Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59afab-e0a8-42d0-873b-6005c0111f1e/1/8WXaidk2Vq4HXxRjuHOlB__6JDg.roa
File: 8WXaidk2Vq4HXxRjuHOlB__6JDg.roa (raw, json)
Hash identifier: C1RD05S2EqMQKGb8xHcMbMclqiKT7ycr/QvJEZcgsfw=
Subject key identifier: F1:65:DA:89:D9:36:56:AE:07:5F:14:63:B8:73:A5:07:FF:FA:24:38
Certificate issuer: /CN=47a82e55779a1ea4ef9967f821d5cc05b7bd99e9
Certificate serial: 01856FCB80B186AFCF085028B7452ECC6B0F
Authority key identifier: 47:A8:2E:55:77:9A:1E:A4:EF:99:67:F8:21:D5:CC:05:B7:BD:99:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R6guVXeaHqTvmWf4IdXMBbe9mek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59afab-e0a8-42d0-873b-6005c0111f1e/1/8WXaidk2Vq4HXxRjuHOlB__6JDg.roa
Signing time: Mon 02 Jan 2023 00:04:45 +0000
ROA not before: Mon 02 Jan 2023 00:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 559
IP address blocks: 193.5.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:80:b1:86:af:cf:08:50:28:b7:45:2e:cc:6b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47a82e55779a1ea4ef9967f821d5cc05b7bd99e9
Validity
Not Before: Jan 2 00:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f165da89d93656ae075f1463b873a507fffa2438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:28:ac:3f:a3:6a:01:f5:7f:d2:59:34:fb:77:
42:4c:cc:bd:8a:b6:3a:81:d8:38:1d:ff:7b:1e:e6:
58:40:b8:8d:05:5d:a9:17:c8:f8:a4:a9:e5:c3:85:
1d:f9:30:13:b8:4c:0e:38:72:67:77:27:05:34:39:
8f:ae:75:a8:f0:5f:4f:48:65:c3:a2:81:1b:c0:8e:
7d:48:33:42:7d:11:80:b2:ce:c6:5e:c1:3e:35:48:
5f:9b:6d:25:da:bf:b2:48:f9:91:65:50:cb:bf:48:
0a:49:61:c0:a8:a3:c1:00:44:49:72:02:b7:f5:36:
10:55:cb:16:67:ee:1b:c5:68:4f:6a:e2:87:67:f0:
5a:11:e4:bc:f6:bd:35:48:d6:d0:46:ba:71:37:10:
85:22:74:68:ef:46:90:df:53:81:12:55:fe:72:e8:
e7:90:6d:f9:dc:1d:34:f1:35:16:ed:47:e6:71:2f:
e8:5c:0a:16:a4:1c:c6:58:37:69:73:25:85:4e:ff:
67:c8:5b:f2:cd:1c:63:d0:00:fd:c5:eb:12:36:e1:
19:bb:ac:b6:2b:a3:de:f8:1c:38:35:e2:a6:40:1a:
10:79:55:c7:77:d9:87:ea:7e:7c:10:b8:63:50:80:
5c:fd:6a:bd:e5:4f:1a:0e:b2:ef:a2:94:24:5e:b3:
0b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:65:DA:89:D9:36:56:AE:07:5F:14:63:B8:73:A5:07:FF:FA:24:38
X509v3 Authority Key Identifier:
keyid:47:A8:2E:55:77:9A:1E:A4:EF:99:67:F8:21:D5:CC:05:B7:BD:99:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R6guVXeaHqTvmWf4IdXMBbe9mek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59afab-e0a8-42d0-873b-6005c0111f1e/1/8WXaidk2Vq4HXxRjuHOlB__6JDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59afab-e0a8-42d0-873b-6005c0111f1e/1/R6guVXeaHqTvmWf4IdXMBbe9mek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.60.0/24
Signature Algorithm: sha256WithRSAEncryption
13:4e:5e:47:e0:11:26:55:0f:cd:61:fc:9d:97:e9:9a:ba:40:
a7:4c:02:6b:fe:8d:b8:06:60:69:2b:9a:78:bf:4c:29:dd:ea:
76:fd:4a:67:b8:c5:f0:c8:f1:67:7e:64:13:92:3b:aa:42:5e:
bf:a1:11:75:f0:43:79:54:d4:ff:78:94:07:05:3e:8f:2e:68:
2a:8d:58:28:43:1a:38:18:5f:10:ee:be:ef:d8:b3:36:7d:51:
bd:d1:8c:2d:2f:52:15:f0:11:d1:38:f9:88:52:60:db:9e:8c:
b9:f2:3c:2c:6a:7d:77:f8:ea:f9:96:02:96:64:2b:84:79:f0:
86:cd:df:24:54:c5:57:09:7f:48:1a:ca:f2:27:29:86:e9:d3:
5b:9b:bd:7d:35:57:2b:a8:79:75:44:d4:eb:c6:89:1c:76:5a:
6b:d6:07:03:c5:d9:06:da:6b:a6:2b:d0:a2:3b:cd:38:b5:34:
b7:94:73:5c:70:b1:55:da:dc:2a:40:bc:f7:c8:98:08:76:42:
76:3a:57:79:3d:84:66:9f:0a:4f:ed:b3:f9:b4:ff:b5:01:96:
9e:a5:5b:37:b2:8a:16:30:ba:f8:06:0e:05:04:6d:83:e5:b5:
a9:47:c8:68:e5:4b:35:ef:d4:53:1c:b6:96:3e:40:4e:8e:54:
b2:b8:95:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:07 2024 by rpki-client on console.sobornost.net