Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/xTkn_VYZtm9bvb25VfGwmoPcIUY.roa
File: xTkn_VYZtm9bvb25VfGwmoPcIUY.roa (raw, json)
Hash identifier: yfteRmMemkTU2ruw5qVjnRAG2sjfzbbX/hFGaHe45Pg=
Subject key identifier: C5:39:27:FD:56:19:B6:6F:5B:BD:BD:B9:55:F1:B0:9A:83:DC:21:46
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 01856B8119321C68E53404E1389ADC1FC54B
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/xTkn_VYZtm9bvb25VfGwmoPcIUY.roa
Signing time: Sun 01 Jan 2023 04:05:00 +0000
ROA not before: Sun 01 Jan 2023 04:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47647
IP address blocks: 78.130.143.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:19:32:1c:68:e5:34:04:e1:38:9a:dc:1f:c5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 04:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c53927fd5619b66f5bbdbdb955f1b09a83dc2146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:14:1f:a4:24:ce:96:79:ef:84:0f:d0:d7:9e:
ec:02:4a:30:42:28:e6:e8:84:64:36:a7:58:0f:57:
97:cd:6e:bf:38:20:15:1f:fd:c9:8c:2c:0a:a3:79:
8c:27:2e:37:fd:4a:c0:29:b9:fb:cf:94:71:b6:d3:
21:f4:11:41:57:ad:e4:c8:bd:a9:60:d5:62:1d:1d:
de:08:2a:9b:46:e5:2a:0a:b7:82:3f:dc:64:27:d4:
94:d1:5d:af:d0:80:25:16:91:c1:d2:84:ae:3a:33:
ad:0a:6b:89:e6:0c:dd:d5:fd:95:91:f2:41:b8:32:
c4:4c:09:a9:10:01:7c:ad:7a:4f:b0:69:b2:80:55:
96:2c:ef:1f:16:d2:a8:89:69:a3:24:80:62:80:55:
da:46:18:f8:1c:8e:69:d3:4f:87:78:e2:6e:e8:f5:
ea:4c:35:66:e3:29:1c:7c:18:26:c0:e6:fa:52:2f:
12:0d:0d:c0:b0:40:bb:8c:72:ea:96:56:47:95:57:
c3:e6:7b:d6:2b:65:5a:c6:ef:de:88:c0:8b:6c:9e:
64:eb:a7:87:48:4c:2b:32:48:39:5f:d0:20:34:69:
60:72:c6:cc:8e:c6:d8:7c:e4:44:88:f2:dc:fa:80:
32:b5:11:22:e7:e7:7f:71:76:a9:04:5c:b3:e9:45:
52:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:39:27:FD:56:19:B6:6F:5B:BD:BD:B9:55:F1:B0:9A:83:DC:21:46
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/xTkn_VYZtm9bvb25VfGwmoPcIUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.130.143.0/24
Signature Algorithm: sha256WithRSAEncryption
64:0c:eb:57:e0:cc:1a:d7:8a:72:72:b5:2b:ab:b0:52:0c:dd:
9c:3b:31:3b:a9:87:9a:69:88:cb:59:8e:93:dc:be:1c:5c:5c:
74:12:8b:c6:20:4a:91:42:13:72:f5:1e:14:35:a1:aa:02:e3:
6d:71:3b:f7:d5:1d:b4:5c:3f:31:d1:23:4b:89:12:2f:df:55:
ea:b3:cb:94:1b:4a:84:5b:ca:ad:96:d5:42:51:93:73:9a:5f:
23:33:b2:55:06:ae:aa:d9:b7:94:d1:e5:27:a7:1b:10:8b:4d:
3a:28:76:7c:ab:60:04:a4:55:00:cd:96:2e:70:0e:c1:91:bd:
14:d0:84:b5:e4:68:88:72:51:f7:92:40:32:f9:92:a5:d1:34:
9f:5c:72:d0:1b:6d:fa:76:37:fd:a1:19:de:ea:f5:6e:61:32:
bc:1d:93:89:fa:33:c4:b3:d0:11:69:fd:cb:49:02:d4:3a:d4:
b1:bc:bc:71:20:29:e1:6f:d6:d0:8c:0b:1a:a3:35:3c:ed:bc:
14:55:a2:71:e6:6e:45:11:ee:f1:fb:77:de:d3:5b:1c:cb:b3:
0d:1e:36:1a:68:d4:7b:44:0e:ea:38:d4:05:58:99:bf:81:6d:
62:7a:6d:7c:26:e7:7e:68:24:be:1d:bc:55:1b:e3:54:da:16:
01:99:40:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:23 2024 by rpki-client on console.sobornost.net