Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/yznOrurWIgy5lWWnWe6b7Cd0dbE.roa
File: yznOrurWIgy5lWWnWe6b7Cd0dbE.roa (raw, json)
Hash identifier: VTaiQrhU8B3qY8+mbVmgjMedAOSwzo3kKh4tA1qErMA=
Subject key identifier: CB:39:CE:AE:EA:D6:22:0C:B9:95:65:A7:59:EE:9B:EC:27:74:75:B1
Certificate issuer: /CN=0d291922587f750f78a19795cbd89bc729af17d5
Certificate serial: 0185724C7654FFD7D0B1DBC14695CB4188EE
Authority key identifier: 0D:29:19:22:58:7F:75:0F:78:A1:97:95:CB:D8:9B:C7:29:AF:17:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSkZIlh_dQ94oZeVy9ibxymvF9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/yznOrurWIgy5lWWnWe6b7Cd0dbE.roa
Signing time: Mon 02 Jan 2023 11:44:51 +0000
ROA not before: Mon 02 Jan 2023 11:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39305
IP address blocks: 91.132.44.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:4c:76:54:ff:d7:d0:b1:db:c1:46:95:cb:41:88:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d291922587f750f78a19795cbd89bc729af17d5
Validity
Not Before: Jan 2 11:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb39ceaeead6220cb99565a759ee9bec277475b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:e4:7b:cc:35:fa:64:fe:82:0a:99:14:a9:
a3:62:71:11:a8:02:2c:c5:f1:0a:3e:cd:07:97:fb:
c4:72:60:42:64:93:88:d5:05:96:b5:a2:1c:41:48:
48:27:d3:4c:ad:fb:15:6a:ed:28:4e:ba:46:84:46:
1c:73:ba:70:39:ad:68:68:a2:3b:26:e0:db:b3:cc:
d6:f7:0a:c2:c5:86:41:45:b4:fb:64:ff:98:81:5c:
2e:15:ed:f6:27:89:45:8b:11:ab:43:6e:b1:19:e8:
a6:44:4c:e9:d8:e6:ef:a8:3b:aa:93:6a:e0:f6:33:
02:26:30:85:5f:00:fa:db:cc:4c:11:e8:e3:74:06:
28:35:81:1c:ff:f7:c7:1c:b1:cc:1b:93:d1:e9:e0:
ad:9e:ef:bf:6f:db:e6:02:69:92:26:e6:33:f5:49:
f0:a9:fa:d2:3e:62:ed:5f:79:ff:e1:47:e6:70:cb:
d5:2d:12:5c:b3:c8:a7:20:7c:3a:21:9f:90:4f:6e:
68:2d:73:00:e9:ca:ef:5d:5a:d6:ae:5f:d1:02:07:
3e:06:9b:cf:d2:ed:22:c4:ba:fe:e6:1c:ea:9b:c4:
38:8f:85:f7:d8:b7:0c:df:a8:7f:d8:6e:01:0c:95:
f6:19:6f:ce:69:e9:41:47:9d:c2:b9:29:bf:84:9d:
b8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:39:CE:AE:EA:D6:22:0C:B9:95:65:A7:59:EE:9B:EC:27:74:75:B1
X509v3 Authority Key Identifier:
keyid:0D:29:19:22:58:7F:75:0F:78:A1:97:95:CB:D8:9B:C7:29:AF:17:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSkZIlh_dQ94oZeVy9ibxymvF9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/yznOrurWIgy5lWWnWe6b7Cd0dbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/DSkZIlh_dQ94oZeVy9ibxymvF9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.44.0/22
Signature Algorithm: sha256WithRSAEncryption
33:63:cf:0e:36:ed:ad:c7:7b:63:8f:fc:b8:e6:b4:63:ab:25:
f5:cf:de:c8:8f:8c:1f:1b:33:a6:7a:51:32:43:4b:63:87:a9:
1b:55:26:7c:a2:f5:8b:34:4a:ac:0f:dc:d8:f6:9e:6b:d7:c4:
8f:98:38:43:75:52:c5:e4:b7:48:d5:fc:f6:f4:b2:65:4d:9a:
47:07:9d:d7:63:d5:58:77:3e:26:a0:f2:b7:ed:d9:be:f0:9d:
84:aa:bb:e2:68:7f:db:36:c2:78:d4:55:67:1e:58:7e:75:45:
b5:8e:10:d8:5e:56:a4:f4:fb:71:f3:16:52:c1:fb:80:41:80:
6f:48:d8:7f:0a:58:2f:7b:29:d3:dd:0a:98:90:c9:f1:2a:6c:
93:f8:c1:90:b2:17:49:57:b6:eb:46:9d:b7:7b:09:d7:7a:bc:
09:29:d0:8a:76:83:f4:52:26:ea:59:06:6a:e1:94:e0:7e:64:
62:17:1f:e3:58:cd:41:88:1a:d6:44:28:90:aa:81:51:92:71:
e2:16:df:01:0a:67:c8:db:c9:a2:ec:ad:be:43:3b:1d:c3:33:
8a:df:77:31:00:e5:bc:f6:6c:f0:ba:cb:82:0a:ef:c7:16:0f:
83:9e:5d:a7:32:7d:f4:39:e5:03:d7:d3:0c:73:cf:53:e9:7c:
0c:66:5a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:47 2024 by rpki-client on console.sobornost.net