Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/3ESJ6Pw2cH9MAs6_UG8IyC82V84.roa
File: 3ESJ6Pw2cH9MAs6_UG8IyC82V84.roa (raw, json)
Hash identifier: XtmOQMLJLhWtfeGdLcbYFQUH8WODQ67TQ0tqpBn6ads=
Subject key identifier: DC:44:89:E8:FC:36:70:7F:4C:02:CE:BF:50:6F:08:C8:2F:36:57:CE
Certificate issuer: /CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Certificate serial: 01856DD4042BBB799BAFB22D1427DE69D0C9
Authority key identifier: C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/3ESJ6Pw2cH9MAs6_UG8IyC82V84.roa
Signing time: Sun 01 Jan 2023 14:54:49 +0000
ROA not before: Sun 01 Jan 2023 14:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51619
IP address blocks: 195.210.60.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:04:2b:bb:79:9b:af:b2:2d:14:27:de:69:d0:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Validity
Not Before: Jan 1 14:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc4489e8fc36707f4c02cebf506f08c82f3657ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ef:90:1a:30:47:b6:bf:78:94:c0:6b:1f:8b:
d2:82:d5:74:e8:50:68:85:32:88:39:20:47:87:90:
e5:d3:53:0c:a6:6c:ad:aa:70:96:24:d0:63:b1:65:
b0:43:73:97:51:e0:d5:37:bd:bc:d8:0f:34:92:be:
a8:e6:1c:31:45:5d:8d:db:c6:8a:5a:b7:0d:2e:a8:
9e:65:49:fa:e1:80:37:fa:1d:4c:ad:90:71:c8:44:
2f:1d:5e:2d:27:cc:6f:3d:ac:db:f9:fc:d3:c9:44:
59:39:e5:11:16:3b:ae:04:7a:f5:5f:6c:66:4e:b2:
4c:43:86:1a:63:d2:f6:80:b0:34:76:68:9f:78:f4:
ad:10:5c:40:d5:80:54:a8:bf:fe:36:72:42:19:11:
db:5f:ec:ea:73:03:d4:f0:e1:f5:ac:df:b3:ee:86:
fe:96:32:2c:3a:f6:d8:2a:a8:ed:92:ce:55:b8:fd:
90:50:e7:14:27:31:ce:28:27:c3:34:1b:60:1c:1c:
16:1d:dc:3d:61:fd:0f:a7:55:40:00:c7:f1:b0:0a:
a5:69:e5:45:d8:fb:96:ec:85:4d:32:25:40:9c:d9:
16:71:75:8c:83:24:32:1d:cc:5c:64:8a:57:de:ea:
1a:d7:92:82:9d:2a:e3:af:61:7b:e2:f9:50:70:08:
b6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:44:89:E8:FC:36:70:7F:4C:02:CE:BF:50:6F:08:C8:2F:36:57:CE
X509v3 Authority Key Identifier:
keyid:C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/3ESJ6Pw2cH9MAs6_UG8IyC82V84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.60.0/23
Signature Algorithm: sha256WithRSAEncryption
13:96:5b:b1:cb:3c:ff:71:2e:6e:3c:04:d4:78:47:37:df:4c:
a5:72:69:45:6a:d0:07:fb:fb:47:2c:8d:96:d0:0b:53:65:cd:
c1:37:f7:75:b8:76:ac:19:82:4d:91:65:8d:03:3e:cb:07:af:
1a:f0:34:00:83:50:08:55:b4:56:de:2e:f7:0e:b5:1b:8c:b5:
dc:7d:b7:47:92:4e:c0:13:e7:d5:38:81:10:dd:18:3a:c6:27:
d1:25:61:cb:17:b5:ad:0c:2c:d8:ec:c8:f8:d4:1e:eb:41:83:
0c:61:14:af:fe:ff:f2:7b:b1:02:fe:fa:39:c7:cd:37:bd:d6:
ed:24:d4:ac:94:29:45:96:47:00:29:be:0b:c4:09:e4:af:9a:
65:8a:9c:e3:b5:35:18:de:2b:69:19:90:e5:f9:3c:ca:8d:b4:
98:3a:19:4a:7f:a5:77:e7:c0:85:bb:bb:25:c4:ab:21:04:80:
e1:1f:23:f3:f0:ff:b6:cf:99:0e:ed:52:86:92:3e:3c:ce:4b:
f0:11:50:bb:f5:b2:56:86:01:a2:9e:90:1c:86:d0:e3:cf:1a:
28:29:3f:f7:c6:37:4f:ac:c1:e4:6d:a2:88:33:eb:b6:14:00:
35:0a:a1:ce:71:22:2d:40:e9:f6:68:c2:f5:f3:ee:b3:4c:4e:
16:bf:3f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:25 2024 by rpki-client on console.sobornost.net