Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/glmANUQ3UwLNy-ie0K-wg4PohdM.roa
File: glmANUQ3UwLNy-ie0K-wg4PohdM.roa (raw, json)
Hash identifier: sb/u1IKbUxG3sQPdmgSmPOTkTQu0qEWpGoltaGFL/Wg=
Subject key identifier: 82:59:80:35:44:37:53:02:CD:CB:E8:9E:D0:AF:B0:83:83:E8:85:D3
Certificate issuer: /CN=4628bbcd6eecb518c8be8944652c03eedec0d1fe
Certificate serial: 01857255A380CE285AAC52F23145A8A37406
Authority key identifier: 46:28:BB:CD:6E:EC:B5:18:C8:BE:89:44:65:2C:03:EE:DE:C0:D1:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rii7zW7stRjIvolEZSwD7t7A0f4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/glmANUQ3UwLNy-ie0K-wg4PohdM.roa
Signing time: Mon 02 Jan 2023 11:54:53 +0000
ROA not before: Mon 02 Jan 2023 11:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35710
IP address blocks: 185.168.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:a3:80:ce:28:5a:ac:52:f2:31:45:a8:a3:74:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4628bbcd6eecb518c8be8944652c03eedec0d1fe
Validity
Not Before: Jan 2 11:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8259803544375302cdcbe89ed0afb08383e885d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fa:e8:4d:27:99:0d:0c:58:af:48:19:8f:3f:
0c:63:ca:8d:a5:dd:7f:c5:e2:4a:bb:7b:54:11:44:
4c:a6:ef:f0:c8:e1:f9:e2:24:63:f0:3d:78:f3:ab:
39:8d:e5:db:4a:51:75:35:d3:39:34:f5:0d:4c:74:
54:f5:59:6a:c7:32:03:d8:bd:de:66:7c:97:81:13:
58:8c:33:07:36:c8:27:a3:58:7d:fc:d3:bc:13:8c:
a7:29:04:18:74:30:2c:9d:8f:11:4d:f6:2f:7f:4d:
35:45:5d:2e:7a:59:b2:33:93:22:21:f5:24:dc:49:
f4:8d:a9:5d:a7:56:d4:2b:5a:e3:db:61:cf:85:67:
0b:a9:e7:3f:2a:75:41:ff:65:0f:a7:1a:42:6c:84:
82:b8:15:38:a7:a9:37:0b:00:a6:a1:65:c7:2c:9c:
3d:4f:c6:88:ba:95:ae:e9:5e:a8:e9:02:a2:61:b5:
e6:99:2a:bf:df:9f:3e:05:78:51:77:a4:e6:50:9c:
7d:9f:31:e0:95:b3:64:0d:cf:f1:de:4a:08:22:02:
a7:c1:9a:e8:41:8b:19:55:83:dc:cd:16:bf:e4:65:
c0:4f:e1:92:9a:80:ee:6c:25:12:22:8b:a7:30:29:
96:82:43:98:e9:ea:fb:d2:95:9f:f6:eb:24:f5:d1:
e2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:59:80:35:44:37:53:02:CD:CB:E8:9E:D0:AF:B0:83:83:E8:85:D3
X509v3 Authority Key Identifier:
keyid:46:28:BB:CD:6E:EC:B5:18:C8:BE:89:44:65:2C:03:EE:DE:C0:D1:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rii7zW7stRjIvolEZSwD7t7A0f4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/glmANUQ3UwLNy-ie0K-wg4PohdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2d1c55-425b-4cb8-8172-b43541272abe/1/Rii7zW7stRjIvolEZSwD7t7A0f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.151.0/24
Signature Algorithm: sha256WithRSAEncryption
71:ad:88:57:e8:77:35:0c:54:24:ac:2a:a9:24:f1:1c:de:c2:
67:ee:ec:67:e4:b5:21:d4:aa:f7:5c:03:1c:ac:ab:4d:49:96:
2d:5f:79:37:2c:a3:48:78:4b:90:65:e6:7e:57:39:1b:3c:d6:
fc:96:75:7e:7b:5a:d7:ea:41:84:3c:7b:f3:4c:60:98:43:6e:
c5:0d:9d:73:3f:4a:0c:80:1d:93:b0:24:ae:28:50:81:0b:9b:
bb:67:5b:db:22:bc:9c:65:92:54:d8:10:c1:42:0b:d3:43:9b:
a5:56:4f:c4:25:79:b4:11:12:6c:7e:e8:4d:58:d5:5a:71:54:
f0:ef:a4:bd:25:55:f8:45:82:6e:79:a6:53:54:6e:07:9b:5c:
4b:8d:3a:db:d2:b8:c3:dc:41:4e:90:96:e3:4e:ef:f2:03:39:
c1:b3:4b:15:6e:a7:18:53:9c:57:31:e2:b4:e9:01:91:86:54:
1c:ce:c0:5a:e7:34:cf:3f:f2:c6:cf:2a:32:1a:94:d0:18:d2:
1a:44:5d:f0:8d:64:b3:58:53:8a:4b:9d:46:d2:93:dc:26:0e:
0f:3d:db:a9:ab:9d:cc:f9:51:43:06:92:db:13:6b:eb:b2:26:
d6:ef:50:36:5c:76:4c:88:61:b6:b3:3e:11:68:1e:a7:da:a9:
5f:65:2d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:26 2024 by rpki-client on console.sobornost.net