Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/v3hLhJQrt0Knvx32vctLldT5rdw.roa
File: v3hLhJQrt0Knvx32vctLldT5rdw.roa (raw, json)
Hash identifier: mqMNN4k8t1V91yM3KMQaIb+s3NVfQQiuwiS2jy5cZi8=
Subject key identifier: BF:78:4B:84:94:2B:B7:42:A7:BF:1D:F6:BD:CB:4B:95:D4:F9:AD:DC
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 018571957C23847FDD5D0BC47479607811A8
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/v3hLhJQrt0Knvx32vctLldT5rdw.roa
Signing time: Mon 02 Jan 2023 08:25:00 +0000
ROA not before: Mon 02 Jan 2023 08:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 166.108.176.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:7c:23:84:7f:dd:5d:0b:c4:74:79:60:78:11:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Jan 2 08:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf784b84942bb742a7bf1df6bdcb4b95d4f9addc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8c:dc:60:12:01:d5:93:84:7d:0b:e2:ed:c3:
09:32:94:6b:7d:b6:64:29:52:b9:15:af:98:eb:e2:
97:23:6f:e8:96:c3:ac:45:88:77:ea:00:fa:09:7e:
15:ee:f3:9f:4a:2b:07:fe:16:fd:9b:ee:2d:ef:f0:
87:6c:ca:7e:1e:7f:4c:e7:df:b2:7c:45:12:41:bc:
9d:9e:83:29:1a:f5:8f:23:97:15:b3:6d:cf:90:c8:
9b:64:44:37:5a:88:68:1a:d5:bf:60:df:13:37:e1:
5e:05:bc:67:9a:a8:78:0a:d7:ce:6a:90:00:37:6d:
0a:4e:a0:49:f3:77:5e:64:79:aa:30:3b:0b:bb:13:
86:3a:65:c9:ab:e6:85:64:da:8e:f6:bc:93:ef:c5:
6f:76:49:a4:fc:12:61:30:39:cb:3f:0d:6c:13:2e:
52:aa:6b:73:e2:94:dc:6a:75:24:56:fe:c9:e4:50:
80:5e:b3:a9:85:31:13:b2:ea:a1:bc:aa:22:db:19:
8b:d1:cb:89:55:1f:23:08:43:79:6e:77:bd:2d:5f:
8a:16:99:d4:9d:7e:87:c7:51:d5:f3:c1:21:8b:60:
c1:db:1d:8a:bb:44:18:5a:d2:e2:c5:8a:18:4a:fa:
df:51:d7:2d:21:95:50:09:03:03:bb:4e:47:5b:34:
14:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:78:4B:84:94:2B:B7:42:A7:BF:1D:F6:BD:CB:4B:95:D4:F9:AD:DC
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/v3hLhJQrt0Knvx32vctLldT5rdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.176.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:db:68:09:1a:a7:c3:a3:24:4c:ea:2a:42:76:a3:d1:24:e1:
47:c8:a7:37:31:92:c3:7c:2b:1a:b6:f3:a8:5d:74:54:88:9d:
37:24:d3:be:4b:b3:0c:0b:54:d3:34:c9:01:57:01:09:08:51:
b0:9b:23:e6:ed:7c:aa:f1:7d:36:86:e0:0c:02:04:b7:8e:16:
95:55:4b:5d:6a:54:6f:c3:86:43:b7:3f:38:56:01:94:b6:b2:
b8:f3:25:69:23:2d:dd:56:71:8b:1c:00:31:e9:a3:57:aa:22:
87:0c:7a:ce:ce:be:87:86:2a:c2:41:d7:25:a2:63:49:ce:34:
11:5b:da:77:fa:be:e7:a8:99:66:56:31:9a:14:62:8b:4c:d6:
62:f1:fb:21:f5:08:e9:89:6d:c1:84:15:cd:01:c0:f6:e0:6a:
16:29:89:58:29:09:03:6b:04:0d:e4:6b:e3:fc:a5:c9:6d:69:
bf:69:15:58:44:31:34:07:8f:26:1e:69:05:93:db:37:40:58:
2f:8e:22:1a:0d:05:c0:8b:77:a3:66:ec:0f:46:6e:89:73:64:
f6:4e:f1:33:51:4b:7a:9c:c9:1b:69:53:7d:98:ba:38:fa:e7:
5e:47:c2:da:97:c4:e4:6e:d6:0f:f6:b5:c9:93:30:36:20:60:
dd:e4:79:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:46 2023 by rpki-client on console.sobornost.net