Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/zVcRiye7nF6ZrOhnfgYf77-7AiY.roa
File: zVcRiye7nF6ZrOhnfgYf77-7AiY.roa (raw, json)
Hash identifier: gfQGAkbEeTu4RXz4ltC8YU2FzIn6iEtHUvdlOMsVedY=
Subject key identifier: CD:57:11:8B:27:BB:9C:5E:99:AC:E8:67:7E:06:1F:EF:BF:BB:02:26
Certificate issuer: /CN=e96a769beca3b1932955158135596365c43c83b1
Certificate serial: 01856F2FF661D4E522E526301A6B34022CAC
Authority key identifier: E9:6A:76:9B:EC:A3:B1:93:29:55:15:81:35:59:63:65:C4:3C:83:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Wp2m-yjsZMpVRWBNVljZcQ8g7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/zVcRiye7nF6ZrOhnfgYf77-7AiY.roa
Signing time: Sun 01 Jan 2023 21:14:52 +0000
ROA not before: Sun 01 Jan 2023 21:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211701
IP address blocks: 193.169.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f6:61:d4:e5:22:e5:26:30:1a:6b:34:02:2c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96a769beca3b1932955158135596365c43c83b1
Validity
Not Before: Jan 1 21:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd57118b27bb9c5e99ace8677e061fefbfbb0226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f2:28:da:73:87:c2:6f:b3:c8:9b:47:5b:13:
59:3f:1d:6a:66:62:17:90:00:49:c1:bd:cc:dc:e2:
35:f0:d1:c6:a6:46:c7:b4:46:a5:d8:33:ad:d8:ae:
d2:9c:b0:66:2d:a3:a2:d9:e3:05:44:c9:52:cf:e3:
e9:64:1e:7e:ea:08:2c:74:5a:96:f2:61:7c:12:96:
40:aa:ff:de:13:29:3a:4b:ba:bd:26:79:0b:5e:fb:
f7:e3:87:ec:ba:04:82:30:a4:a7:fa:20:84:bb:17:
fc:ea:f0:21:fb:27:bd:32:9b:fa:ee:f7:73:dc:b3:
07:6a:1e:c9:dd:b1:91:07:c6:2f:9b:ba:ec:e9:1e:
aa:db:98:4d:70:f7:f0:2e:b4:7e:2d:e6:95:e4:a7:
f2:77:ee:0b:f4:87:e2:5f:85:c0:0b:93:2e:3f:eb:
be:c8:98:8b:9e:1c:a7:b8:e8:dc:63:e9:33:70:a3:
13:17:b0:cb:e7:12:c4:37:73:72:ab:2a:e9:8d:88:
14:0c:58:f7:73:27:ed:a8:c7:e3:21:50:e4:d4:97:
a4:3c:f5:bd:cf:a0:58:e5:a7:07:82:69:24:9f:f1:
29:30:00:83:f4:22:17:cd:3f:7e:90:4f:19:30:ca:
f8:ef:39:91:43:cf:79:e6:eb:49:25:a5:87:04:58:
b1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:57:11:8B:27:BB:9C:5E:99:AC:E8:67:7E:06:1F:EF:BF:BB:02:26
X509v3 Authority Key Identifier:
keyid:E9:6A:76:9B:EC:A3:B1:93:29:55:15:81:35:59:63:65:C4:3C:83:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Wp2m-yjsZMpVRWBNVljZcQ8g7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/zVcRiye7nF6ZrOhnfgYf77-7AiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/6Wp2m-yjsZMpVRWBNVljZcQ8g7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.136.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:4c:a2:da:f0:9f:7e:d9:51:1f:8b:5e:fe:c6:2f:e0:1e:ba:
81:85:74:03:bf:99:9b:f3:44:fa:6c:fd:38:4a:9e:31:af:ff:
c9:20:a5:37:ac:89:2e:5e:f4:2f:29:e6:e6:1c:bd:26:45:a0:
9a:e1:f4:59:04:30:2d:8f:c5:2b:66:0c:a6:55:48:21:0c:a4:
bd:b3:2d:11:5c:44:13:c4:8f:a5:67:38:5a:aa:c9:48:5f:b3:
c3:f3:76:53:d7:e8:7d:1b:75:9b:5c:f4:b1:14:43:f0:c4:2b:
88:8d:2d:74:da:f4:9d:c9:7f:78:d2:4a:91:bb:e4:e5:53:21:
84:4e:71:e5:16:38:e3:48:2f:0c:a3:b7:22:c8:31:f3:0e:be:
ff:ec:d4:1e:c9:4f:72:be:55:50:77:9b:1d:4a:65:ed:5e:cd:
6a:bc:04:4e:92:bb:31:d2:0f:a2:35:0b:e4:19:44:31:e8:9c:
f2:05:a8:7a:9c:70:d2:f4:69:e1:fc:76:f2:7e:4e:93:0b:0b:
a6:81:f4:0f:3e:89:1d:92:2b:bd:50:b5:dd:2e:4a:94:e1:c1:
b8:11:85:f6:40:d7:28:8e:1b:d9:12:99:fc:47:21:87:3a:84:
36:46:cd:bb:3e:65:13:5e:53:b0:bf:d4:e1:12:21:20:07:1d:
7c:f6:29:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:14 2024 by rpki-client on console.sobornost.net