Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/ChdAqqA9GWt7ssUjl05ZVwYSWdo.roa
File: ChdAqqA9GWt7ssUjl05ZVwYSWdo.roa (raw, json)
Hash identifier: Mn77D532aFNOuzSfT0XUxCUXvBHAIKamKWXo+mStZeA=
Subject key identifier: 0A:17:40:AA:A0:3D:19:6B:7B:B2:C5:23:97:4E:59:57:06:12:59:DA
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 01856B811652D1B3F8435B4BAF7A6EC62B0E
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/ChdAqqA9GWt7ssUjl05ZVwYSWdo.roa
Signing time: Sun 01 Jan 2023 04:04:59 +0000
ROA not before: Sun 01 Jan 2023 04:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35489
IP address blocks: 213.145.103.0/24 maxlen: 24
213.145.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:16:52:d1:b3:f8:43:5b:4b:af:7a:6e:c6:2b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 04:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a1740aaa03d196b7bb2c523974e5957061259da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:97:3f:f4:16:64:24:d4:42:e8:34:db:f5:d2:
ae:1d:06:66:d8:d0:cd:9f:81:1d:2d:0d:eb:cd:bb:
03:77:ea:b6:e8:14:20:a2:48:aa:9f:3b:66:41:9e:
21:b4:49:f0:0a:27:d7:61:51:32:89:e3:33:31:bf:
33:2c:88:eb:e6:7e:85:ff:46:40:49:76:52:5d:92:
1a:7d:6e:27:5e:ed:2c:0c:d6:eb:14:07:bd:5a:95:
2a:0b:d6:d7:5a:eb:bd:17:aa:47:27:bf:ad:d3:32:
52:87:48:58:1b:e7:31:91:9b:6b:eb:c0:26:81:22:
59:98:fb:a9:19:40:52:2d:29:ac:cf:af:32:86:c7:
3a:37:21:da:45:19:6b:c2:e5:15:fa:c8:db:10:af:
04:89:41:b9:b8:82:d2:3e:09:98:09:32:70:99:25:
50:5e:1d:57:b8:ee:e6:c1:78:96:98:cb:33:36:46:
d6:94:a1:8a:0c:35:13:20:29:de:90:40:2e:9c:f7:
51:e3:0c:fc:05:9b:ab:8b:cf:58:7a:72:ce:20:0d:
e9:97:ba:1c:79:14:24:ae:99:6c:f4:8a:73:46:44:
0c:6e:0b:b7:00:73:50:9c:c9:05:b7:8b:06:16:7c:
cb:cb:06:93:f0:12:dc:c8:c6:30:68:bc:2a:bb:c4:
76:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:17:40:AA:A0:3D:19:6B:7B:B2:C5:23:97:4E:59:57:06:12:59:DA
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/ChdAqqA9GWt7ssUjl05ZVwYSWdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.103.0/24
213.145.108.0/24
Signature Algorithm: sha256WithRSAEncryption
94:9c:88:1e:8a:21:6c:aa:99:11:e6:e9:3d:39:04:5e:e9:ed:
b0:6d:9f:46:a7:25:4c:58:3d:bb:46:37:c7:3b:31:8f:96:22:
d0:63:92:f8:d9:33:34:1a:e1:14:80:c8:d0:53:3c:0a:0c:d4:
f6:a3:68:a6:45:31:c5:d8:d5:91:1e:1b:9a:e1:56:65:be:19:
50:25:fc:a0:4e:b3:a1:e6:0d:c8:8c:e8:23:40:b9:25:7c:57:
41:de:0a:b4:a3:68:c0:6a:e9:1c:9a:4d:42:a9:5f:08:8c:3b:
99:12:18:bd:a6:91:79:f0:b8:48:3f:f8:bb:2c:9b:12:2a:1a:
77:b6:da:39:1d:13:8a:50:c7:c7:98:bd:61:85:e3:9f:f1:56:
35:31:50:b7:7a:02:06:fa:5a:dd:b9:1e:bb:47:27:ff:76:59:
ab:bd:33:60:05:a1:29:e4:f7:c1:43:d5:f8:80:f1:86:70:a6:
22:a3:97:55:5d:e0:10:94:1f:4b:db:92:03:ee:ce:aa:46:c0:
a2:bd:31:61:34:c4:88:12:f6:d2:4d:08:6f:b7:88:35:9f:28:
eb:aa:f8:65:12:e6:f8:27:f9:cb:a9:75:6b:83:cc:1b:30:18:
50:46:45:9c:06:28:2d:0c:61:95:5c:f7:5f:e7:3d:83:4d:7e:
75:f0:64:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:23 2024 by rpki-client on console.sobornost.net