Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/ngG7mTH-TnmaAkA_l5aKMYkexGs.roa
File: ngG7mTH-TnmaAkA_l5aKMYkexGs.roa (raw, json)
Hash identifier: k+yYSevKpYHy6orR5RYrOKujcJ7PYc1vGBFHyg7PNd0=
Subject key identifier: 9E:01:BB:99:31:FE:4E:79:9A:02:40:3F:97:96:8A:31:89:1E:C4:6B
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 01856CAF186DC310EB70DC4F6D0F038D10C7
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/ngG7mTH-TnmaAkA_l5aKMYkexGs.roa
Signing time: Sun 01 Jan 2023 09:34:52 +0000
ROA not before: Sun 01 Jan 2023 09:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35073
IP address blocks: 195.238.254.0/24 maxlen: 24
2001:67c:18fc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:18:6d:c3:10:eb:70:dc:4f:6d:0f:03:8d:10:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Jan 1 09:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e01bb9931fe4e799a02403f97968a31891ec46b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6f:8e:9d:1b:b3:79:74:78:13:1a:66:eb:50:
72:0e:aa:60:0c:c5:37:cc:ba:f6:a1:8c:c7:b4:b1:
01:01:76:71:79:ed:13:29:44:d4:0c:c4:e5:4f:3e:
b7:a2:87:d5:d7:0a:36:02:7a:ac:51:5d:0a:9a:f6:
55:6e:70:f0:f9:65:d6:9c:68:85:bd:1a:77:65:77:
3b:d9:ee:fd:52:e3:48:5e:fb:3b:6e:ee:6c:9b:38:
f3:92:14:ee:27:0c:fd:36:45:05:d6:4b:a6:c1:5c:
8c:01:1b:6e:db:af:65:f3:ed:33:ca:80:bf:82:2a:
ca:38:6a:76:0e:1c:8b:52:c8:c4:85:e9:f1:db:e1:
19:b4:f0:88:7c:ca:1b:57:e9:c0:fa:2d:de:db:c8:
c0:30:b1:e2:1f:db:44:69:1e:82:bb:ee:7b:3c:a8:
b4:58:39:94:0c:7a:2e:18:80:f3:b3:95:45:06:fa:
13:30:df:05:fa:bf:d3:bf:6f:3b:d7:0c:05:28:f2:
d4:da:49:b0:f5:c0:23:ef:a6:80:21:65:58:dd:00:
7a:75:ce:32:c1:50:a6:5b:ab:b6:8d:44:63:44:7b:
24:77:f4:37:ef:17:c4:c8:a1:20:fb:9a:36:bc:56:
16:8b:bd:46:83:f4:92:9f:22:f2:aa:46:20:fe:f2:
8f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:01:BB:99:31:FE:4E:79:9A:02:40:3F:97:96:8A:31:89:1E:C4:6B
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/ngG7mTH-TnmaAkA_l5aKMYkexGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.254.0/24
IPv6:
2001:67c:18fc::/48
Signature Algorithm: sha256WithRSAEncryption
c4:d1:68:d5:06:ee:96:21:e9:ae:6a:30:29:32:be:b0:6b:72:
54:57:f3:09:73:10:34:c5:a4:78:65:93:66:f5:31:2e:7f:1d:
1d:a9:38:d0:f7:36:73:aa:27:89:f3:9e:d2:f5:3a:82:b3:a7:
69:a7:2a:fe:41:b5:55:67:8c:6c:b1:a4:2c:ba:27:1e:12:90:
f1:b9:8f:d0:f1:55:b8:03:d3:c4:d7:fb:06:8b:03:84:ae:ae:
65:4b:db:a3:7d:0f:3d:1e:fa:b9:15:bc:44:09:f6:da:32:8b:
6e:1b:73:79:ad:6e:c5:22:c9:6b:84:bd:48:65:25:49:8d:87:
56:f6:c3:1e:bf:8e:5f:29:e5:87:92:0e:b0:1d:51:34:46:ce:
5e:e0:71:61:89:9f:a4:10:b8:1e:11:45:66:9e:01:00:07:b6:
25:38:b8:fd:20:1a:65:6d:3c:95:74:95:3a:61:cd:8c:01:f3:
e6:e5:c9:dd:a6:5a:1b:75:c5:67:87:da:fe:f2:b8:50:db:c1:
33:73:77:99:dc:67:12:ff:ad:c1:f4:5a:eb:10:60:82:d3:b5:
f8:12:78:32:53:5c:3a:7c:21:5f:90:0a:6e:7e:a1:a4:fb:1b:
03:62:9e:37:29:19:67:ea:c1:c9:08:f7:46:37:fc:6e:31:57:
ef:70:83:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:19 2024 by rpki-client on console.sobornost.net