Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/qx6iNTEbgpwx3uZ6dxfipps5wuQ.roa
File: qx6iNTEbgpwx3uZ6dxfipps5wuQ.roa (raw, json)
Hash identifier: InUhhvyT8kYUFTlkAk7vYfNMH+C7zg3DyBihBS7tGsw=
Subject key identifier: AB:1E:A2:35:31:1B:82:9C:31:DE:E6:7A:77:17:E2:A6:9B:39:C2:E4
Certificate issuer: /CN=b712b25a2304f7ba44c38d0395ddf2ed04f5c7ef
Certificate serial: 01856C7847FFEB00A2FE2A4FAF63D97D9468
Authority key identifier: B7:12:B2:5A:23:04:F7:BA:44:C3:8D:03:95:DD:F2:ED:04:F5:C7:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/qx6iNTEbgpwx3uZ6dxfipps5wuQ.roa
Signing time: Sun 01 Jan 2023 08:35:00 +0000
ROA not before: Sun 01 Jan 2023 08:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204140
IP address blocks: 185.138.148.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:47:ff:eb:00:a2:fe:2a:4f:af:63:d9:7d:94:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b712b25a2304f7ba44c38d0395ddf2ed04f5c7ef
Validity
Not Before: Jan 1 08:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab1ea235311b829c31dee67a7717e2a69b39c2e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:06:ad:06:ac:b6:ef:43:b3:bf:e7:09:cd:
d6:21:b5:bb:d5:68:89:16:99:b2:3b:7e:7a:d6:c2:
cf:17:f9:f8:0a:ce:0f:e2:32:20:7d:ae:d2:f6:d8:
be:85:53:49:71:d0:ae:b0:f6:a6:f3:4a:30:83:02:
45:35:bc:46:10:f2:d1:fd:ba:36:7f:93:4a:25:8b:
57:4c:8b:a9:87:71:b0:e8:73:f9:f1:36:89:9e:1c:
f7:0f:1d:2d:ae:f4:86:da:c2:48:c9:c3:b3:f9:16:
68:0a:59:9f:24:df:9d:79:57:28:19:41:f1:c5:4c:
dc:c6:ef:9b:90:d1:c2:8a:87:74:5d:a3:64:9c:1e:
7f:dc:4c:c7:7a:f1:26:5e:51:f3:ab:87:ea:a7:ab:
ec:a8:be:92:c4:2a:00:f9:20:ec:32:38:3a:be:ea:
c3:13:0a:51:db:1b:81:b1:1f:81:8c:7a:a7:b3:f7:
9b:c6:83:6e:28:ad:2f:54:d0:77:03:06:29:c0:ae:
27:35:e3:f7:9e:27:02:b6:21:a6:b7:d3:95:ae:10:
a3:bf:c2:2e:28:63:44:1b:1c:9f:40:74:11:31:02:
35:57:2a:d6:7d:67:3a:62:e5:95:50:46:11:50:d9:
e9:a7:a5:e8:c2:d8:b6:c1:78:fd:ae:4c:1a:09:fd:
c2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1E:A2:35:31:1B:82:9C:31:DE:E6:7A:77:17:E2:A6:9B:39:C2:E4
X509v3 Authority Key Identifier:
keyid:B7:12:B2:5A:23:04:F7:BA:44:C3:8D:03:95:DD:F2:ED:04:F5:C7:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/qx6iNTEbgpwx3uZ6dxfipps5wuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.148.0/22
Signature Algorithm: sha256WithRSAEncryption
61:e4:64:46:5e:2d:87:16:ce:71:d0:b9:d0:a7:60:8f:8c:af:
79:04:22:ae:41:ba:44:bb:24:fc:0b:20:95:b2:5f:cb:c8:0f:
7b:56:03:39:be:cf:b8:34:30:bc:de:be:1f:26:42:1b:ad:69:
0a:2e:68:21:0e:a7:7a:38:32:57:3b:cc:d7:22:84:a2:b8:1a:
9a:6b:2f:4d:65:5b:88:db:ea:13:96:31:c1:5a:24:28:ed:66:
bc:7a:4d:ad:2b:21:63:a0:9e:90:93:a9:41:e8:ef:84:c1:23:
fd:a1:af:fd:cd:e4:04:7f:14:a5:26:32:e3:35:90:df:8e:c1:
12:b9:cf:2e:34:e7:bd:99:cd:b7:46:af:3b:cc:1f:a5:f7:11:
9a:c8:23:b4:fc:c8:d4:c8:e3:a5:e0:f4:c4:f3:20:c3:ee:fa:
1a:17:db:f1:48:1f:2c:e1:a2:a7:2b:02:58:cd:14:e1:90:e9:
f3:1c:cd:29:c3:59:a3:f7:f2:e3:26:79:dd:49:ce:4d:37:31:
c8:d4:8b:08:0c:9a:7e:3a:8a:64:c7:79:2e:f7:55:67:4d:22:
b6:59:af:60:15:c0:2f:77:ed:b4:1e:89:f1:e8:51:ac:3c:16:
6e:7f:53:41:f8:62:dc:f9:bb:87:3c:4d:dc:1a:85:97:10:6e:
21:dc:93:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:11 2024 by rpki-client on console.sobornost.net