Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/YFmLEyQy--wgUhqQkKE-SX4oilQ.roa
File: YFmLEyQy--wgUhqQkKE-SX4oilQ.roa (raw, json)
Hash identifier: m7jXksrb6IgcyT0JoP79CHsdRPkmnfqGalxAFKakvsE=
Subject key identifier: 60:59:8B:13:24:32:FB:EC:20:52:1A:90:90:A1:3E:49:7E:28:8A:54
Certificate issuer: /CN=2e8b24c76ad87a6c1fedffaf08d9b17b45249991
Certificate serial: 01856B6EABE4D1A24F327408F25EE386B740
Authority key identifier: 2E:8B:24:C7:6A:D8:7A:6C:1F:ED:FF:AF:08:D9:B1:7B:45:24:99:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Loskx2rYemwf7f-vCNmxe0UkmZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/YFmLEyQy--wgUhqQkKE-SX4oilQ.roa
Signing time: Sun 01 Jan 2023 03:44:53 +0000
ROA not before: Sun 01 Jan 2023 03:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203953
IP address blocks: 89.150.128.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:ab:e4:d1:a2:4f:32:74:08:f2:5e:e3:86:b7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e8b24c76ad87a6c1fedffaf08d9b17b45249991
Validity
Not Before: Jan 1 03:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60598b132432fbec20521a9090a13e497e288a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c8:5b:1d:5e:7e:26:df:cd:f3:be:68:d6:b8:
c6:5a:51:31:3a:08:09:ec:7b:d9:be:9e:df:a5:43:
87:40:58:6d:5c:29:de:4e:87:99:68:06:a0:29:cf:
84:38:ca:29:55:17:c5:cc:de:6c:7a:e8:a7:6e:f8:
07:57:74:86:f6:9e:6b:bf:8c:97:03:42:fb:ad:32:
10:5c:d2:80:35:77:ef:d3:d8:35:ab:fc:56:77:c8:
93:1f:79:fb:46:7d:13:5d:4f:66:bf:6d:0e:f1:1c:
2d:f8:85:9c:d7:a0:31:c0:51:53:2c:89:4d:fc:ca:
8f:eb:b5:83:00:2f:67:14:58:d3:9c:5f:41:b3:b9:
62:f5:8e:76:2a:df:45:2c:68:1b:e3:26:c5:01:12:
f6:1e:4e:26:57:bc:8b:af:90:85:b6:85:45:78:76:
16:39:fb:83:22:d6:86:3f:79:bf:ca:56:22:aa:fe:
47:9c:3e:16:99:72:3c:8a:3a:5a:2f:8e:d6:99:bc:
0a:2c:93:ef:be:5f:9c:2b:ca:54:b2:58:2d:18:22:
e3:c3:b7:68:0c:23:35:2b:43:07:a7:3b:dd:21:08:
3a:33:04:e1:91:d1:ff:ac:60:b5:86:a0:fd:de:4a:
48:cb:e9:8e:81:7d:9a:9d:75:df:74:bb:4f:a8:25:
42:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:59:8B:13:24:32:FB:EC:20:52:1A:90:90:A1:3E:49:7E:28:8A:54
X509v3 Authority Key Identifier:
keyid:2E:8B:24:C7:6A:D8:7A:6C:1F:ED:FF:AF:08:D9:B1:7B:45:24:99:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Loskx2rYemwf7f-vCNmxe0UkmZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/YFmLEyQy--wgUhqQkKE-SX4oilQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/04d348-75b9-48d2-be10-91190a02db70/1/Loskx2rYemwf7f-vCNmxe0UkmZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.150.128.0/18
Signature Algorithm: sha256WithRSAEncryption
91:3d:93:ef:12:6c:94:61:c8:72:dc:c6:03:3f:c0:d4:78:bf:
c2:79:95:2e:86:f1:f0:26:4d:69:97:f9:8a:39:60:4f:78:a2:
29:80:b5:ba:23:6b:bd:20:3a:a7:25:23:ab:b7:46:0f:98:a1:
b2:18:36:9f:04:d2:5f:47:02:68:75:ea:22:3e:dd:b9:14:bd:
02:ff:30:6e:2f:c1:a3:02:ee:5d:3a:01:d1:4a:df:f8:e1:56:
e1:03:2d:77:6e:55:3d:43:cb:47:0b:c3:43:57:f3:45:b5:16:
fa:f5:d6:c4:8f:75:20:d2:1c:37:8f:4e:bd:88:79:de:ea:82:
c0:2d:22:e7:eb:1a:ff:fc:f7:22:37:37:5c:67:01:c9:39:09:
42:fc:3f:9e:b9:52:1f:1d:eb:fb:35:ae:f0:00:89:fa:bf:6c:
70:3c:b3:57:38:22:5d:b8:1e:65:e5:9a:e3:f2:9d:cf:3f:98:
22:94:cd:1f:d2:60:6a:32:9b:f6:1a:ef:b4:cd:59:7b:c7:53:
69:89:4f:6a:79:09:50:66:bd:31:2a:c0:63:6a:0a:68:6c:bd:
31:6e:3f:32:12:de:ed:c0:92:f7:1d:0c:d6:4b:28:93:20:41:
a7:ac:e9:9a:68:0b:77:38:3c:fd:d3:a6:a7:82:34:94:90:69:
c7:2f:a3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:10 2024 by rpki-client on console.sobornost.net