Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Sf3KXUhW_MJbi1Zlwoe-TVrdfho.roa
File: Sf3KXUhW_MJbi1Zlwoe-TVrdfho.roa (raw, json)
Hash identifier: 5wymoMu0YwkjWiS8R03h+5ZkI1Xo7Adpz66/4fXkEfs=
Subject key identifier: 49:FD:CA:5D:48:56:FC:C2:5B:8B:56:65:C2:87:BE:4D:5A:DD:7E:1A
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 018B5CE690B3229C83B3984C527482C9992B
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Sf3KXUhW_MJbi1Zlwoe-TVrdfho.roa
Signing time: Mon 23 Oct 2023 14:18:15 +0000
ROA not before: Mon 23 Oct 2023 14:18:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44152
IP address blocks: 217.110.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:e6:90:b3:22:9c:83:b3:98:4c:52:74:82:c9:99:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Oct 23 14:18:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49fdca5d4856fcc25b8b5665c287be4d5add7e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3d:94:c6:a8:dc:9a:02:59:ad:f9:a4:e6:3e:
36:a4:28:4c:8a:ca:44:dc:7e:93:00:6e:8a:59:91:
75:21:c5:d9:4a:ab:48:75:7a:fa:74:31:4d:8b:23:
15:fa:63:02:86:84:96:9f:eb:06:37:fa:13:ae:72:
bf:e0:c0:6c:df:c1:da:ea:fc:2d:41:af:60:c6:be:
e7:1f:4c:09:bd:4b:27:51:58:11:38:8d:3e:53:14:
bb:71:3d:02:e8:32:45:f5:59:d3:2e:56:71:6b:ac:
b0:24:8d:ba:1f:ae:d6:b0:c5:47:f3:47:2b:86:14:
6b:a8:06:9e:ef:1f:a3:f0:6d:6c:21:b6:e5:20:43:
f3:d5:19:69:b2:c5:e1:4a:40:5e:f2:33:b1:8f:00:
14:c1:cc:c1:81:12:b7:c5:00:11:7c:3d:27:94:60:
e4:bb:5f:be:d4:cc:ad:9f:72:c9:e4:5a:b2:73:21:
8d:18:d8:a8:6b:9f:21:06:bc:32:4d:1c:9b:1a:49:
07:98:54:4e:ea:f5:53:a1:54:e0:dd:b8:35:81:98:
89:75:dd:28:a4:f7:95:08:4b:58:5c:2f:f3:7f:71:
fd:2b:b3:ab:c6:3c:56:0a:1a:54:11:d5:b7:70:07:
2f:2d:44:bb:bb:60:f0:39:35:35:88:e8:d5:88:ac:
af:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FD:CA:5D:48:56:FC:C2:5B:8B:56:65:C2:87:BE:4D:5A:DD:7E:1A
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Sf3KXUhW_MJbi1Zlwoe-TVrdfho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.110.44.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b7:c2:47:e4:10:fc:37:56:3c:ac:7f:28:ce:fc:06:5a:a1:
fb:fc:a7:a7:75:67:3d:f8:59:53:f9:6b:16:b4:e3:e3:da:a7:
f6:f5:a3:a9:e9:74:c9:76:52:9d:6f:aa:af:42:3b:f9:82:b9:
3f:7a:5f:a0:7b:70:a4:fa:66:b9:69:3d:b1:d5:5b:55:91:ad:
48:1e:d2:54:a8:bd:40:0d:56:3e:c0:d8:d8:fc:fc:28:89:a5:
7d:ab:e6:2c:e1:27:94:a7:86:d3:d4:01:2e:e8:83:be:b9:16:
52:51:5f:17:6f:5e:65:5e:1b:15:a7:86:21:36:2a:99:78:e3:
3e:21:e3:b0:a3:93:fc:56:63:f9:e0:17:53:d3:40:f3:b2:32:
d0:a0:7d:8f:ac:31:83:2c:d9:8b:a2:1f:cb:a3:d5:17:75:61:
52:5d:f7:5f:8c:e2:7e:67:88:6f:7a:da:85:cf:45:42:03:75:
fe:2e:c0:63:fd:88:0b:2f:4b:74:45:96:c7:8d:e7:c3:0e:20:
39:bf:a8:af:fb:06:89:9a:c9:18:15:0d:31:45:c9:50:b6:4b:
33:cd:6f:76:ff:98:6a:a3:52:d0:33:c6:3f:f1:48:fe:a1:39:
ed:1d:31:29:17:bd:44:25:27:9e:2a:1b:94:f3:ee:30:7b:10:
c6:18:db:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:18 2024 by rpki-client on console.sobornost.net