Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/de7ef6-bdae-4717-b061-6f207951c4b2/1/snhiKtasss6ODJeN6Elqruz92mw.roa
File: snhiKtasss6ODJeN6Elqruz92mw.roa (raw, json)
Hash identifier: l4uYhbSqX3bJ1BYOEpnElC/FHL/NiVtk6ZdMs4MF5UI=
Subject key identifier: B2:78:62:2A:D6:AC:B2:CE:8E:0C:97:8D:E8:49:6A:AE:EC:FD:DA:6C
Certificate issuer: /CN=f90379f3afd94c0f26b67fffa34d6e946c29d624
Certificate serial: 0187984EE9F6D7AA132C97D2B1CDF2904D4F
Authority key identifier: F9:03:79:F3:AF:D9:4C:0F:26:B6:7F:FF:A3:4D:6E:94:6C:29:D6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-QN586_ZTA8mtn__o01ulGwp1iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/de7ef6-bdae-4717-b061-6f207951c4b2/1/snhiKtasss6ODJeN6Elqruz92mw.roa
Signing time: Wed 19 Apr 2023 06:58:41 +0000
ROA not before: Wed 19 Apr 2023 06:58:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206325
IP address blocks: 178.157.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:4e:e9:f6:d7:aa:13:2c:97:d2:b1:cd:f2:90:4d:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f90379f3afd94c0f26b67fffa34d6e946c29d624
Validity
Not Before: Apr 19 06:58:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b278622ad6acb2ce8e0c978de8496aaeecfdda6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1c:d7:e8:01:30:60:5d:f2:a0:ac:fa:c4:0c:
34:e5:dd:64:dd:30:ad:9d:2c:cb:c1:3d:1c:df:3d:
b3:b0:2f:5a:95:e7:c9:2b:38:9d:38:34:2f:74:6f:
02:47:93:8b:bd:c7:26:76:86:f2:1c:c3:97:38:b6:
45:64:46:74:55:05:88:58:9d:60:b3:05:bf:f9:e9:
c4:a8:39:11:20:92:71:1f:12:3d:54:53:d5:67:2f:
96:12:71:96:36:66:54:62:13:04:ba:8f:65:d0:de:
7f:d3:8c:f0:d2:c4:56:d5:e6:36:f7:fe:1c:61:c2:
5b:b1:f0:dd:4b:b2:12:d4:92:aa:f0:13:25:31:c7:
37:54:6f:6f:02:2c:fc:26:27:4c:bd:59:fa:6a:84:
82:21:6b:88:e1:70:f5:5d:a4:f0:de:a7:55:2b:0b:
08:4a:27:eb:a2:5c:3f:a0:b9:01:cf:7c:d0:ea:a9:
5a:af:93:98:98:1a:21:bd:e3:70:e7:9d:1a:de:3d:
35:96:44:40:f2:7d:1d:54:ab:f3:3f:f4:d9:eb:72:
2c:7f:5c:c2:60:88:df:a6:27:f9:e2:14:2e:52:0c:
7b:b5:cc:66:9c:40:90:f0:fb:c7:d8:cb:d5:06:8b:
db:3e:15:a9:77:4a:e2:64:07:d4:4a:73:f7:a4:3f:
af:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:78:62:2A:D6:AC:B2:CE:8E:0C:97:8D:E8:49:6A:AE:EC:FD:DA:6C
X509v3 Authority Key Identifier:
keyid:F9:03:79:F3:AF:D9:4C:0F:26:B6:7F:FF:A3:4D:6E:94:6C:29:D6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-QN586_ZTA8mtn__o01ulGwp1iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/de7ef6-bdae-4717-b061-6f207951c4b2/1/snhiKtasss6ODJeN6Elqruz92mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/de7ef6-bdae-4717-b061-6f207951c4b2/1/1-QN586_ZTA8mtn__o01ulGwp1iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.157.1.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d4:42:0e:7e:4d:31:75:28:d3:b3:12:58:cb:2b:55:e5:08:
3b:6f:40:a9:8a:95:26:31:6e:70:86:5c:33:6a:6e:39:49:5a:
dc:6b:4a:0e:31:52:03:54:a5:5e:e1:39:77:08:79:c2:97:b8:
0f:34:90:1b:44:61:19:ed:e3:8d:70:7d:e5:f3:ff:0f:39:36:
3f:27:ca:ef:d4:5c:0b:c5:43:75:88:33:90:43:55:1f:9d:1b:
67:6b:78:b8:eb:6a:76:35:2d:9b:8d:6e:7f:87:b7:cc:9b:f4:
2f:d0:30:49:da:d2:88:0d:be:10:7c:e0:05:08:42:49:73:b7:
07:d3:e8:d8:33:33:2c:af:54:01:fa:74:72:4f:45:16:f1:6c:
ba:ab:b7:59:75:a2:a3:53:60:f0:2b:20:8c:8d:d5:83:ae:7b:
18:02:a4:93:44:f8:ef:b5:d2:f6:99:50:a3:5b:e6:e4:e0:10:
ab:6c:b5:8e:b6:d1:87:32:3f:f4:48:47:a2:26:4f:0c:67:44:
64:52:a3:67:fa:c7:ae:26:9d:6e:e9:79:a9:88:9a:c2:fb:ac:
52:ab:1e:11:de:4a:4a:df:ec:16:c5:fa:1a:89:7c:cc:fc:ae:
ce:5f:ce:a7:33:c8:9b:c9:20:a7:bc:40:41:fa:43:49:56:f0:
bb:89:9f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:31:03 2024 by rpki-client on console.sobornost.net