Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/V06UBHrN2po1KbCsGTRpJEpAmDM.roa
File: V06UBHrN2po1KbCsGTRpJEpAmDM.roa (raw, json)
Hash identifier: w2xnVv0SurAQYD3xh5q6Fp7FXLZueqe2xI2j0quO84s=
Subject key identifier: 57:4E:94:04:7A:CD:DA:9A:35:29:B0:AC:19:34:69:24:4A:40:98:33
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 01857102D4CADE2D90977689626BDDD7F927
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/V06UBHrN2po1KbCsGTRpJEpAmDM.roa
Signing time: Mon 02 Jan 2023 05:44:48 +0000
ROA not before: Mon 02 Jan 2023 05:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2590
IP address blocks: 185.125.124.0/22 maxlen: 24
2a03:9560::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d4:ca:de:2d:90:97:76:89:62:6b:dd:d7:f9:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Jan 2 05:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=574e94047acdda9a3529b0ac193469244a409833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:26:f4:21:95:99:73:44:d6:3c:80:6b:79:01:
22:67:69:56:c2:d4:08:11:0d:ca:45:b7:23:eb:7f:
96:d8:cf:f5:01:b3:6e:dd:22:a1:8f:c3:5a:de:6f:
8a:b0:1f:1c:50:09:6b:34:5e:4b:24:1e:9f:4f:e4:
19:d6:20:9e:6f:1c:e5:bd:5b:8d:4d:b7:b8:8a:a3:
52:d9:5a:c0:cb:6c:bf:a8:72:4b:4c:41:b6:42:e2:
b3:7a:a8:80:d3:1a:3d:3e:a4:fb:ab:61:97:52:f9:
f4:97:50:a4:c0:22:45:1d:36:74:c7:c5:e1:36:6c:
21:6c:21:b4:bc:15:a2:ee:c2:3c:4d:22:eb:8a:42:
98:01:1b:3c:28:48:dc:90:31:c9:a9:8d:58:d9:51:
f4:80:10:d9:90:2b:ab:fb:d6:26:3e:f0:dd:aa:7d:
53:e7:8c:79:10:06:9e:1e:d1:b0:a9:c7:23:15:9f:
79:7a:8d:6e:43:98:cb:ce:79:de:89:10:64:39:d4:
0d:81:8a:65:df:de:27:47:8c:5d:d1:6e:da:9f:71:
bc:4e:0c:40:0b:82:87:71:01:13:4c:54:cd:b2:25:
67:df:aa:28:d2:4f:71:0d:74:a0:c8:a8:76:19:4a:
a7:88:c5:92:a6:ee:cc:22:7b:59:a8:f6:38:6e:1a:
7c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4E:94:04:7A:CD:DA:9A:35:29:B0:AC:19:34:69:24:4A:40:98:33
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/V06UBHrN2po1KbCsGTRpJEpAmDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.124.0/22
IPv6:
2a03:9560::/29
Signature Algorithm: sha256WithRSAEncryption
b8:bc:09:2d:b7:f4:ba:64:db:a0:6b:d7:c6:83:7f:10:bb:32:
56:49:26:86:a6:d0:10:e1:7f:0a:46:fb:7c:3f:58:81:1e:2d:
45:57:6d:d1:18:cf:e9:16:b4:10:b6:00:34:6d:85:50:cb:c0:
8f:ae:14:a6:04:f9:f4:50:e7:ae:f7:52:fa:d0:81:8b:89:8e:
97:ac:f1:0e:6c:b1:6d:b5:13:df:42:e0:68:85:0c:5f:c3:5d:
90:9d:b4:ff:e5:35:a9:9f:c6:c0:0d:3d:ea:5f:28:05:09:b4:
a9:9f:a7:28:ef:44:66:45:ee:50:3e:e5:01:89:5d:26:5a:6f:
e6:66:55:c6:6a:d6:d8:1d:d4:85:e0:94:79:04:8f:1f:17:1b:
cc:ea:97:92:5d:bc:04:88:da:fe:fa:0d:c3:41:e1:b7:d0:0a:
7f:50:69:a0:3b:9e:04:46:42:e3:ad:d3:73:a0:c9:34:1b:f2:
ab:9f:e2:1c:33:62:a6:1d:69:48:1d:c3:bc:14:65:a5:7e:97:
ce:ad:98:86:fe:7d:e3:76:34:e7:de:83:ce:89:58:75:9c:2b:
68:67:ba:17:e4:f9:52:fb:e0:2d:b4:39:65:5f:06:92:a7:2a:
0f:fd:3c:22:ec:55:e9:32:9c:70:8c:14:b4:0f:af:39:b8:1d:
43:ac:71:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:05 2024 by rpki-client on console.sobornost.net