Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/b8b5bd-8adf-43ef-8abd-2b3a159ca2ef/1/d5gljNlb5hGB96zczlyVOr8NrOE.roa
File: d5gljNlb5hGB96zczlyVOr8NrOE.roa (raw, json)
Hash identifier: 1WLqhgxsnbroHVKhgG3JureajGKRpaBWveJ9HCsLr8Y=
Subject key identifier: 77:98:25:8C:D9:5B:E6:11:81:F7:AC:DC:CE:5C:95:3A:BF:0D:AC:E1
Certificate issuer: /CN=0d18532baa2fd86583a263bb1fbccbc80d40d990
Certificate serial: 0185701502FED50B68CAE7223E88A69B2DB5
Authority key identifier: 0D:18:53:2B:AA:2F:D8:65:83:A2:63:BB:1F:BC:CB:C8:0D:40:D9:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRhTK6ov2GWDomO7H7zLyA1A2ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/b8b5bd-8adf-43ef-8abd-2b3a159ca2ef/1/d5gljNlb5hGB96zczlyVOr8NrOE.roa
Signing time: Mon 02 Jan 2023 01:25:03 +0000
ROA not before: Mon 02 Jan 2023 01:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16338
IP address blocks: 176.119.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:02:fe:d5:0b:68:ca:e7:22:3e:88:a6:9b:2d:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d18532baa2fd86583a263bb1fbccbc80d40d990
Validity
Not Before: Jan 2 01:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7798258cd95be61181f7acdcce5c953abf0dace1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3d:78:2f:18:47:be:f1:f8:c0:31:67:15:79:
d4:98:af:d8:15:6b:9c:3e:9d:75:24:52:ee:d7:99:
3b:6d:c0:ce:7c:d4:2a:c2:16:5d:82:75:a0:5c:db:
1e:44:0b:20:81:66:10:9c:8a:bc:8f:d6:1a:41:cc:
66:4c:c0:4a:df:f1:85:4f:7d:56:f4:db:99:59:a9:
ca:29:fa:f5:7b:05:ef:d5:e8:4a:2c:5e:1b:09:18:
9d:a0:b6:dc:48:2c:03:b2:a5:b9:f9:90:3e:24:db:
68:29:5a:f9:38:9b:5b:6f:e6:a4:b9:77:76:ca:45:
b0:4d:36:7d:10:42:15:cb:a7:d3:a8:b0:b3:33:14:
47:3c:e1:79:b4:8a:6e:18:b0:a6:50:9f:4a:36:8b:
af:be:2d:36:d8:9a:62:c8:16:a4:45:15:f3:13:fe:
69:eb:68:f5:3d:61:c7:5c:8a:f1:37:09:dc:4a:70:
a0:a7:5b:fa:22:e9:0c:eb:e8:02:2d:31:e0:e4:e1:
e6:8f:32:0f:91:89:ca:56:b8:90:b4:14:91:32:6e:
e5:5b:b2:4f:cb:68:c7:fa:0b:de:c5:1b:7d:81:f6:
2e:76:8b:6d:6c:ea:d6:24:0b:93:4d:29:f7:46:c7:
77:7c:5b:e8:a0:dc:8c:01:70:84:a6:86:74:04:c4:
34:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:98:25:8C:D9:5B:E6:11:81:F7:AC:DC:CE:5C:95:3A:BF:0D:AC:E1
X509v3 Authority Key Identifier:
keyid:0D:18:53:2B:AA:2F:D8:65:83:A2:63:BB:1F:BC:CB:C8:0D:40:D9:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRhTK6ov2GWDomO7H7zLyA1A2ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b8b5bd-8adf-43ef-8abd-2b3a159ca2ef/1/d5gljNlb5hGB96zczlyVOr8NrOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b8b5bd-8adf-43ef-8abd-2b3a159ca2ef/1/DRhTK6ov2GWDomO7H7zLyA1A2ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.207.0/24
Signature Algorithm: sha256WithRSAEncryption
39:82:a6:3e:4a:30:ff:05:3e:49:47:03:fa:92:42:07:09:ac:
04:a4:6c:3b:31:10:88:c0:39:4a:71:9f:65:61:47:b5:d0:16:
e4:42:8b:48:55:4f:b9:96:aa:c0:cc:d9:fd:f5:76:33:5d:b7:
21:e7:f4:83:a9:f0:0a:2f:b0:76:11:0a:c1:a9:15:4a:70:db:
d1:95:43:42:51:1b:09:a0:6a:3f:fe:fa:a4:8a:8b:72:bd:1a:
d9:4b:2d:92:ec:43:6f:94:4b:89:bc:2e:0f:62:ee:78:e0:1d:
ba:62:5b:74:98:12:5f:a7:41:bc:aa:14:e2:a7:d1:ed:14:fa:
6a:ae:ee:57:08:b2:6c:b7:a8:2e:20:2e:fa:2e:25:b9:47:8c:
98:76:97:01:66:60:79:99:a9:1b:92:9d:67:15:21:95:77:12:
16:da:66:0b:ac:d1:b5:fd:51:2f:4d:e1:89:7d:49:f3:67:02:
4d:ba:91:21:09:d2:c5:cb:1e:40:34:d6:40:e5:8d:0d:1a:de:
8c:45:01:a2:10:99:26:6f:85:51:39:5e:dd:56:a1:a4:87:18:
44:ba:4b:2a:6b:68:89:18:db:b2:58:8f:05:3e:a9:a9:96:f1:
0b:fd:8e:c0:65:19:c1:54:70:d4:19:78:62:20:93:fc:ac:ac:
6e:61:0e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:37 2024 by rpki-client on console.sobornost.net