Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/pC9fPpyrd6DwMYe-UQTCaRQnPz4.roa
File: pC9fPpyrd6DwMYe-UQTCaRQnPz4.roa (raw, json)
Hash identifier: anSAtwpApn928h4a8MvrKRpqwwBfF2gphGb0WYuC0dI=
Subject key identifier: A4:2F:5F:3E:9C:AB:77:A0:F0:31:87:BE:51:04:C2:69:14:27:3F:3E
Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial: 018570151BDBA725EA4B8F89EAF1002B71ED
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/pC9fPpyrd6DwMYe-UQTCaRQnPz4.roa
Signing time: Mon 02 Jan 2023 01:25:09 +0000
ROA not before: Mon 02 Jan 2023 01:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197635
IP address blocks: 91.223.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:1b:db:a7:25:ea:4b:8f:89:ea:f1:00:2b:71:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Validity
Not Before: Jan 2 01:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a42f5f3e9cab77a0f03187be5104c26914273f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:80:a2:21:b3:4a:fe:48:88:2c:ba:55:d0:6f:
18:07:83:c5:bf:30:e5:1c:7c:77:40:10:1e:20:2c:
3d:a2:b6:ca:47:a3:6a:8c:66:b1:b7:d9:36:48:43:
6c:a5:10:46:05:36:be:9d:c6:8f:cd:78:b6:a8:d6:
59:6b:c3:1d:aa:af:8c:86:6e:13:22:32:c7:e8:de:
73:8d:c2:f0:af:b5:f9:52:ac:7b:4c:0d:03:95:23:
40:39:38:ec:22:9e:0c:69:c9:d9:c1:2d:74:12:47:
1f:57:2e:fb:e8:f5:76:f8:92:2f:0e:38:c1:cd:dc:
3d:80:8a:46:d8:b5:86:60:9f:37:9f:71:64:6f:38:
ea:9d:12:c0:9b:3c:12:d4:20:8e:93:fa:bc:3f:40:
d6:ce:a2:04:97:8b:9b:a2:cc:ec:7f:b8:dd:6a:69:
d4:d9:3b:8b:22:12:02:1a:4c:64:a3:b2:19:b3:85:
bd:9c:e0:dc:2e:8e:6c:14:4b:13:c5:19:06:30:c9:
6c:4f:33:94:4d:0e:1d:fa:dd:2b:a3:f4:57:67:ae:
23:f9:67:49:ac:86:65:63:6d:40:ea:e9:c0:cf:46:
0c:d1:4b:79:44:91:3b:e9:25:e4:00:7c:95:05:0f:
7b:43:c1:e7:89:14:c8:f0:85:2b:f2:c6:9d:1c:dd:
11:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:2F:5F:3E:9C:AB:77:A0:F0:31:87:BE:51:04:C2:69:14:27:3F:3E
X509v3 Authority Key Identifier:
keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/pC9fPpyrd6DwMYe-UQTCaRQnPz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.197.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c1:d4:cf:cf:3b:b1:58:81:da:e0:70:38:99:a2:15:eb:13:
e5:7e:ac:7f:9c:ee:3d:90:70:80:2e:ac:64:52:36:d6:e5:c4:
64:f3:1e:26:0e:a9:8e:3e:9f:69:28:05:02:53:22:79:68:1d:
44:3d:53:f3:31:7f:9b:ee:98:64:e4:3a:34:be:71:5e:7c:0f:
b2:82:00:24:1e:ff:13:55:8f:a5:93:75:d4:b8:cf:92:28:3b:
ae:72:3e:93:cf:4d:f8:32:e9:3a:c2:c5:2b:f1:cc:86:15:e2:
f1:05:17:74:fc:90:85:a1:24:be:0a:00:be:34:ea:33:c3:e5:
53:f8:c2:56:89:d1:6a:91:9c:39:62:ea:2d:94:62:92:14:be:
32:27:8a:2d:15:74:9b:2d:73:f2:53:e5:71:29:e8:01:17:0c:
be:04:f7:d0:4b:df:8f:96:d4:8c:0b:13:2a:54:f8:5b:cb:0a:
14:c3:f9:52:2c:da:e2:20:96:ef:d5:37:e5:b0:5e:5e:c2:10:
d4:10:3a:77:ec:a9:13:6f:a7:f9:9c:f8:b4:06:96:cb:6c:99:
d8:91:03:22:72:31:ca:a2:08:6e:fd:64:a9:83:0b:17:5b:dd:
e2:88:ad:be:0b:ed:b6:d2:ec:3b:fd:c3:c3:8f:da:6b:9a:d3:
62:e4:67:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:08 2024 by rpki-client on console.sobornost.net