Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/dY_QFSe02tjjxusMCLx4UutTYUA.roa
File: dY_QFSe02tjjxusMCLx4UutTYUA.roa (raw, json)
Hash identifier: OVAIwPysfcdH6XdWVNibEkfssncpbJZL/7x4FhIm0Nk=
Subject key identifier: 75:8F:D0:15:27:B4:DA:D8:E3:C6:EB:0C:08:BC:78:52:EB:53:61:40
Certificate issuer: /CN=761c05753b19bcdb532fdc7f6f47e97e935ba0a2
Certificate serial: 018A5AB7B98467E0CCB9FB2207CD2D1E1B8A
Authority key identifier: 76:1C:05:75:3B:19:BC:DB:53:2F:DC:7F:6F:47:E9:7E:93:5B:A0:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhwFdTsZvNtTL9x_b0fpfpNboKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/dY_QFSe02tjjxusMCLx4UutTYUA.roa
Signing time: Sun 03 Sep 2023 11:05:04 +0000
ROA not before: Sun 03 Sep 2023 11:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 147.236.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5a:b7:b9:84:67:e0:cc:b9:fb:22:07:cd:2d:1e:1b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761c05753b19bcdb532fdc7f6f47e97e935ba0a2
Validity
Not Before: Sep 3 11:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=758fd01527b4dad8e3c6eb0c08bc7852eb536140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:59:c2:64:51:4f:82:be:48:b0:aa:1c:49:04:
8b:b8:cf:1e:3c:3e:e7:dd:38:b9:df:4e:a0:90:b3:
32:00:8f:b7:83:4d:06:7e:8c:ea:fc:c0:f9:30:78:
ab:db:95:e6:9b:e3:fc:be:bd:a5:90:af:4f:77:91:
06:84:e0:a1:fe:de:c2:27:5b:ae:bb:e6:0e:68:5a:
c3:52:eb:8f:b8:fd:66:74:5c:b8:b8:4a:44:e6:c1:
d2:45:ec:1f:96:c0:80:59:6d:af:4c:9b:4f:3e:57:
dd:79:a4:35:f1:1e:13:36:f7:34:3f:4b:e7:1a:32:
c6:d3:5c:de:e0:8f:77:e1:aa:ae:10:5d:45:6f:0d:
7e:ca:23:71:b2:4a:9e:2b:7d:d5:41:ea:45:b7:2d:
2a:0a:2a:98:1c:10:23:cd:dd:35:30:45:e4:c8:b7:
35:99:17:e5:f6:43:e5:4f:3e:14:24:2e:cf:1e:80:
f9:1d:4d:8d:bc:5d:be:e6:c1:6d:3c:28:22:3d:2b:
56:15:7f:b4:5c:fb:49:0e:08:76:3c:33:24:b9:25:
6f:27:31:18:c6:ba:87:15:0d:53:16:23:b2:84:03:
5f:e6:c7:14:9a:00:f2:cd:0a:07:45:1d:c3:5a:8e:
4e:2f:8e:36:86:81:ea:1b:2e:88:c6:60:fc:bf:04:
f2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8F:D0:15:27:B4:DA:D8:E3:C6:EB:0C:08:BC:78:52:EB:53:61:40
X509v3 Authority Key Identifier:
keyid:76:1C:05:75:3B:19:BC:DB:53:2F:DC:7F:6F:47:E9:7E:93:5B:A0:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhwFdTsZvNtTL9x_b0fpfpNboKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/dY_QFSe02tjjxusMCLx4UutTYUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5befa7-87fd-44a2-b1f4-3e8f575eddff/1/dhwFdTsZvNtTL9x_b0fpfpNboKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.236.195.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:59:c0:32:47:c4:f2:a7:8a:ad:7a:f8:69:0a:cb:10:91:ec:
0a:99:50:63:af:ae:92:2e:b0:f8:11:34:6f:33:5b:53:29:91:
21:02:ae:13:f8:d0:c8:fd:40:48:eb:3f:0c:47:aa:3b:96:90:
d7:9a:de:1e:4e:59:ef:1c:9e:14:d7:ae:12:fb:79:26:56:78:
71:16:ba:da:3f:3a:ac:bc:ce:8c:0e:7c:3d:64:aa:b3:29:98:
74:cb:62:fe:9d:40:54:00:6d:6f:aa:cd:9c:67:38:15:98:2d:
14:79:cb:c8:53:ec:64:77:e4:69:33:7d:2b:86:7d:46:d7:4c:
94:7d:9d:0a:cd:dc:59:43:e8:37:43:d7:73:6f:ae:2a:a6:b3:
ad:d5:c5:bc:ae:0f:11:47:cd:9f:2d:5b:b4:e4:ef:a1:65:81:
bc:73:75:e1:6f:a4:73:3c:d1:a9:9c:f0:68:f0:d5:ea:27:7c:
e7:aa:8d:07:ed:3d:79:e5:70:4c:9e:91:cc:50:e1:fd:f5:9a:
8b:a0:a6:e8:6c:05:ec:4a:8b:39:2d:68:ff:c1:e0:bb:c8:b9:
c2:2f:a4:fe:79:3b:cd:ac:46:aa:a9:3f:dc:2f:38:05:0b:b2:
80:ad:0b:79:69:78:6c:53:cc:5a:20:6b:a0:06:b1:2d:f5:a4:
99:94:14:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:09 2023 by rpki-client on console.sobornost.net