Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/QW2HujkvlSmze147bGYuZGVNlr4.roa
File: QW2HujkvlSmze147bGYuZGVNlr4.roa (raw, json)
Hash identifier: IH5W/rsyw5gSDSTWrnjQJiJmqzwMj0mu2rs4eaA0rTU=
Subject key identifier: 41:6D:87:BA:39:2F:95:29:B3:7B:5E:3B:6C:66:2E:64:65:4D:96:BE
Certificate issuer: /CN=d0c3d358812e60b680e4e11632f139560bf525fb
Certificate serial: 0189AFF1CC8CEA6A9943095688B5BBC7FAF6
Authority key identifier: D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/QW2HujkvlSmze147bGYuZGVNlr4.roa
Signing time: Tue 01 Aug 2023 07:13:26 +0000
ROA not before: Tue 01 Aug 2023 07:13:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210281
IP address blocks: 194.50.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:af:f1:cc:8c:ea:6a:99:43:09:56:88:b5:bb:c7:fa:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0c3d358812e60b680e4e11632f139560bf525fb
Validity
Not Before: Aug 1 07:13:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=416d87ba392f9529b37b5e3b6c662e64654d96be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2f:67:ac:8d:eb:08:05:8d:4f:cf:83:64:7d:
95:0e:1f:20:65:ae:6a:c7:93:03:9b:b5:f4:cd:9a:
c8:93:c7:0b:24:5e:03:9a:cc:0b:89:77:c6:d3:d2:
5d:9f:21:01:40:c6:00:4b:21:a0:e2:15:b6:22:d5:
f2:21:71:35:81:ba:16:15:65:1a:6e:26:08:88:28:
e7:77:53:25:e2:4c:c4:37:e7:54:82:81:ca:c0:9a:
91:8f:48:70:8a:56:40:25:dd:ed:59:65:40:7e:33:
a0:47:d7:08:13:94:71:07:48:56:4e:a4:0e:b3:b8:
01:f5:05:bd:50:1b:84:df:41:91:3b:11:db:81:8d:
7c:38:3b:c9:14:2e:90:f1:81:3b:cb:9e:ea:4e:32:
b3:9e:02:37:b8:cb:74:b6:20:96:37:36:b1:0c:3b:
6f:8d:45:0f:71:13:3b:ca:ce:89:a6:88:44:cc:00:
65:68:4c:6d:bb:25:d7:d4:08:34:17:32:c8:54:05:
29:a2:85:f6:e1:4a:b1:ee:a2:62:6b:92:99:1c:80:
9c:be:09:7b:aa:8b:c4:e7:82:48:c1:e7:94:33:91:
12:59:73:af:c3:1d:b1:86:ed:ad:e1:57:ef:26:30:
f9:f8:0d:9b:47:80:83:7c:0a:e0:18:0c:26:89:8c:
ca:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:6D:87:BA:39:2F:95:29:B3:7B:5E:3B:6C:66:2E:64:65:4D:96:BE
X509v3 Authority Key Identifier:
keyid:D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/QW2HujkvlSmze147bGYuZGVNlr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.153.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:8a:51:02:02:15:1f:d3:9a:e4:13:9b:52:98:d3:30:9b:f2:
d4:43:f1:f4:20:3a:4e:14:5e:a7:a7:74:46:33:e6:6e:bb:38:
25:0f:35:85:dc:8c:7d:01:dc:93:ab:00:36:41:1b:71:92:a8:
f4:e4:ad:02:be:98:9c:48:4e:15:91:15:31:87:d8:be:f5:4b:
81:6c:95:0d:88:20:23:54:98:c8:d9:63:27:74:58:c2:1d:07:
53:ee:4d:d1:3e:f8:8a:35:b0:81:59:55:b4:78:9a:4e:e3:db:
e4:f9:88:7f:60:5a:1f:f1:00:34:0c:f1:da:08:5e:34:75:9c:
c7:2e:61:fc:0c:ad:6e:61:ec:aa:87:75:01:0c:d6:f8:85:9b:
c3:ed:83:72:63:a0:a1:5a:e2:74:02:6c:17:b1:e4:d8:78:ed:
ea:f5:31:c3:44:60:4f:25:99:ad:99:6b:87:c1:7c:6f:ca:1f:
4a:cd:0a:a3:d2:be:95:1e:ff:49:22:d6:99:0e:4f:63:0d:5f:
88:f2:a1:07:bf:42:a3:42:b6:10:7c:d3:54:7e:be:b9:b0:81:
7b:1e:ec:b4:75:ec:7b:60:0b:91:a9:ad:9b:74:66:93:b4:5e:
f7:cd:af:6c:be:11:b5:e5:d5:ca:a8:5b:89:e9:22:8a:c2:c3:
96:ee:95:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:03 2023 by rpki-client on console.sobornost.net