Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/7KzEpoMTKM-KENoCGmtj0_nKJ-k.roa
File: 7KzEpoMTKM-KENoCGmtj0_nKJ-k.roa (raw, json)
Hash identifier: hO+gJC2TkT6ctG3PfMplwDMk0bb5HQ+om6lG4c1WfJw=
Subject key identifier: EC:AC:C4:A6:83:13:28:CF:8A:10:DA:02:1A:6B:63:D3:F9:CA:27:E9
Certificate issuer: /CN=90eb336d5604d47bae817238b0dbb49771e24729
Certificate serial: 0185720359E44664A3B3BA918EB4C98C48AA
Authority key identifier: 90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/7KzEpoMTKM-KENoCGmtj0_nKJ-k.roa
Signing time: Mon 02 Jan 2023 10:25:00 +0000
ROA not before: Mon 02 Jan 2023 10:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.60.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:59:e4:46:64:a3:b3:ba:91:8e:b4:c9:8c:48:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90eb336d5604d47bae817238b0dbb49771e24729
Validity
Not Before: Jan 2 10:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecacc4a6831328cf8a10da021a6b63d3f9ca27e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:77:16:6d:9e:8e:0b:b3:d2:ae:35:30:35:ba:
0e:c7:ba:77:6d:3e:6a:f3:4c:aa:a8:bb:68:f2:1b:
6b:e7:2c:26:b1:f3:b8:37:a5:ba:a8:83:41:48:86:
d7:d5:67:43:2f:46:e1:c6:45:d5:46:8b:d1:a6:c6:
2c:82:aa:2e:a3:72:8d:3d:93:d5:6b:0a:fc:29:c0:
05:71:e3:e6:fb:1b:2c:8c:91:32:d6:12:9e:29:74:
f0:15:6a:05:a2:b0:8a:99:b4:a9:6a:b2:27:0a:f0:
90:f8:9a:da:36:2c:3f:9f:51:fa:01:d2:3f:c2:6b:
29:9b:ad:05:7f:7f:92:43:1a:03:3c:3f:78:9b:16:
79:8b:fd:de:c7:65:4f:90:45:29:d4:fa:17:7b:73:
91:0b:e2:6f:f1:89:cb:f4:70:e2:aa:8a:45:ae:05:
f7:a4:56:cf:57:0b:c3:a6:e6:61:35:96:08:ec:96:
d7:a4:71:a4:4f:9c:c7:fc:47:40:10:71:8c:3e:47:
98:c8:40:99:81:22:9e:34:c1:a0:43:da:7d:63:7e:
da:d4:f5:64:7a:32:5f:91:42:a9:68:61:4b:c9:e4:
1e:86:3f:b8:24:7e:c1:3a:b9:9e:0e:18:a4:e1:c1:
38:9c:ba:db:92:2c:e5:29:4b:f8:6a:69:42:bf:68:
c5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:AC:C4:A6:83:13:28:CF:8A:10:DA:02:1A:6B:63:D3:F9:CA:27:E9
X509v3 Authority Key Identifier:
keyid:90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/7KzEpoMTKM-KENoCGmtj0_nKJ-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.60.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:86:96:e0:b2:b9:c3:3f:67:6b:af:44:c1:58:76:22:f7:72:
f0:66:10:ce:ca:5e:82:d8:23:aa:bd:cc:29:25:03:9a:08:f2:
98:c7:4c:db:0d:e8:29:49:2c:77:25:e9:c9:c6:c9:c1:e4:08:
00:5e:84:8c:0c:c1:1f:3c:39:bc:34:3e:3d:cd:69:51:c7:ed:
fa:07:75:b2:dd:3e:89:54:b3:20:b6:83:5e:75:44:c6:15:c6:
95:cd:d0:05:65:b8:73:27:9c:97:6a:be:3a:be:87:eb:2a:2d:
32:eb:23:47:d8:fa:e5:38:f0:67:53:3b:1f:50:da:24:dc:5b:
d7:ea:d2:2d:84:06:09:94:ed:e3:dd:dd:42:fb:2a:c2:47:f7:
88:31:08:79:df:09:da:f6:62:b2:3f:9b:b6:6c:60:4b:da:88:
57:7d:5f:88:a7:0c:9b:bf:6c:39:5f:ff:1e:d1:82:10:cb:82:
8e:31:54:0e:85:7e:e7:a0:e9:8e:ad:58:b9:40:a1:30:e7:d5:
1d:f3:91:15:92:d9:ce:0f:4e:2e:45:14:9a:4e:a7:31:40:30:
07:e1:ef:83:cc:32:fc:23:16:db:b5:e8:6d:e8:a8:c3:11:6b:
1b:f3:f5:18:88:5a:9c:39:a9:1f:a6:9f:52:d3:d9:64:2c:5d:
98:74:42:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:47 2024 by rpki-client on console.sobornost.net