Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/W_dfT_TybpyQ9JIJB-tpuTQ12HM.roa
File: W_dfT_TybpyQ9JIJB-tpuTQ12HM.roa (raw, json)
Hash identifier: weXGtc6rSePhcSJ5Gl7bMNp51oWxrlPBWyxuFJN/ad0=
Subject key identifier: 5B:F7:5F:4F:F4:F2:6E:9C:90:F4:92:09:07:EB:69:B9:34:35:D8:73
Certificate issuer: /CN=93e079d7349891d2b4024895fa67e41c18f56fd4
Certificate serial: 01856F151528DD2C2489370A85F86E165720
Authority key identifier: 93:E0:79:D7:34:98:91:D2:B4:02:48:95:FA:67:E4:1C:18:F5:6F:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-B51zSYkdK0AkiV-mfkHBj1b9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/W_dfT_TybpyQ9JIJB-tpuTQ12HM.roa
Signing time: Sun 01 Jan 2023 20:45:30 +0000
ROA not before: Sun 01 Jan 2023 20:45:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204101
IP address blocks: 185.111.152.0/22 maxlen: 22
2a06:5e40:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:15:28:dd:2c:24:89:37:0a:85:f8:6e:16:57:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e079d7349891d2b4024895fa67e41c18f56fd4
Validity
Not Before: Jan 1 20:45:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bf75f4ff4f26e9c90f4920907eb69b93435d873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:04:19:58:15:32:13:06:a9:cd:a8:93:bf:96:
80:7e:bd:ce:55:e6:43:6f:04:79:8b:25:85:12:27:
cd:f3:63:af:eb:f0:98:1a:f8:da:31:2b:45:5e:a0:
ba:86:4a:67:41:41:00:5c:31:31:11:9c:80:17:58:
39:3a:ef:1b:ea:2c:8d:01:d3:f1:ba:80:06:c4:b0:
4f:47:d9:68:ed:ae:10:9b:dd:be:66:e7:b5:d3:3e:
46:13:b8:3f:bf:e5:51:94:cf:4a:75:09:08:07:cb:
74:28:9e:a7:97:85:45:5a:1f:73:52:de:81:ff:00:
33:26:25:d3:1d:72:50:c4:32:df:af:a0:ce:fb:df:
c5:f0:65:e7:5e:2d:d3:b2:4c:d8:9f:b7:a1:c7:8e:
17:19:7a:81:65:e6:fe:b9:93:d7:0f:42:cb:0a:1f:
e5:60:80:8f:8f:5d:e0:fd:5e:af:97:b5:33:b6:71:
63:21:85:07:5f:37:a7:21:db:47:dd:0a:83:c0:89:
4f:6b:9b:c0:5c:01:84:08:c3:cc:27:ff:3e:6f:15:
46:06:b8:06:bc:f9:33:ee:3a:b2:96:38:e1:f0:e2:
56:c0:c4:0b:10:70:56:b7:eb:8b:b8:2f:21:11:82:
92:7b:5d:6d:e2:f3:42:0b:dc:c1:ba:63:19:e7:9f:
05:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F7:5F:4F:F4:F2:6E:9C:90:F4:92:09:07:EB:69:B9:34:35:D8:73
X509v3 Authority Key Identifier:
keyid:93:E0:79:D7:34:98:91:D2:B4:02:48:95:FA:67:E4:1C:18:F5:6F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-B51zSYkdK0AkiV-mfkHBj1b9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/W_dfT_TybpyQ9JIJB-tpuTQ12HM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e36b6-d5af-410a-9fb9-8a92df77a07f/1/k-B51zSYkdK0AkiV-mfkHBj1b9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.152.0/22
IPv6:
2a06:5e40:1::/48
Signature Algorithm: sha256WithRSAEncryption
94:23:5a:37:ac:5e:27:4a:35:23:df:40:26:ee:21:16:4d:ab:
68:87:db:8d:ac:4e:d6:d3:24:6b:97:58:2d:1e:9a:7d:bf:72:
fc:8d:dd:95:3f:f5:40:5e:16:a6:6e:31:5e:6c:4f:e1:cc:63:
7e:33:c8:2a:ca:d9:48:e9:88:75:60:b3:d2:1d:f8:38:a6:20:
45:03:5d:a2:57:00:ba:34:98:ff:00:66:56:ac:8a:6b:28:a2:
32:7d:14:fa:23:99:d9:3b:96:6a:b8:28:4c:aa:5d:77:1b:f9:
7d:58:2d:8f:34:6e:df:e6:91:77:3d:4a:85:9c:00:5d:af:71:
3a:7f:8f:63:c5:92:ae:99:fe:d6:a7:79:c2:4d:4c:0c:4d:8c:
5e:ac:b6:59:96:da:88:cf:cd:e8:06:18:13:86:cb:82:d1:da:
34:0a:11:68:7b:5d:45:20:c5:df:d4:71:ca:9d:39:f5:7e:55:
d7:2f:8a:d6:4b:b2:fc:f3:d3:52:e4:65:e0:ca:39:07:be:b5:
12:bf:60:52:e3:76:9c:4b:38:a5:35:22:f9:4c:4b:30:e8:3f:
80:41:09:a9:ea:b6:b0:f4:97:66:ca:78:15:bd:ba:8a:3f:41:
d1:b8:f2:31:89:84:38:62:07:7f:5a:18:3c:14:88:18:fb:d9:
7c:c4:60:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:10 2024 by rpki-client on console.sobornost.net