Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/N2l8umoxm3MXdt4S64BVSgu84WE.roa
File: N2l8umoxm3MXdt4S64BVSgu84WE.roa (raw, json)
Hash identifier: 6CV9DHQtc6V2TS8JE3x5QiQT/YDWsZsC+3aGaukGpok=
Subject key identifier: 37:69:7C:BA:6A:31:9B:73:17:76:DE:12:EB:80:55:4A:0B:BC:E1:61
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018B19535DE852D64F5341C83385C960B6EE
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/N2l8umoxm3MXdt4S64BVSgu84WE.roa
Signing time: Tue 10 Oct 2023 11:22:55 +0000
ROA not before: Tue 10 Oct 2023 11:22:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 89.42.44.0/22 maxlen: 22
45.94.214.0/24 maxlen: 24
45.94.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:19:53:5d:e8:52:d6:4f:53:41:c8:33:85:c9:60:b6:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Oct 10 11:22:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37697cba6a319b731776de12eb80554a0bbce161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3a:38:7c:93:38:76:1f:7e:2d:80:7b:0b:be:
6d:ac:92:5c:ac:a9:ee:29:71:35:ec:67:90:2e:4d:
9a:77:0c:3c:79:18:0c:41:de:0f:61:c7:8a:2b:ad:
39:30:e3:da:d5:62:dc:5b:2e:7b:5d:28:c4:fb:c4:
9b:21:84:8d:ce:78:4c:1d:7d:d7:cd:55:83:14:18:
c7:4b:9b:0c:a6:2f:ad:3f:2e:bd:20:2f:81:2b:db:
5e:8d:6a:3c:78:78:48:88:62:f0:d1:20:5d:a5:7a:
c8:28:00:a2:2b:f0:4e:fa:3f:e4:7d:10:6b:07:bf:
64:c6:69:84:71:7b:0f:3d:fe:d9:65:51:21:bb:a2:
4c:7e:59:92:73:dc:2d:5f:75:b5:49:ed:9a:b2:ec:
05:a6:19:7d:23:47:7c:a6:b8:3a:a5:68:d9:db:81:
71:62:d4:a0:b7:ce:f1:fa:d8:27:68:73:35:62:02:
fe:9d:d7:44:fe:ad:9e:a9:15:e1:d9:6d:ae:d1:28:
73:25:b1:34:42:ee:49:3f:20:09:fe:e1:1e:1c:34:
f7:32:ed:ae:9b:71:9d:d3:0d:e9:b1:34:5b:9e:a1:
07:27:2b:7d:d5:19:58:14:b8:3d:fc:fa:e4:4f:c2:
cb:14:ae:01:2f:df:07:1c:91:4d:50:a4:e5:07:4f:
33:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:69:7C:BA:6A:31:9B:73:17:76:DE:12:EB:80:55:4A:0B:BC:E1:61
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/N2l8umoxm3MXdt4S64BVSgu84WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.214.0/23
89.42.44.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:1c:2d:a7:35:b4:c4:5a:d7:c5:d6:02:ce:4a:3c:3e:7e:b7:
40:09:5b:07:6b:bb:ee:df:6d:f2:c5:8e:12:de:03:7f:43:0b:
03:89:b8:84:56:73:a8:03:de:7e:c4:62:9b:62:fc:3e:9d:6c:
36:56:2a:f6:56:d8:fa:fb:93:64:f2:36:ab:b3:62:71:b5:d5:
1a:8b:b5:f2:dd:5d:cc:9b:08:65:b4:4f:10:03:ed:80:30:6a:
75:d3:88:6a:d2:88:05:60:d2:7e:ee:bd:6f:2c:ed:8b:bd:46:
d5:2a:d6:d7:cd:4d:b9:9b:7b:21:a7:5d:2a:c6:a0:14:7d:41:
db:da:57:54:06:0c:f3:33:14:92:6b:74:a6:d7:e2:8e:8d:93:
27:72:65:71:7d:37:c9:f9:7b:cf:d9:19:04:20:2f:69:d7:0d:
73:b9:20:52:5d:c4:8c:7a:16:ed:71:11:42:04:ff:81:2a:84:
ff:d4:93:47:a1:a4:21:4c:18:dc:ec:3e:3a:46:4b:f8:ee:85:
8a:14:b8:95:7e:c7:ae:75:4c:f2:c2:c9:b0:48:f2:c9:7e:3f:
5c:dd:fa:c2:3f:3b:98:da:2f:da:f9:66:a3:70:66:5c:f6:30:
01:6e:d2:b0:09:de:6c:75:d7:32:1e:e6:89:92:94:bb:0a:66:
4d:e5:20:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:05 2023 by rpki-client on console.sobornost.net