQDb4oMXenlMt1c.roa
Signing time: Sun 25 Jun 2023 17:24:57 +0000
ROA not before: Sun 25 Jun 2023 17:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 5.178.101.0/24 maxlen: 24
5.178.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f3:96:5a:b6:cc:84:48:c8:84:78:d2:6c:db:85:18:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 25 17:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a592866e3c58d8b238900dbe283177a794cb757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:68:0f:07:d0:88:1a:94:fa:b1:5b:27:e4:51:
64:34:dd:41:0f:37:d5:d1:ae:1e:84:a8:d2:e3:22:
19:f9:7d:bd:b1:06:f8:85:7a:bc:21:a9:95:fd:c0:
cc:63:ed:46:d8:54:70:28:aa:74:01:a2:37:3d:a0:
98:3c:3f:8c:42:14:c9:c1:ff:94:a2:87:0f:0b:18:
4e:9f:11:82:7d:36:47:3f:d9:0e:dc:5b:8e:e3:67:
8e:be:64:9a:07:25:89:9b:39:b6:0b:0e:ad:7f:ef:
b1:07:53:57:ba:01:bb:98:6b:10:1b:82:6e:23:eb:
86:ea:4d:fc:bd:18:e2:6e:b6:0f:66:2b:37:01:ab:
ff:b6:68:b7:ee:b4:01:4a:c7:2f:24:f3:13:90:bd:
b6:47:4d:03:89:58:6c:08:59:fe:88:1b:2c:c6:05:
e3:04:70:dc:ef:38:bd:b3:c8:fd:d4:b9:8c:20:86:
e1:d0:61:e6:98:bd:64:a1:93:f0:1b:23:94:96:d3:
3d:92:e3:5a:36:f6:ce:02:db:5e:00:21:dd:0d:6e:
cb:3d:12:95:b2:45:d7:6b:3e:3c:4e:14:bb:1e:d0:
5b:db:81:90:ca:71:e8:a2:5d:3c:19:a5:12:61:5b:
e9:00:9b:2a:a9:00:64:31:c3:ba:04:ed:17:38:09:
ba:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:59:28:66:E3:C5:8D:8B:23:89:00:DB:E2:83:17:7A:79:4C:B7:57
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ilkoZuPFjYsjiQDb4oMXenlMt1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.101.0/24
5.178.107.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:9b:37:31:9c:b9:27:ff:25:4e:e3:ad:ac:5b:58:6e:8c:25:
53:49:89:0e:7e:98:c7:8e:e5:3d:59:a3:bd:71:8c:9f:55:28:
6d:15:02:91:28:1f:f6:5a:0c:12:11:6d:a8:e4:fe:59:fd:a8:
ba:b2:ec:76:fc:de:ff:79:60:8e:d4:bd:49:64:bf:70:96:6e:
8e:58:d1:e9:55:1a:07:74:57:bc:5a:8d:38:06:91:51:35:cf:
1b:67:0a:0d:67:08:5e:41:a7:cb:c2:08:2e:bb:6f:fa:55:7f:
b7:f8:6e:2e:a1:6b:3b:dd:64:f7:8e:26:1b:41:ae:e3:36:32:
d0:88:24:bc:6d:f5:67:39:ab:18:66:a6:ae:37:5a:99:97:9f:
82:b0:2c:78:9a:93:24:0d:2c:4c:1d:e2:9e:6e:db:bb:2b:93:
07:f8:c7:87:6a:38:b5:3c:c3:8d:82:ff:f8:de:f9:75:95:0c:
f5:6f:03:ee:dd:7e:ae:0c:96:e7:2b:1a:2f:39:8b:06:00:f4:
cf:d6:29:2a:9b:b9:6b:d1:c5:59:78:c7:52:93:5d:c6:30:ac:
a2:db:69:87:c0:7d:2c:f2:c0:50:61:74:77:2e:cd:fa:e7:f7:
12:cb:fa:70:a7:d5:1d:6a:f1:80:bf:f6:04:5b:67:53:b0:83:
73:80:f7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net