Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/Io26sFGECXVbRPkzGNhjoFSLPjg.roa
File: Io26sFGECXVbRPkzGNhjoFSLPjg.roa (raw, json)
Hash identifier: byjHIbWb9z1pWSaqwnelF9Ke6rCawt0qNJR8dBgnEu8=
Subject key identifier: 22:8D:BA:B0:51:84:09:75:5B:44:F9:33:18:D8:63:A0:54:8B:3E:38
Certificate issuer: /CN=d0c3d358812e60b680e4e11632f139560bf525fb
Certificate serial: 018BB546C9B66C09649B88273DA732BEBB3A
Authority key identifier: D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/Io26sFGECXVbRPkzGNhjoFSLPjg.roa
Signing time: Thu 09 Nov 2023 18:09:57 +0000
ROA not before: Thu 09 Nov 2023 18:09:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216024
IP address blocks: 194.50.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b5:46:c9:b6:6c:09:64:9b:88:27:3d:a7:32:be:bb:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0c3d358812e60b680e4e11632f139560bf525fb
Validity
Not Before: Nov 9 18:09:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=228dbab0518409755b44f93318d863a0548b3e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9a:a0:0c:75:c5:85:ed:c5:9e:f1:41:1b:7f:
36:26:92:5a:86:d9:25:f4:fd:f9:e5:95:29:3a:be:
b9:53:9c:42:c3:b1:a4:da:ae:ae:5c:8d:3b:3b:19:
81:a7:29:15:fb:d9:a1:d9:9a:90:0b:e4:16:a0:ce:
ec:88:0d:82:fa:f5:f7:59:16:8b:05:f9:12:ad:92:
11:d6:b2:ee:ec:6c:22:da:43:e6:0e:b1:ed:87:01:
b4:d7:35:57:84:4e:4a:d4:f4:a7:9d:a1:89:3c:bc:
58:c1:80:ba:67:b6:ad:c5:11:3f:af:fe:ad:39:03:
5a:aa:6a:b9:ce:8a:9d:ae:b4:27:fc:2f:80:c0:2d:
e1:06:3c:ce:68:92:10:03:16:39:aa:7f:2a:ff:75:
5a:a1:86:6c:8a:80:8c:74:30:1b:7b:6e:9b:8b:0c:
e2:fa:b2:b9:5a:2c:7f:51:4a:0f:05:03:41:f1:0c:
ea:ce:e1:c2:32:66:6b:ff:e1:e1:77:0e:28:df:77:
e8:c5:8f:6f:99:4a:a4:83:b7:4f:ae:84:ee:e4:49:
4d:0c:62:7c:39:44:a9:a4:51:92:f8:c6:05:c5:c8:
36:6b:8c:ae:38:94:cc:cd:18:14:ac:62:39:fe:9c:
5e:99:62:a2:1a:29:5f:c6:64:6d:18:52:de:b3:60:
97:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8D:BA:B0:51:84:09:75:5B:44:F9:33:18:D8:63:A0:54:8B:3E:38
X509v3 Authority Key Identifier:
keyid:D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/Io26sFGECXVbRPkzGNhjoFSLPjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.153.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:25:0f:e8:aa:f2:c9:13:2f:1c:51:01:3f:24:c3:5d:7c:21:
37:00:90:28:4f:f3:f9:99:e1:99:4e:5b:da:d6:b3:16:72:44:
da:d5:2d:04:1f:47:82:14:25:05:b9:af:01:83:59:a4:a7:06:
8a:62:87:a3:b0:4c:07:71:c5:5c:64:b3:f2:6a:bf:44:67:a9:
00:c5:08:5d:0e:96:20:b2:ed:02:7e:c0:5b:cd:72:36:fe:0b:
42:7a:ad:b6:a7:5d:ab:4f:52:c5:26:5c:11:05:07:01:6a:df:
0f:a2:d6:dd:33:4b:d7:dd:4c:94:3e:17:4d:c8:67:45:57:f3:
7d:4a:ea:b1:d1:7c:7b:6c:f1:60:05:81:f5:a9:0d:64:88:0a:
da:e2:ab:fd:74:b0:7e:6a:ef:23:f0:aa:e9:45:cd:c1:a7:8d:
13:90:ad:00:c9:5d:06:52:1e:05:a1:2b:7d:cf:44:b7:35:cd:
bf:7c:74:33:b7:0b:43:e8:9b:50:04:d2:d1:c3:45:1b:07:26:
40:78:69:5a:5b:6a:8b:d7:a7:72:d6:cb:0f:b3:d3:3c:61:af:
8b:30:bb:05:a6:33:c4:27:69:77:a5:f2:1d:e8:5f:6d:3e:61:
5f:ad:2e:9a:c8:1d:eb:52:8c:e2:fe:37:c9:af:4c:2a:7d:27:
00:ef:e3:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:08 2024 by rpki-client on console.sobornost.net