Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e5ce8f-5ea0-479f-93e9-89d5c60f501f/1/iVrv7eOT1FOQqkIc2X0FIZ82SbA.roa
File: iVrv7eOT1FOQqkIc2X0FIZ82SbA.roa (raw, json)
Hash identifier: o5zxRwbhuRcvBcuT/JYzwx3jwgyXP5W5eFKFl4bKgn4=
Subject key identifier: 89:5A:EF:ED:E3:93:D4:53:90:AA:42:1C:D9:7D:05:21:9F:36:49:B0
Certificate issuer: /CN=95461fbee1c06e3eafac0f2f95253ca8603accf2
Certificate serial: 0189F3BF4E3C4B43615DBD10D167A8A6DD3B
Authority key identifier: 95:46:1F:BE:E1:C0:6E:3E:AF:AC:0F:2F:95:25:3C:A8:60:3A:CC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUYfvuHAbj6vrA8vlSU8qGA6zPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e5ce8f-5ea0-479f-93e9-89d5c60f501f/1/iVrv7eOT1FOQqkIc2X0FIZ82SbA.roa
Signing time: Mon 14 Aug 2023 11:12:28 +0000
ROA not before: Mon 14 Aug 2023 11:12:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 185.66.196.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:bf:4e:3c:4b:43:61:5d:bd:10:d1:67:a8:a6:dd:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95461fbee1c06e3eafac0f2f95253ca8603accf2
Validity
Not Before: Aug 14 11:12:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=895aefede393d45390aa421cd97d05219f3649b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7d:14:c5:c7:66:12:ec:86:53:f4:75:23:3f:
3d:37:ed:50:06:22:cc:9b:10:7a:97:00:4a:04:a6:
9a:73:42:7f:54:49:b0:6b:aa:ea:fa:fa:d2:be:a7:
22:8f:66:1d:db:d3:c7:65:13:4b:a4:84:c4:37:a7:
bb:85:81:2c:75:02:ed:4d:5f:fb:5f:ce:6c:d2:1d:
49:d2:62:a1:a0:79:4f:80:dd:fa:65:3f:2f:42:22:
61:a7:f6:4a:fb:40:5f:f0:06:35:96:0c:98:60:3c:
4e:37:0e:da:9d:59:2e:ee:4f:95:50:46:a6:6a:26:
15:83:89:9e:ff:bf:aa:f2:b1:0f:4a:aa:11:b7:65:
41:42:b2:f7:f4:52:28:b3:a5:00:d4:9b:3a:5c:46:
a7:45:f2:02:53:10:a7:04:c5:a4:74:85:23:8c:b9:
3e:28:51:82:2b:8b:b6:c6:ad:c1:0a:ce:c6:cf:0e:
a8:1e:4c:c2:20:7a:aa:c7:82:49:4b:86:f0:45:69:
bf:13:f5:8d:2e:06:75:5d:e4:2f:c0:7d:53:87:15:
1a:c9:ac:ab:aa:84:d1:d9:a1:d3:b8:45:71:73:64:
2a:b5:26:0b:13:3e:1c:13:45:8f:43:c2:03:9c:07:
3c:6e:3f:7c:0f:76:a2:f7:5f:49:6b:c5:f3:9f:0c:
4b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5A:EF:ED:E3:93:D4:53:90:AA:42:1C:D9:7D:05:21:9F:36:49:B0
X509v3 Authority Key Identifier:
keyid:95:46:1F:BE:E1:C0:6E:3E:AF:AC:0F:2F:95:25:3C:A8:60:3A:CC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUYfvuHAbj6vrA8vlSU8qGA6zPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e5ce8f-5ea0-479f-93e9-89d5c60f501f/1/iVrv7eOT1FOQqkIc2X0FIZ82SbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e5ce8f-5ea0-479f-93e9-89d5c60f501f/1/lUYfvuHAbj6vrA8vlSU8qGA6zPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.196.0/22
Signature Algorithm: sha256WithRSAEncryption
33:60:d7:bf:3c:dc:45:0a:d3:3b:19:d3:cc:ff:25:c7:d7:be:
08:04:f3:a3:d9:a0:8d:14:65:05:fe:56:1c:55:5b:9f:af:da:
5d:89:b6:99:aa:87:c0:4a:08:b2:90:1f:15:f4:61:e0:b4:b1:
db:c3:97:f4:04:a5:f6:04:46:a5:46:cc:b5:6f:10:76:9e:d1:
a3:3f:90:3a:ea:46:ed:9b:db:e8:11:b3:73:37:7d:0f:da:fc:
c1:4e:44:a1:ed:77:00:07:ab:a4:9e:d1:21:93:aa:b8:f8:69:
00:8e:e6:52:a7:ff:fa:4f:bd:1d:e6:f7:ad:09:f3:75:55:24:
be:67:bb:c9:01:f6:2b:92:1d:05:28:5f:a0:b4:9e:fd:a6:9c:
bd:30:04:9b:66:36:21:bc:f5:a6:df:a5:75:cd:a4:98:9e:d8:
66:ef:0e:9e:00:84:52:aa:63:5a:be:9e:69:91:87:4d:8e:92:
63:3d:46:04:e6:f8:4e:9b:ae:8e:3d:80:3f:21:21:1f:0a:59:
36:57:e1:68:9d:df:eb:7a:e2:03:94:71:8e:f3:69:ef:8c:20:
a9:c8:1e:40:1d:bd:0f:ba:d0:f6:ed:68:6b:4c:77:aa:c0:7d:
5f:d4:76:2c:9b:0d:43:b4:0e:42:3a:94:7e:92:d2:54:c0:b3:
ba:3b:4c:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:01:06 2024 by rpki-client on console.sobornost.net