Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/xELPKMPKGG-eltJvzhdqpiDjIWE.roa
File: xELPKMPKGG-eltJvzhdqpiDjIWE.roa (raw, json)
Hash identifier: zUxjlqqLVqvHQzGGAfh6GZO6QIrXUX1PkoNGHpA+eRI=
Subject key identifier: C4:42:CF:28:C3:CA:18:6F:9E:96:D2:6F:CE:17:6A:A6:20:E3:21:61
Certificate issuer: /CN=42aabee3542872458664292fa592e3f75e1abad4
Certificate serial: 01856F66D802216F8E2441F8AB9DB5F55FF7
Authority key identifier: 42:AA:BE:E3:54:28:72:45:86:64:29:2F:A5:92:E3:F7:5E:1A:BA:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qqq-41QockWGZCkvpZLj914autQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/xELPKMPKGG-eltJvzhdqpiDjIWE.roa
Signing time: Sun 01 Jan 2023 22:14:48 +0000
ROA not before: Sun 01 Jan 2023 22:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49696
IP address blocks: 45.94.84.0/22 maxlen: 22
2a0e:3040::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:d8:02:21:6f:8e:24:41:f8:ab:9d:b5:f5:5f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42aabee3542872458664292fa592e3f75e1abad4
Validity
Not Before: Jan 1 22:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c442cf28c3ca186f9e96d26fce176aa620e32161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f6:35:c6:9c:8f:de:03:e2:61:4d:be:d7:7b:
af:95:66:d4:59:54:66:29:5f:12:5a:bc:1b:25:8b:
8f:29:61:cd:af:aa:ee:0d:78:d5:d0:7f:1d:d1:33:
e8:f1:76:9d:af:48:55:e3:b5:65:3f:39:53:1a:ee:
97:bd:da:90:b5:fd:d0:7e:75:96:ba:f8:74:be:b6:
29:42:3f:81:fc:05:5b:5f:aa:bb:15:92:42:6b:33:
9b:fd:d3:54:16:b6:df:ec:3e:00:a1:b2:b4:32:f1:
95:2c:26:24:ab:c1:ea:f4:ab:ad:16:2f:63:23:3e:
b8:56:76:38:ce:76:47:8a:eb:52:dd:b6:3c:2c:ce:
4f:a7:32:fc:82:63:05:e4:a3:1f:82:0b:7c:2f:51:
a4:51:59:62:8e:3d:2a:1d:79:b4:6b:05:a0:3a:b3:
e1:d9:71:b8:1f:78:7b:a9:3b:1d:be:67:e7:45:28:
94:35:00:66:ca:92:33:cf:f2:73:33:fb:35:76:7c:
40:a5:e7:d5:0c:c8:ca:2c:e1:65:07:1b:18:62:68:
c0:01:4d:8e:15:f2:d9:5e:c0:87:aa:c3:37:19:84:
18:c3:2a:e8:84:7f:0d:df:58:27:5f:48:4a:2e:14:
e5:78:d7:cd:fb:33:1e:f4:f0:e5:61:96:41:70:85:
eb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:42:CF:28:C3:CA:18:6F:9E:96:D2:6F:CE:17:6A:A6:20:E3:21:61
X509v3 Authority Key Identifier:
keyid:42:AA:BE:E3:54:28:72:45:86:64:29:2F:A5:92:E3:F7:5E:1A:BA:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qqq-41QockWGZCkvpZLj914autQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/xELPKMPKGG-eltJvzhdqpiDjIWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/Qqq-41QockWGZCkvpZLj914autQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.84.0/22
IPv6:
2a0e:3040::/32
Signature Algorithm: sha256WithRSAEncryption
09:85:5d:e3:da:c7:59:c6:0a:0b:09:48:7c:76:14:ad:b1:ef:
c8:06:75:9c:98:ec:69:1f:4d:40:c2:d1:86:32:08:cc:85:71:
f4:cd:c8:d5:f8:64:45:58:56:23:7c:be:91:84:26:3b:dd:a3:
2b:bf:58:12:52:17:84:43:13:52:c8:72:b8:dc:94:90:c8:94:
f1:f7:43:a7:2c:fa:7d:36:17:7a:81:74:c4:4b:d1:bf:db:44:
40:08:bc:01:04:99:d8:58:bb:bc:f8:94:8e:cd:71:20:8f:e7:
ff:91:09:49:b4:f0:22:32:dd:8a:29:a7:df:08:3c:ab:90:b4:
f7:bb:70:b1:ed:16:18:e7:58:2e:35:f9:a9:38:c4:9c:9b:23:
7b:96:4c:d3:79:02:19:ba:23:c7:83:09:d1:50:47:5e:ba:b2:
54:b7:b6:14:1c:1d:73:5b:90:3e:70:15:c4:13:a4:80:f8:52:
70:ac:2a:dc:a9:3c:cd:e3:c3:59:90:d9:8a:16:49:fa:43:62:
d3:e0:36:5e:f4:34:8c:b5:a3:bb:34:96:42:d9:39:9f:0b:67:
76:4c:dd:b7:aa:8c:22:3a:22:bf:c1:64:c5:98:9b:33:aa:e1:
08:53:43:45:f6:05:2f:7c:a6:ca:2f:e2:c3:ee:2b:11:42:94:
aa:06:eb:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:07 2024 by rpki-client on console.sobornost.net