Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/LbgoPEZNdUc9dsm3JRbpp5ofpls.roa
File: LbgoPEZNdUc9dsm3JRbpp5ofpls.roa (raw, json)
Hash identifier: ajB1BwlOmif0XwH4oKiELIODjbfxUX5pkvCrXQGtPCs=
Subject key identifier: 2D:B8:28:3C:46:4D:75:47:3D:76:C9:B7:25:16:E9:A7:9A:1F:A6:5B
Certificate issuer: /CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Certificate serial: 01856CC161C4DC91EE006C70C2B987CBB639
Authority key identifier: 5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/LbgoPEZNdUc9dsm3JRbpp5ofpls.roa
Signing time: Sun 01 Jan 2023 09:54:50 +0000
ROA not before: Sun 01 Jan 2023 09:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 193.33.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:61:c4:dc:91:ee:00:6c:70:c2:b9:87:cb:b6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a
Validity
Not Before: Jan 1 09:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2db8283c464d75473d76c9b72516e9a79a1fa65b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:98:3f:80:ca:17:a0:8f:5e:2a:64:c9:2a:18:
3c:80:42:bd:57:4c:bf:58:b8:97:38:0e:21:29:32:
fa:b7:80:c5:32:78:80:6d:b9:58:09:69:f8:b6:93:
fa:e2:fb:e0:88:d0:4c:6b:8b:93:12:bf:c6:93:cb:
72:99:ff:b0:c6:d7:e0:ca:6b:ae:41:ea:80:89:a0:
6c:14:43:20:3c:ac:66:07:ea:04:9e:30:4a:d6:6b:
35:60:68:cb:91:10:4f:f4:73:9f:0b:1d:a8:e3:e7:
53:23:ed:0e:72:89:26:2c:2f:c5:66:44:34:fe:d6:
a3:a4:d8:5e:13:70:e6:ff:e6:71:c0:48:59:a1:8d:
df:63:3d:d3:25:27:45:29:96:8b:99:bb:9c:e4:0c:
5e:a5:f0:69:a3:dd:94:6c:ed:7a:96:85:82:b9:df:
a2:b5:a2:50:72:bc:41:d2:dd:d9:63:55:83:10:cd:
d3:57:66:f5:29:2c:f7:35:72:cb:29:62:7d:0c:4f:
ae:61:14:2c:8a:a2:5b:f6:5b:77:23:ff:4d:fe:3f:
1a:60:57:7e:f7:ca:f1:1e:86:fc:77:ef:a1:ce:df:
94:37:39:d5:4c:ab:a7:a7:e4:bf:b9:f1:4f:d2:7f:
da:e1:56:72:2b:c1:b9:49:13:61:58:9c:85:33:8f:
4e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B8:28:3C:46:4D:75:47:3D:76:C9:B7:25:16:E9:A7:9A:1F:A6:5B
X509v3 Authority Key Identifier:
keyid:5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/LbgoPEZNdUc9dsm3JRbpp5ofpls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.29.0/24
Signature Algorithm: sha256WithRSAEncryption
82:4b:cd:e2:1b:17:e6:ef:23:ac:56:79:93:64:0f:f8:5b:b7:
13:1e:aa:33:75:0f:4d:74:1d:30:b0:56:aa:6c:21:e0:ec:fb:
ae:bc:56:db:8c:6d:b1:0c:07:96:1d:6f:42:29:73:80:87:cb:
71:2f:aa:6c:87:23:5d:86:cf:8b:bc:13:9a:40:0a:1b:88:d2:
ee:0b:8c:64:9a:5b:f0:c7:1e:89:77:2d:e6:2e:0a:83:c8:d8:
12:8d:43:e1:8c:a6:08:cb:07:7b:d2:e0:ce:2a:14:c7:92:90:
9b:61:44:c3:e7:b9:49:64:a1:b3:50:d1:5a:73:fb:13:e1:1f:
c0:72:f1:d8:fe:af:62:3f:fb:f3:76:55:4b:6f:40:d0:a1:f1:
97:90:6f:dc:c6:78:a6:04:2c:76:e6:50:74:77:f9:21:1d:e1:
c2:27:28:97:0d:11:8f:df:99:44:ea:1c:6a:5c:08:fc:85:2b:
9c:e8:d5:c5:17:f6:9e:31:0c:70:d9:2e:bb:42:72:ee:2c:11:
be:58:10:e1:2f:bc:8b:22:51:42:2c:ce:d3:56:a6:df:63:e4:
50:94:2e:37:50:41:be:24:11:79:aa:7d:2c:80:61:98:86:32:
e0:67:4e:d6:81:c4:10:cf:55:a4:49:c6:86:ba:44:fb:34:67:
c0:0b:b4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:22 2024 by rpki-client on console.sobornost.net