Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/mDXRYP7z_yiyPfvqmBwAcJCZt9w.roa
File: mDXRYP7z_yiyPfvqmBwAcJCZt9w.roa (raw, json)
Hash identifier: hfAqT3KPZReUO17opGQ/VUWk9A2RzOS1byovrawFF+k=
Subject key identifier: 98:35:D1:60:FE:F3:FF:28:B2:3D:FB:EA:98:1C:00:70:90:99:B7:DC
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 01856E5D42A710AC7A38D2B30CB98E351F49
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/mDXRYP7z_yiyPfvqmBwAcJCZt9w.roa
Signing time: Sun 01 Jan 2023 17:24:43 +0000
ROA not before: Sun 01 Jan 2023 17:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30754
IP address blocks: 217.71.144.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:42:a7:10:ac:7a:38:d2:b3:0c:b9:8e:35:1f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: Jan 1 17:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9835d160fef3ff28b23dfbea981c00709099b7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:15:70:5b:31:e7:9c:25:a2:14:35:db:25:
a7:9d:b0:1d:34:78:9d:c6:20:f1:09:80:1e:ea:10:
fa:46:1e:44:3f:c5:dd:33:bc:de:22:ff:1f:10:53:
46:f0:c8:81:35:43:ad:33:d5:42:cc:50:64:1b:f7:
1b:30:df:b0:0e:fc:80:c0:93:a3:81:73:60:bb:c6:
14:6c:7c:15:b2:fa:32:15:05:76:29:4c:db:cf:7a:
2a:d9:3a:b5:90:b2:71:d6:6f:d5:53:e6:66:bf:1c:
d4:48:d1:c5:76:92:65:bc:69:d5:70:80:ab:9d:13:
04:50:38:41:72:0c:ff:46:cd:12:b0:4a:09:60:18:
68:a1:47:39:7a:bc:6e:9c:a1:18:3a:bd:a1:0a:ea:
29:f1:8f:f7:7c:c8:dc:93:b5:24:d2:fa:64:c4:67:
4e:44:3b:31:78:d2:a7:f7:99:88:65:df:f1:72:53:
d2:4f:81:c1:57:af:4d:9c:e3:55:ce:bc:af:1e:a7:
6f:5a:ed:32:5b:2a:93:5e:4f:8a:e6:2b:44:e8:44:
3b:01:9e:05:89:8f:9f:19:fc:c6:16:bc:a2:98:aa:
ba:3a:ee:52:96:f2:8c:e9:54:c3:dd:23:66:05:59:
d5:7c:de:c5:d4:29:31:ad:30:fc:3e:dc:5e:5e:3e:
fb:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:35:D1:60:FE:F3:FF:28:B2:3D:FB:EA:98:1C:00:70:90:99:B7:DC
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/mDXRYP7z_yiyPfvqmBwAcJCZt9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.71.144.0/20
Signature Algorithm: sha256WithRSAEncryption
56:cb:03:7b:e5:d6:86:0e:5d:d2:e2:f3:85:1f:cc:18:f3:f0:
39:ac:34:b9:e9:44:95:8e:e0:f8:c0:11:c8:2b:20:47:25:53:
88:b5:42:ad:75:ca:e7:ab:da:35:f6:1a:35:27:5f:d3:b0:1d:
4b:eb:10:e0:78:6e:31:3d:a9:1f:6d:50:90:44:d8:5d:2c:1a:
4d:4f:16:59:9f:ce:12:b4:7a:54:6b:55:4d:a1:72:02:a4:6e:
af:a0:db:8b:ff:1d:8a:ce:10:eb:09:4f:9a:1e:c3:30:01:3f:
72:7c:12:5e:a4:09:c6:6a:6b:f9:d3:6a:0d:24:2c:b0:07:19:
22:d3:2b:30:8c:c3:7d:5e:41:d8:86:83:2d:48:9a:f7:61:ba:
81:24:4f:6d:8c:8a:22:da:19:a0:14:2c:bb:45:15:68:da:64:
c6:ee:16:5d:62:9f:8f:b5:62:24:5b:5e:ee:42:68:8f:88:f3:
7e:49:1e:e8:6c:11:22:cc:c2:05:04:7f:ba:bc:f1:03:1b:44:
0e:80:47:c5:9d:8c:df:11:5a:9d:be:52:b3:e5:b3:c1:85:ea:
cd:c6:f3:41:b8:2d:bf:1e:b6:00:92:88:a5:b1:bf:2f:18:e0:
8f:43:ab:8e:24:c5:aa:79:b6:d7:f0:7d:89:ca:c6:d1:a0:6d:
8e:11:21:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:28 2024 by rpki-client on console.sobornost.net