Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/a5c088-cfdc-4b95-abf4-3911bbc54747/1/h0lAcDUXM7_RyKoJdmVRCTVD0zY.roa
File: h0lAcDUXM7_RyKoJdmVRCTVD0zY.roa (raw, json)
Hash identifier: wjIsgH3cas+75vXYXkp0CeoA0tGkAfW4jPoEv73IlC4=
Subject key identifier: 87:49:40:70:35:17:33:BF:D1:C8:AA:09:76:65:51:09:35:43:D3:36
Certificate issuer: /CN=acef4da56cb940d9f2f7d021af2a61fbd3b14ea8
Certificate serial: 01891C57EA21377EF8055AB683CD42851E75
Authority key identifier: AC:EF:4D:A5:6C:B9:40:D9:F2:F7:D0:21:AF:2A:61:FB:D3:B1:4E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rO9NpWy5QNny99Ahryph-9OxTqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/a5c088-cfdc-4b95-abf4-3911bbc54747/1/h0lAcDUXM7_RyKoJdmVRCTVD0zY.roa
Signing time: Mon 03 Jul 2023 15:21:10 +0000
ROA not before: Mon 03 Jul 2023 15:21:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49844
IP address blocks: 91.206.28.0/24 maxlen: 24
2a12:f840::/29 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:57:ea:21:37:7e:f8:05:5a:b6:83:cd:42:85:1e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acef4da56cb940d9f2f7d021af2a61fbd3b14ea8
Validity
Not Before: Jul 3 15:21:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87494070351733bfd1c8aa09766551093543d336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:63:2c:68:b0:ee:fd:76:37:2e:41:ef:7d:31:
27:7c:e7:a3:df:25:1e:2b:08:c4:70:82:3f:bc:8c:
f1:9d:d3:b8:e4:9f:43:d7:2f:71:2b:2b:d8:a9:12:
19:a0:49:b5:8f:ea:b7:e7:e3:ed:22:49:4c:1b:8f:
a2:a0:91:f4:07:94:95:28:ec:67:e0:1f:9e:cd:0d:
c7:6d:f3:84:ac:ea:de:df:6b:0e:3d:2c:59:8f:e8:
ff:e4:34:c5:3c:26:77:f1:e4:9b:77:f0:2e:7b:09:
5e:a0:74:05:ff:98:84:72:25:a4:bb:86:7a:70:44:
73:c6:d1:c7:e6:32:d7:dc:4d:25:1a:b8:89:ab:39:
63:65:34:aa:e6:b7:2d:da:7f:94:1b:bd:b1:80:2c:
08:7b:8e:98:c1:43:a3:aa:6a:07:46:5e:5a:2d:66:
3c:45:a0:81:d2:1f:da:51:23:43:2e:c8:64:65:0a:
c5:a2:14:23:83:85:83:48:88:cf:4f:8e:38:e4:7c:
7c:9e:6c:b6:c1:9f:a4:24:08:15:b5:60:4c:b4:99:
50:2c:3c:87:e7:d0:73:ae:20:a0:04:42:0f:ea:c0:
dd:b6:f2:af:f9:10:de:d8:1e:ff:8d:30:6a:ae:43:
cb:8b:60:87:03:6b:e9:10:5c:b5:e5:4a:0e:f8:ff:
45:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:49:40:70:35:17:33:BF:D1:C8:AA:09:76:65:51:09:35:43:D3:36
X509v3 Authority Key Identifier:
keyid:AC:EF:4D:A5:6C:B9:40:D9:F2:F7:D0:21:AF:2A:61:FB:D3:B1:4E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rO9NpWy5QNny99Ahryph-9OxTqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a5c088-cfdc-4b95-abf4-3911bbc54747/1/h0lAcDUXM7_RyKoJdmVRCTVD0zY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/a5c088-cfdc-4b95-abf4-3911bbc54747/1/rO9NpWy5QNny99Ahryph-9OxTqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.28.0/24
IPv6:
2a12:f840::/29
Signature Algorithm: sha256WithRSAEncryption
3f:29:44:61:cf:a3:c3:59:b6:b4:25:7e:64:83:32:66:a4:a0:
89:20:d2:83:7b:5f:22:b2:33:58:61:12:75:b6:68:94:b7:06:
ba:46:a2:73:cf:95:d5:12:45:e7:3c:d2:52:95:e6:65:01:ce:
02:df:d1:2a:0f:e5:a3:4d:8d:e7:73:33:38:79:72:2c:f0:ab:
fb:a0:01:88:be:f7:f7:d4:75:8c:58:29:f1:3d:5c:7c:46:76:
28:78:85:c4:6e:e0:09:08:f6:39:ee:ed:fa:b6:b2:22:15:6e:
9c:9a:ae:b4:e6:f2:63:7e:1a:46:02:43:9b:f1:95:a0:02:6c:
e1:6f:cb:44:d0:62:e2:3b:eb:5e:c0:4e:0f:d3:59:1f:de:3c:
ad:0e:ce:aa:eb:26:83:bb:a6:93:07:f6:96:9b:ad:6a:54:96:
53:73:f6:a2:60:7d:97:e9:03:db:64:42:fc:ea:c7:c4:92:77:
66:e5:9b:bd:84:1d:f0:b8:ec:fa:5b:62:a4:76:d7:84:f1:c1:
b2:54:bc:05:de:b6:4d:2a:a6:63:16:93:76:7b:51:a2:e5:4c:
03:24:31:e6:07:87:54:98:50:da:fd:ca:cc:73:d0:2d:0a:e5:
30:2d:b9:16:ef:c6:f1:64:ad:8c:d0:66:77:c1:96:d2:48:13:
84:af:6b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:55 2023 by rpki-client on console.sobornost.net