Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/xy1vusi8TrqmKpzThat2zsFA3gQ.roa
File: xy1vusi8TrqmKpzThat2zsFA3gQ.roa (raw, json)
Hash identifier: XMOng+YB0dIHb+/ZgKKxHKm85Q9bLJKOmTT/nTFbbPo=
Subject key identifier: C7:2D:6F:BA:C8:BC:4E:BA:A6:2A:9C:D3:85:AB:76:CE:C1:40:DE:04
Certificate issuer: /CN=1acb8a70f909ae3e1fc1dbd6bdc425e08eec81b9
Certificate serial: 0188052B15A9C217083D27F36AD863F41F92
Authority key identifier: 1A:CB:8A:70:F9:09:AE:3E:1F:C1:DB:D6:BD:C4:25:E0:8E:EC:81:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GsuKcPkJrj4fwdvWvcQl4I7sgbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/xy1vusi8TrqmKpzThat2zsFA3gQ.roa
Signing time: Wed 10 May 2023 10:18:09 +0000
ROA not before: Wed 10 May 2023 10:18:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209211
IP address blocks: 92.118.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:2b:15:a9:c2:17:08:3d:27:f3:6a:d8:63:f4:1f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb8a70f909ae3e1fc1dbd6bdc425e08eec81b9
Validity
Not Before: May 10 10:18:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c72d6fbac8bc4ebaa62a9cd385ab76cec140de04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8e:94:aa:87:36:dc:63:c3:14:6f:1a:48:5f:
b3:39:dc:43:c4:2e:f7:19:8b:e8:28:29:a1:33:49:
b0:93:8e:67:d8:e0:28:f7:65:0b:d0:55:3b:a4:0f:
08:ce:71:90:87:4f:88:13:30:8f:70:de:34:52:f1:
4e:a2:a4:3e:44:f4:d9:a5:b6:d4:30:5e:35:3f:03:
37:46:9c:d3:92:1c:07:88:f3:bf:8d:0e:b9:5a:08:
df:b1:eb:98:ac:2c:89:4b:86:8a:e9:aa:06:27:88:
01:12:0f:16:b7:b7:32:f0:c0:38:5e:64:01:d3:af:
47:76:8a:44:03:bf:00:40:63:15:b0:2a:56:53:6b:
75:ec:0c:53:fc:90:ca:f3:30:76:8b:1d:62:47:ac:
cb:f8:62:d5:9f:d8:91:ea:a7:c7:65:cc:99:2d:23:
8f:cb:cd:11:10:a9:33:c5:ff:ad:fc:c4:d0:d3:90:
34:f6:18:d0:d5:05:4c:77:e8:9c:bc:92:73:30:97:
0e:04:76:4e:e7:0e:f5:2f:f3:5d:b7:31:ed:0b:a0:
66:15:a3:2e:5d:91:24:01:62:1a:b1:d6:49:7e:14:
4a:b5:70:4c:b0:17:d7:d6:df:aa:78:89:73:41:85:
0e:ac:1e:88:a1:63:8d:ee:a6:88:6d:f1:a8:b8:bb:
b3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2D:6F:BA:C8:BC:4E:BA:A6:2A:9C:D3:85:AB:76:CE:C1:40:DE:04
X509v3 Authority Key Identifier:
keyid:1A:CB:8A:70:F9:09:AE:3E:1F:C1:DB:D6:BD:C4:25:E0:8E:EC:81:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GsuKcPkJrj4fwdvWvcQl4I7sgbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/xy1vusi8TrqmKpzThat2zsFA3gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b9456e-4e52-4de5-bbd6-60de224cfa4b/1/GsuKcPkJrj4fwdvWvcQl4I7sgbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:8e:dc:42:26:58:bc:75:0b:b1:ce:84:c7:f8:c6:b8:16:a8:
49:2d:ea:87:c3:b4:25:36:ea:13:7d:54:ed:2c:d3:e3:0d:ea:
8d:9d:55:f3:ac:49:a5:c9:f9:6b:09:04:a3:8a:3d:33:84:b4:
b8:fe:dd:e4:41:ad:84:97:b6:12:41:3c:9f:9b:32:ea:c2:49:
a9:fd:64:04:62:25:fc:53:12:dd:c2:a7:f5:75:15:60:65:46:
fc:01:f3:90:8c:66:84:e9:15:0c:4a:13:f1:c9:40:64:4d:1a:
44:ba:18:ca:e4:57:22:44:94:42:7a:eb:b4:10:7d:0a:2e:fa:
f8:ed:a5:c8:c0:d2:7e:6b:f2:11:7d:0f:13:ef:d5:0c:37:88:
54:cb:69:4e:1d:39:16:56:b1:8d:2a:13:b0:c9:e9:90:56:43:
d2:04:fc:fb:a0:84:58:c0:13:89:0b:a9:20:b9:bd:53:d0:4f:
03:8f:73:4f:ad:6f:26:a1:70:2d:b6:9c:dd:4c:37:38:61:80:
e9:4a:0b:46:b8:09:8e:f1:83:1d:12:a8:e7:1f:af:57:6f:9b:
ef:65:58:1a:f2:78:39:45:43:52:ab:f3:b3:34:49:20:24:10:
ce:fd:d9:f6:66:b0:76:2e:75:99:c8:34:cf:a3:de:e9:b2:21:
ff:4b:ed:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:32 2024 by rpki-client on console.sobornost.net