Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/CSUiHCKbIaGr269uiUJVV3NCv48.roa
File: CSUiHCKbIaGr269uiUJVV3NCv48.roa (raw, json)
Hash identifier: VrSRXRkIvpmTDVEeMXUROO7RM4ljmn7QbqvFUhyNkSU=
Subject key identifier: 09:25:22:1C:22:9B:21:A1:AB:DB:AF:6E:89:42:55:57:73:42:BF:8F
Certificate issuer: /CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Certificate serial: 01856F42DEC281B3329F49E0DE14475DD86F
Authority key identifier: A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/CSUiHCKbIaGr269uiUJVV3NCv48.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206880
IP address blocks: 193.164.147.0/24 maxlen: 24
2a12:6ac0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:de:c2:81:b3:32:9f:49:e0:de:14:47:5d:d8:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0925221c229b21a1abdbaf6e894255577342bf8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e0:19:47:c8:ab:a8:8e:9e:c5:13:d6:17:8a:
72:03:21:d0:a8:1b:a4:a0:6f:0a:4b:b4:a0:f3:f9:
ed:c1:3e:bb:0b:64:69:60:7a:28:76:ea:b7:4f:70:
40:15:f8:ca:72:c7:5a:5b:d0:33:35:ea:cc:5c:fe:
ad:51:b1:a9:8c:31:45:89:eb:82:13:a5:be:2d:45:
75:cb:c0:be:57:80:cb:da:48:2e:36:87:e0:30:9c:
f8:7d:c0:ce:f5:06:63:6c:01:02:03:95:34:17:57:
4b:62:d1:6c:70:43:a0:3e:fb:7e:8f:b1:c3:25:df:
69:09:3a:74:99:c2:d3:e5:de:a7:b8:8f:ad:55:29:
16:69:a2:94:97:8d:57:1f:02:b4:e3:ad:ae:fd:48:
10:cc:2f:dc:dc:21:09:2f:51:dd:64:f0:4e:12:d7:
7b:30:43:0c:70:6c:aa:e7:79:4a:e3:57:d3:d0:43:
b8:46:fe:7e:58:d6:e6:85:60:0c:9f:64:77:56:5d:
85:bd:64:2a:c5:da:9e:b9:44:d2:d5:2e:b3:b8:7e:
e6:ac:00:6b:b0:90:b9:c6:4d:19:36:df:ae:fd:c7:
05:9a:35:94:ae:7e:cb:d6:d2:60:b8:d8:25:c0:49:
d9:20:99:5a:40:3f:8b:1d:3e:2a:46:75:bd:96:ad:
b6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:25:22:1C:22:9B:21:A1:AB:DB:AF:6E:89:42:55:57:73:42:BF:8F
X509v3 Authority Key Identifier:
keyid:A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/CSUiHCKbIaGr269uiUJVV3NCv48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.147.0/24
IPv6:
2a12:6ac0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:96:b7:76:cf:8e:db:ed:ed:e8:32:39:46:df:be:06:ba:1f:
90:ec:c0:fa:f8:04:f9:ed:58:f4:dd:a6:16:f1:23:f7:60:9d:
49:ae:a0:07:ad:3a:32:2c:0b:5d:16:49:f1:ff:80:33:0b:56:
fc:8a:d2:ab:7f:b3:d2:c8:fd:82:b5:b1:bf:05:d9:a7:74:68:
0b:49:de:47:1d:da:36:d0:25:0c:82:ee:72:e5:47:5e:80:b6:
04:77:7b:1a:d7:bf:33:77:b8:f1:0e:06:0a:36:e4:08:ba:40:
44:d0:90:4f:40:55:b2:f3:a2:bd:51:42:7c:b8:6d:43:82:0e:
f8:49:ca:c1:2e:b1:76:1a:77:7f:94:bd:60:4e:72:ea:c1:1a:
a3:e1:63:1c:db:f5:ab:ca:2f:fd:cf:2c:16:51:05:05:5c:c4:
f0:8b:96:12:22:64:79:2b:db:54:f8:45:a8:ce:1b:11:aa:89:
ac:92:87:5a:33:88:d9:f6:bb:a2:f6:88:59:3f:a2:28:5c:38:
00:5e:ba:d4:32:5d:88:92:13:ca:d1:a6:37:3d:ef:c6:81:43:
a8:2f:da:48:ad:3a:b3:c0:99:45:7f:e2:4c:9d:a8:55:b7:2f:
e0:45:dc:28:93:d4:7a:f5:d9:a5:45:49:8f:54:ad:29:1b:ad:
82:32:7e:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:10 2024 by rpki-client on console.sobornost.net