Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/uaGvoeAzBIPS_wGjksV5v3e3FbY.roa
File: uaGvoeAzBIPS_wGjksV5v3e3FbY.roa (raw, json)
Hash identifier: pTlx30V+aYL3O0bjohZs7TR1S6Sk+DofjHNjdSjAY58=
Subject key identifier: B9:A1:AF:A1:E0:33:04:83:D2:FF:01:A3:92:C5:79:BF:77:B7:15:B6
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 01856F4B73DC2086D564434761146207AC30
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/uaGvoeAzBIPS_wGjksV5v3e3FbY.roa
Signing time: Sun 01 Jan 2023 21:44:53 +0000
ROA not before: Sun 01 Jan 2023 21:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197046
IP address blocks: 178.248.56.0/21 maxlen: 21
185.22.236.0/22 maxlen: 22
2a03:ab00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:73:dc:20:86:d5:64:43:47:61:14:62:07:ac:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Jan 1 21:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9a1afa1e0330483d2ff01a392c579bf77b715b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:11:76:0d:97:8d:93:09:f3:d0:96:98:be:10:
e2:40:15:7e:88:53:72:99:49:c6:1c:64:3c:76:67:
3d:35:6e:5c:05:14:3b:67:4e:da:a7:ce:ca:6d:6e:
e2:fd:1d:52:78:4d:00:ab:ee:a3:7d:c1:74:cd:fa:
45:29:52:6e:06:da:8a:1f:2a:6a:5f:cc:bf:aa:46:
a4:89:90:a6:50:0f:e0:a9:21:67:d0:8a:0d:f1:2b:
f4:db:2c:58:37:ec:34:65:33:5d:72:6f:07:38:65:
92:e9:19:35:48:2e:d7:ec:dd:90:da:8d:0d:ef:87:
7b:b3:79:6c:d6:07:11:17:31:bd:fd:5d:ef:39:c7:
99:d2:42:f9:47:2d:5f:38:4b:06:79:a8:9d:3b:e5:
07:72:7f:4d:b3:2d:37:84:33:00:c0:87:d1:ca:09:
be:f3:77:7d:27:67:58:55:a7:40:43:0b:a3:83:f8:
fd:3b:fb:f6:7f:e1:81:b7:b6:0d:80:2b:81:34:17:
97:9f:cc:b0:ee:52:83:37:01:01:8d:fd:aa:cc:81:
77:32:42:ff:af:a9:cb:72:59:2d:a3:21:98:51:6b:
e8:71:f8:ee:88:f3:f6:6f:6f:0d:69:79:8c:15:58:
a4:f7:b4:7a:f1:00:8f:ee:45:50:33:16:73:95:8e:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A1:AF:A1:E0:33:04:83:D2:FF:01:A3:92:C5:79:BF:77:B7:15:B6
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/uaGvoeAzBIPS_wGjksV5v3e3FbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.56.0/21
185.22.236.0/22
IPv6:
2a03:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
8c:56:8f:ab:5b:82:b9:d1:66:48:96:a2:ae:9b:91:9a:88:44:
17:82:6a:ab:03:cd:65:bd:a9:b3:fd:a1:8f:2e:ad:98:d4:4f:
36:ac:22:4a:23:b3:a5:dd:fb:fc:09:dc:64:35:6d:8d:32:b0:
78:c5:0c:91:f4:6e:00:bb:5c:d8:53:9a:18:35:f7:20:d8:fc:
72:b4:d0:31:1c:d0:31:9f:79:86:df:bc:85:77:f0:5b:7c:df:
b0:95:36:7e:6d:de:a2:f5:45:3f:38:8b:d4:71:05:4b:87:4e:
2d:53:56:3b:1e:77:53:61:26:56:8c:12:b0:00:4a:a8:66:89:
4c:17:2a:ed:30:65:23:38:ef:ac:da:9d:17:c1:34:df:05:2f:
d6:86:f8:72:fd:02:55:26:5c:46:b3:c4:5c:26:a4:d5:b1:49:
a9:33:2f:1b:ea:66:b5:ca:26:f3:9d:ea:1f:ee:3d:52:7b:1e:
bb:38:9b:c3:67:ae:77:a3:8b:ee:1f:66:8c:ac:00:fe:3f:03:
ac:01:3c:f9:05:b5:25:6c:8b:6a:68:12:2e:f4:b8:77:af:e9:
b9:ba:58:7c:63:97:62:d9:a9:8b:0e:54:ec:79:b8:6b:37:7a:
fc:22:77:3f:37:e0:b7:1a:a0:e5:33:12:63:fe:91:dd:f9:d3:
2b:fb:9d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:36 2024 by rpki-client on console.sobornost.net