Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f180ff-336c-4b45-9378-568672c25ca8/1/SoN9dy7n8YsZrzrwW4LRumXCDMs.roa
File: SoN9dy7n8YsZrzrwW4LRumXCDMs.roa (raw, json)
Hash identifier: uF2ec3ozA+KMvvyHrJBZOtmGXDLDNCc4GqFYrC56iVY=
Subject key identifier: 4A:83:7D:77:2E:E7:F1:8B:19:AF:3A:F0:5B:82:D1:BA:65:C2:0C:CB
Certificate issuer: /CN=922e330b5879590abae81bf40a91a5101bc18fa0
Certificate serial: 01856ED4A0CD6E98F833DC95477FBB4B3C3E
Authority key identifier: 92:2E:33:0B:58:79:59:0A:BA:E8:1B:F4:0A:91:A5:10:1B:C1:8F:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ki4zC1h5WQq66Bv0CpGlEBvBj6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f180ff-336c-4b45-9378-568672c25ca8/1/SoN9dy7n8YsZrzrwW4LRumXCDMs.roa
Signing time: Sun 01 Jan 2023 19:35:06 +0000
ROA not before: Sun 01 Jan 2023 19:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8966
IP address blocks: 185.120.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a0:cd:6e:98:f8:33:dc:95:47:7f:bb:4b:3c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922e330b5879590abae81bf40a91a5101bc18fa0
Validity
Not Before: Jan 1 19:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a837d772ee7f18b19af3af05b82d1ba65c20ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:24:e5:f4:69:7d:63:14:da:1c:5f:60:ed:ed:
ba:c2:e7:fa:52:d6:27:78:04:ec:9c:3f:5b:47:08:
1f:96:8b:2e:cd:59:d3:ab:66:b6:fd:18:94:9e:61:
d9:c9:3d:62:20:a7:24:c2:63:6d:33:8c:e4:a4:ad:
6e:89:69:70:e8:58:89:9d:8e:b1:2b:8f:8e:14:76:
e0:1d:90:76:c3:e1:a4:65:9a:e1:02:80:6f:27:07:
7c:7e:61:0b:05:17:70:24:86:b0:9d:11:55:dc:58:
53:c1:4b:a9:7a:61:86:cb:82:91:68:b1:dd:a2:4c:
21:21:51:5c:4d:5a:cc:85:80:31:37:84:71:8a:72:
5c:cc:2e:d3:24:e3:1f:7e:0e:41:2f:5d:ef:35:ea:
46:a2:58:95:56:60:43:cc:08:69:2b:4a:8e:b1:b4:
4b:52:ef:58:cf:b2:83:bd:f4:75:1c:44:a6:ba:61:
51:1b:cf:d7:55:87:24:ef:0a:61:24:c2:d9:a4:0f:
da:e4:c8:f6:e3:b4:77:27:a3:55:6f:fe:07:86:95:
fd:97:5e:35:b0:3b:fe:68:d8:b4:fa:d7:8f:c4:2d:
58:5b:2f:8a:69:67:67:b4:d5:7a:14:29:44:d7:a6:
e8:8c:c1:b4:3b:ba:f0:85:8c:1c:8a:84:20:7b:28:
0f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:83:7D:77:2E:E7:F1:8B:19:AF:3A:F0:5B:82:D1:BA:65:C2:0C:CB
X509v3 Authority Key Identifier:
keyid:92:2E:33:0B:58:79:59:0A:BA:E8:1B:F4:0A:91:A5:10:1B:C1:8F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ki4zC1h5WQq66Bv0CpGlEBvBj6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f180ff-336c-4b45-9378-568672c25ca8/1/SoN9dy7n8YsZrzrwW4LRumXCDMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f180ff-336c-4b45-9378-568672c25ca8/1/ki4zC1h5WQq66Bv0CpGlEBvBj6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.31.0/24
Signature Algorithm: sha256WithRSAEncryption
01:2e:a3:8e:72:ae:6b:c8:65:e2:ce:05:b6:27:7e:4e:b9:3f:
3a:78:0c:60:1f:92:9b:3f:a5:29:48:33:e1:60:f1:e1:8c:4c:
48:88:b4:ec:e8:91:67:fd:6c:3d:bd:46:e5:e9:e9:3e:86:31:
28:c2:93:8f:83:c9:83:c6:20:f9:b7:d4:cd:1e:68:8f:6c:17:
e7:4c:34:57:8c:b3:74:eb:76:ae:2d:0e:95:ff:f5:4a:40:d0:
6d:78:1c:40:05:9e:4f:5e:51:5d:b0:d1:cb:e2:9f:8f:4a:b9:
63:c9:6b:c1:8c:66:96:fd:30:83:98:c0:37:b2:1f:57:9c:47:
0b:54:12:b2:de:07:69:13:55:2d:9a:a8:08:2d:17:e2:9d:4a:
a2:9a:d0:6c:57:08:46:1a:94:82:22:7d:ef:b6:6e:5e:20:13:
d2:e0:53:bb:a7:e9:bd:e2:f8:12:6d:65:a6:6e:5d:4e:36:cd:
22:db:94:83:5f:f8:75:7c:9f:7d:28:82:0f:b0:77:02:fa:55:
d5:3e:fb:0f:be:83:a8:77:7e:fc:65:c6:55:59:16:bc:af:e3:
02:11:af:a9:6c:8c:94:d1:1d:4d:ad:80:1c:a4:82:d3:77:30:
25:20:9f:a9:9f:0b:29:b5:4c:e4:d2:fc:08:1e:4c:3f:5d:ea:
6f:56:d8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:01:06 2024 by rpki-client on console.sobornost.net