Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/nCUqGWFnpqd4YFW--FeWqlzf_dk.roa
File: nCUqGWFnpqd4YFW--FeWqlzf_dk.roa (raw, json)
Hash identifier: rCiS9CQfA2gjglWvRqwFgwovhZ8oVgz+t2oHmEMvVe0=
Subject key identifier: 9C:25:2A:19:61:67:A6:A7:78:60:55:BE:F8:57:96:AA:5C:DF:FD:D9
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 01858095DB41D34B003C714C45F7E8537A00
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/nCUqGWFnpqd4YFW--FeWqlzf_dk.roa
Signing time: Thu 05 Jan 2023 06:19:42 +0000
ROA not before: Thu 05 Jan 2023 06:19:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 95.82.16.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:80:95:db:41:d3:4b:00:3c:71:4c:45:f7:e8:53:7a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Jan 5 06:19:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c252a196167a6a7786055bef85796aa5cdffdd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:e9:43:a4:b5:b4:d9:b9:4f:e1:14:9a:ea:
10:d5:75:49:b3:4c:d2:36:73:1b:90:0d:77:88:8d:
a5:f8:db:6d:21:e1:e3:c1:93:1c:a7:59:e2:47:a8:
20:01:f2:61:f0:dc:f2:04:1d:50:26:29:24:dd:07:
df:f5:c8:7f:96:a4:c2:8b:23:4e:36:c5:89:e8:16:
f2:05:17:04:53:02:16:76:31:cd:9a:94:a0:8d:8a:
43:bb:a8:c3:d9:73:3b:4b:4e:1c:70:7c:d3:44:b5:
26:02:22:3e:0b:0b:55:a8:64:f6:32:6e:98:8a:8b:
bc:5e:f1:ec:0b:6e:1a:06:a4:56:83:fd:86:38:7d:
e3:34:a4:5b:7c:75:f1:e4:d5:d0:6f:94:b9:48:96:
68:05:c3:10:d7:90:4e:22:d4:e4:26:81:99:3c:e8:
43:56:08:9e:b5:a0:ab:df:a1:0a:cf:4a:92:f7:8c:
92:af:99:c2:8a:fe:ab:72:3a:02:b5:ed:bf:03:4c:
da:39:bc:11:15:dc:63:9d:54:e9:f6:4f:40:3a:d0:
c8:fb:9e:71:1a:53:a0:c3:1d:aa:a8:d5:9b:36:f1:
eb:e3:93:7a:21:5f:c7:cd:b8:bb:1e:b9:73:da:2f:
65:48:57:05:3c:25:c4:a8:52:a3:70:5a:1c:33:92:
29:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:25:2A:19:61:67:A6:A7:78:60:55:BE:F8:57:96:AA:5C:DF:FD:D9
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/nCUqGWFnpqd4YFW--FeWqlzf_dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.82.16.0/20
Signature Algorithm: sha256WithRSAEncryption
30:77:2b:e5:1d:7f:79:dd:57:21:6e:02:69:e9:15:97:d6:1a:
d1:a7:53:a7:f7:db:2a:77:9e:ab:a7:f2:35:7f:a0:66:ac:c1:
fb:51:bb:fb:66:3c:26:8c:14:85:30:1a:0e:9f:e0:9b:1e:41:
a4:47:b3:aa:45:14:3b:23:c9:4c:69:fc:27:be:eb:46:82:a9:
22:88:3e:9d:aa:31:0c:64:81:d5:b0:bd:89:10:ac:cb:a2:c6:
94:70:73:13:98:29:fe:1a:d9:55:9e:b3:ea:eb:fd:ad:73:77:
b3:bf:03:98:7d:ed:c2:1e:39:48:f6:5d:50:79:e8:55:8e:7a:
bf:82:1f:ee:f1:72:3b:ff:10:d0:8a:b6:59:73:ae:05:9b:79:
0e:d8:b4:4e:d2:83:b9:12:1f:96:31:8e:09:94:05:d3:af:85:
a2:82:72:09:73:2d:4c:74:12:d7:92:83:e2:5a:3b:4c:72:b8:
55:ef:11:1f:89:be:35:37:aa:8e:9c:30:70:53:fd:d4:15:1c:
50:bc:a3:7d:6c:38:a4:bc:41:b3:4d:23:74:83:de:d3:73:f2:
ed:b7:2f:cc:b9:c1:69:49:bb:d7:26:17:6a:b7:ca:5e:3b:05:
7e:45:f4:b7:46:22:66:04:02:87:40:11:46:0b:11:d1:a3:3c:
08:28:35:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:35:46 2024 by rpki-client on console.sobornost.net