Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/53I2O6N1cslxNIlYcUAidz-l_wI.roa
File: 53I2O6N1cslxNIlYcUAidz-l_wI.roa (raw, json)
Hash identifier: VGj+LYFx1ZI+EXev32NG0zDl4JtcqOI1T6QlXCXaDDk=
Subject key identifier: E7:72:36:3B:A3:75:72:C9:71:34:89:58:71:40:22:77:3F:A5:FF:02
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 018570DE57B31B3DB7100525692E76B01FFC
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/53I2O6N1cslxNIlYcUAidz-l_wI.roa
Signing time: Mon 02 Jan 2023 05:04:57 +0000
ROA not before: Mon 02 Jan 2023 05:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44668
IP address blocks: 46.33.44.0/22 maxlen: 22
46.33.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:57:b3:1b:3d:b7:10:05:25:69:2e:76:b0:1f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Jan 2 05:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e772363ba37572c971348958714022773fa5ff02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:36:bc:e4:eb:10:c9:3e:e9:d3:1b:e4:60:48:
41:12:54:87:2d:0c:af:95:85:57:f9:ed:ea:c3:99:
64:26:5b:32:d7:a3:ce:73:11:b0:79:b5:37:9c:9b:
55:60:84:ad:90:04:b9:6b:3d:4b:df:7f:d1:41:d7:
c7:a7:08:a4:41:a0:8c:bd:b6:b2:42:a7:56:79:cf:
33:2d:91:20:9b:69:6d:dc:4d:59:71:9b:5d:37:44:
6e:1e:e4:d9:fc:e7:86:5d:27:0e:99:9f:ad:42:d2:
32:34:c1:de:68:14:1e:65:06:b5:a9:dd:c4:26:8e:
65:c3:22:c1:1f:17:66:62:c1:44:5c:d7:99:ea:32:
a2:b0:72:00:66:95:a7:7e:24:3a:49:ea:8e:f9:73:
a7:fb:ab:49:0c:52:e6:48:ce:78:76:22:02:bd:f5:
15:c5:94:15:b3:19:e5:24:c9:31:06:39:df:6f:68:
67:13:b5:9c:ac:d2:45:8f:49:57:f5:3a:da:9a:f8:
b8:3e:38:ba:ab:99:49:89:f9:96:b3:f2:2b:df:47:
e6:5f:14:06:63:ea:3c:bd:2d:ee:e7:9e:b9:f4:6a:
ea:a9:7e:7f:da:6e:aa:cb:bf:cc:52:cd:14:2c:17:
1a:e0:bf:71:33:ba:a0:db:f5:0f:fd:2c:2c:9a:95:
57:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:72:36:3B:A3:75:72:C9:71:34:89:58:71:40:22:77:3F:A5:FF:02
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/53I2O6N1cslxNIlYcUAidz-l_wI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.44.0/22
Signature Algorithm: sha256WithRSAEncryption
76:49:f6:78:ec:88:2b:15:19:b8:05:d3:a5:de:2c:02:36:82:
9f:e4:1f:20:f3:e0:94:a0:69:e9:fa:d6:08:cf:e0:db:b2:2a:
f0:98:52:d9:6c:d9:1f:e4:af:20:7f:7d:37:10:4b:14:f7:a3:
3b:31:92:a1:a7:97:ca:7a:e3:f7:7a:ab:07:6f:79:17:3a:11:
35:f9:5b:61:8d:5a:af:cf:c3:36:8c:27:44:cc:d4:03:7d:43:
35:b5:3c:ea:f9:a5:74:1a:b3:6c:15:6f:60:cc:47:ee:d1:0e:
30:2b:22:8e:ed:7a:33:76:de:b9:54:3c:95:66:cf:a1:81:ee:
b8:e3:a9:86:c8:bc:52:34:48:26:90:00:e1:17:7e:5c:47:3c:
41:75:84:bb:d6:fe:ef:5c:e2:0b:97:da:50:ec:f8:0b:22:9f:
88:7f:a3:1b:67:6b:22:78:88:a9:df:fc:9a:9c:aa:92:e1:d7:
44:48:4b:5d:29:8d:0b:1d:45:f6:31:f9:b2:ba:85:28:9b:0c:
56:2a:8e:92:00:68:08:8f:09:73:f3:af:3b:62:2e:95:3e:b9:
f7:39:9f:a8:25:32:9f:c8:a8:16:e6:63:e1:12:b2:f2:91:44:
bb:49:6d:0e:5a:6e:d5:bd:c8:44:32:cb:19:6a:93:18:9f:44:
5c:f8:e8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:52 2024 by rpki-client on console.sobornost.net