Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/OZnMKvAPvSNSrauwoT80z4o9MXw.roa
File: OZnMKvAPvSNSrauwoT80z4o9MXw.roa (raw, json)
Hash identifier: YPqRAZN0hVWe8L8NTtlEmciEhjOBX9UqibBLg1nwL/A=
Subject key identifier: 39:99:CC:2A:F0:0F:BD:23:52:AD:AB:B0:A1:3F:34:CF:8A:3D:31:7C
Certificate issuer: /CN=63f14f8e144c6d50c38ab4faff5ac6e547fe1d47
Certificate serial: 01875ABB60C3E8F3774D9FFE020AFDD09C20
Authority key identifier: 63:F1:4F:8E:14:4C:6D:50:C3:8A:B4:FA:FF:5A:C6:E5:47:FE:1D:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_FPjhRMbVDDirT6_1rG5Uf-HUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/OZnMKvAPvSNSrauwoT80z4o9MXw.roa
Signing time: Fri 07 Apr 2023 08:00:42 +0000
ROA not before: Fri 07 Apr 2023 08:00:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43926
IP address blocks: 46.253.37.0/24 maxlen: 24
46.253.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5a:bb:60:c3:e8:f3:77:4d:9f:fe:02:0a:fd:d0:9c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63f14f8e144c6d50c38ab4faff5ac6e547fe1d47
Validity
Not Before: Apr 7 08:00:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3999cc2af00fbd2352adabb0a13f34cf8a3d317c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e9:6a:cd:26:e5:01:50:7b:1d:7c:41:e8:34:
81:73:8a:3a:00:93:9d:d6:a5:79:ef:e3:43:66:f1:
de:5e:40:f8:b5:0f:ed:18:94:fa:66:0c:37:6e:70:
c8:d5:ea:c0:47:c5:28:03:59:8f:a7:16:00:c3:09:
40:d1:7e:23:0a:6a:52:fb:ee:3b:b4:33:de:c3:73:
64:4f:c4:92:56:72:42:a7:aa:2d:3f:23:cf:d6:ad:
d5:6c:32:3f:8d:05:c9:fe:d9:2c:fd:ae:ae:cc:3d:
1b:c2:db:5d:11:6b:72:76:3b:fc:72:94:85:28:81:
48:d9:6d:31:8d:9e:63:d2:24:34:1b:fd:ae:88:d7:
be:6a:ba:c4:ee:0a:ca:88:2a:32:2a:d6:42:c5:18:
8a:cd:8a:0e:23:49:55:00:88:10:40:78:f2:b8:9a:
52:0b:ae:65:ef:73:90:4a:50:58:5a:d6:15:ea:c8:
00:98:96:f5:0d:3d:8e:dc:b5:98:48:34:aa:09:c5:
d6:05:4a:df:24:e8:8d:68:ea:a1:ba:69:1d:60:cd:
82:35:8b:dc:b4:47:99:70:c0:36:4f:2a:f0:20:0a:
cc:c3:5e:9d:ff:7b:17:6b:72:05:8c:de:37:0f:d2:
4f:6d:7f:c5:43:62:6d:f6:71:25:f6:44:90:04:32:
77:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:99:CC:2A:F0:0F:BD:23:52:AD:AB:B0:A1:3F:34:CF:8A:3D:31:7C
X509v3 Authority Key Identifier:
keyid:63:F1:4F:8E:14:4C:6D:50:C3:8A:B4:FA:FF:5A:C6:E5:47:FE:1D:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_FPjhRMbVDDirT6_1rG5Uf-HUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/OZnMKvAPvSNSrauwoT80z4o9MXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7b0aae-9d27-4951-bab7-da394384e925/1/Y_FPjhRMbVDDirT6_1rG5Uf-HUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.32.0/24
46.253.37.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:fb:f4:d6:66:ae:10:26:4f:c6:a8:ba:08:e8:89:79:e4:2c:
f7:14:22:6d:b8:9a:4f:1c:e3:fa:40:7b:be:ca:e9:ca:8e:f2:
51:cc:a8:04:0a:18:85:6d:06:82:fa:f7:52:21:d7:89:f5:db:
58:19:35:7e:3a:11:ea:74:3f:3e:3c:a3:d8:b1:28:33:df:53:
40:3f:20:1e:19:8d:d7:d7:b3:fe:0e:5c:08:fd:cc:b8:34:f2:
8f:dd:52:5d:f5:aa:12:d3:fe:c3:71:3b:22:ef:6a:8c:a3:78:
8a:5a:2d:1e:ed:1d:a4:0d:f2:36:c9:b1:65:31:8d:c3:2c:58:
bf:ff:6e:89:10:f7:01:69:48:3f:d5:ab:83:bf:de:3d:b6:f1:
c4:91:4a:33:39:28:22:34:19:a7:6f:3d:c6:c8:be:68:89:cc:
85:2d:82:67:2a:5d:ca:b6:0c:e1:ee:de:80:aa:5d:9d:fb:ef:
bd:c7:2e:62:f8:27:90:71:f2:d6:6d:a6:95:8a:a4:dd:19:2a:
69:1f:2d:c7:4e:70:3f:fd:4c:dd:db:37:27:81:c2:2c:bb:21:
bb:9e:25:ca:67:17:ee:3b:87:30:fa:38:da:91:83:66:9b:ff:
6a:54:34:d2:05:dc:fb:7b:20:3e:9e:b8:e2:9e:9d:99:68:e0:
77:11:f0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:59 2023 by rpki-client on console.sobornost.net