Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/LmHMWw0L39yOYK0iqnmZkyBeZTM.roa
File: LmHMWw0L39yOYK0iqnmZkyBeZTM.roa (raw, json)
Hash identifier: MChNjS7tSAm1bVvW9ywR9FlKlZlQMDiEqkEul91Rt8I=
Subject key identifier: 2E:61:CC:5B:0D:0B:DF:DC:8E:60:AD:22:AA:79:99:93:20:5E:65:33
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 0188E2301FE48EBE98E99AFB040F3C82A5F9
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/LmHMWw0L39yOYK0iqnmZkyBeZTM.roa
Signing time: Thu 22 Jun 2023 08:19:44 +0000
ROA not before: Thu 22 Jun 2023 08:19:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56579
IP address blocks: 91.218.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:30:1f:e4:8e:be:98:e9:9a:fb:04:0f:3c:82:a5:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Jun 22 08:19:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e61cc5b0d0bdfdc8e60ad22aa799993205e6533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c6:49:d4:d0:a3:0b:10:0e:ff:d6:40:33:23:
f9:b3:80:d7:8f:20:ee:f9:2d:97:3e:fa:6d:04:41:
49:7a:49:34:ac:b7:ba:90:ba:0e:21:9b:c5:ed:7a:
67:00:8d:0d:22:d5:0c:5c:f8:65:2b:e0:16:cc:ac:
db:9f:23:05:19:97:e3:44:39:88:48:1f:de:be:e0:
01:d4:8d:31:81:64:09:e8:81:0f:ff:b3:5d:0b:84:
eb:d7:55:84:7d:39:40:52:31:a7:c4:5a:9e:85:34:
3e:f8:ec:3f:a9:d1:4a:09:39:d7:e9:47:5a:e6:10:
9b:9a:57:94:d2:35:d6:4d:b9:b0:e5:85:24:b0:49:
6f:f7:2a:f5:c1:ad:08:08:3e:04:10:47:be:25:17:
84:65:55:53:db:7f:14:36:ce:3e:28:c9:a0:63:7a:
fd:a6:73:3d:58:c3:12:66:f2:95:94:94:ef:d2:13:
0b:37:5b:aa:0c:fe:34:67:8f:35:2f:31:23:ee:9c:
20:e2:de:3c:10:1e:b8:d0:6b:2b:01:c3:8e:60:c9:
d8:a7:ff:1a:a1:d0:72:84:98:07:cd:da:14:1c:d7:
04:12:0c:96:93:18:da:a2:db:fa:55:be:ca:ae:e6:
9b:be:96:c1:b8:2f:92:bd:a9:f6:92:f8:63:a4:eb:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:61:CC:5B:0D:0B:DF:DC:8E:60:AD:22:AA:79:99:93:20:5E:65:33
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/LmHMWw0L39yOYK0iqnmZkyBeZTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.59.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:b9:b0:a7:cd:12:8c:aa:13:3c:51:be:f2:d8:8a:f4:29:d4:
6d:f5:80:55:ec:0d:ef:37:27:32:98:9e:6d:f1:c0:de:fb:e0:
77:e7:dd:70:97:fa:22:12:81:33:cd:e7:a0:29:30:7c:34:34:
4a:bf:9b:29:31:10:71:0b:9b:df:99:d5:c4:bf:15:cd:2c:7b:
d4:9a:62:7e:c9:83:55:ef:34:9f:53:16:06:47:ba:b9:07:47:
b2:82:97:76:59:87:0e:51:9d:e4:e5:88:5c:69:78:fb:b8:b7:
3b:e3:80:d5:d7:58:79:56:46:b5:6f:6b:01:16:3b:c2:59:f0:
ba:53:78:92:5e:b5:34:ea:d8:4f:1e:3f:40:9c:d7:00:c0:ea:
26:1d:8f:ff:da:02:4d:d2:92:0b:c7:55:97:0b:75:fc:cb:cf:
3b:54:ce:88:ff:ee:3e:7c:7a:5b:ad:81:d1:7a:9d:ba:d3:d5:
e7:c1:54:e0:ca:74:12:6a:5e:d5:a8:00:c4:b3:19:f4:6a:88:
81:0b:15:ea:46:71:68:ee:ad:d3:1a:35:45:d1:4d:1e:83:1d:
52:a1:d5:e5:8b:96:a8:8a:ff:f1:a6:41:50:6e:91:6f:73:83:
d1:98:fc:1f:56:f2:e6:ba:0c:14:3a:9d:ff:46:62:db:ea:67:
48:25:91:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:44 2024 by rpki-client on console.sobornost.net