Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/TP2w53NwB6Mn_AHfz3pUbxAJ2s0.roa
File: TP2w53NwB6Mn_AHfz3pUbxAJ2s0.roa (raw, json)
Hash identifier: fxr5O/wtx0NtBcuEtbZ3aVvxcDRJuwybpOg4QL6br2U=
Subject key identifier: 4C:FD:B0:E7:73:70:07:A3:27:FC:01:DF:CF:7A:54:6F:10:09:DA:CD
Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Certificate serial: 01856E145746D5B8EE1D83AC5EF80FE778E3
Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/TP2w53NwB6Mn_AHfz3pUbxAJ2s0.roa
Signing time: Sun 01 Jan 2023 16:05:04 +0000
ROA not before: Sun 01 Jan 2023 16:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41104
IP address blocks: 195.95.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:57:46:d5:b8:ee:1d:83:ac:5e:f8:0f:e7:78:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d
Validity
Not Before: Jan 1 16:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cfdb0e7737007a327fc01dfcf7a546f1009dacd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:eb:ec:3e:ea:59:4f:16:60:8d:00:25:5d:47:
01:13:b7:17:72:40:04:5a:9a:de:a8:49:5f:9b:f8:
4f:ef:b7:d2:f6:1e:b6:29:f2:f2:23:76:a2:f4:7f:
68:b5:2f:6a:66:d8:df:f6:af:f3:1e:8e:da:51:9b:
53:b2:d6:c2:0b:e5:08:e9:95:4f:95:f3:7b:3c:d8:
1f:bd:35:d1:f5:03:80:f0:32:95:c3:65:f8:a9:0d:
9c:f4:ea:93:f4:68:d5:fb:80:b2:61:e2:02:b9:a8:
f2:ec:96:42:8f:e8:f1:cc:d3:74:4b:e9:7f:f0:20:
07:5b:28:05:37:76:8f:72:40:4f:4a:a6:c4:bb:26:
43:ad:2d:1b:9f:01:4e:d2:4b:f9:a3:36:91:7b:25:
07:0b:5c:42:70:17:f6:20:3c:39:59:48:52:e3:60:
8a:3a:fc:79:90:7b:36:5a:67:02:e4:47:65:0b:b5:
4d:fa:df:8b:be:8d:7c:8f:09:77:ff:c6:48:4d:76:
8e:2f:2b:95:2d:c9:26:e4:14:54:8f:53:0e:7d:ea:
06:7f:74:31:ee:aa:33:c6:52:b5:c5:ca:3d:7c:cb:
ae:cb:52:8f:ac:22:30:48:a5:97:c3:d9:34:0a:86:
c6:6c:4b:b0:97:a6:f6:16:1b:76:7e:e8:f9:01:07:
6f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:FD:B0:E7:73:70:07:A3:27:FC:01:DF:CF:7A:54:6F:10:09:DA:CD
X509v3 Authority Key Identifier:
keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/TP2w53NwB6Mn_AHfz3pUbxAJ2s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.173.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d4:3d:26:f9:ee:b1:5f:d3:4c:c2:7e:3c:38:1c:7c:37:dc:
d1:7b:4b:56:3e:8f:00:8a:9b:05:e2:5c:59:b0:ae:45:9f:70:
f7:32:85:9c:95:16:ae:2c:dd:23:1a:4d:e0:d0:dc:ed:5c:33:
30:7c:74:6a:fa:d4:81:b0:ea:56:46:33:69:a7:fc:b9:8c:61:
29:ac:ad:f8:61:6f:dd:88:d4:50:43:01:37:d3:5c:d0:4b:8a:
1d:96:b9:04:49:7a:37:7c:65:20:cd:1f:fd:9e:8d:ca:83:c7:
e0:f6:2e:fc:fa:5e:72:55:38:6c:53:f3:84:85:a4:36:8d:71:
dd:90:0a:30:60:18:13:41:3b:05:09:8e:07:6e:38:56:44:0a:
b1:b7:7b:e6:0a:38:b5:a8:7e:a6:ae:9a:d0:90:80:43:d5:f7:
c5:f0:d6:5a:50:6d:d6:93:03:b8:aa:c1:4f:64:55:13:01:f3:
f8:09:ea:f4:2e:86:dc:ed:67:c6:86:de:bc:cd:ec:03:9b:13:
a4:24:a5:44:dc:6b:30:55:c6:38:58:5b:08:e7:2f:de:84:61:
b3:c0:70:36:79:75:3e:c0:e1:e2:2a:8d:84:d9:c6:b0:f2:43:
b6:57:0d:e2:77:f5:bc:89:73:2c:cd:e7:c0:2d:09:2d:9e:19:
5b:9d:a0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:41 2024 by rpki-client on console.sobornost.net