Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/523ef6-2743-413d-b41d-6af655a5494b/1/p5MJjsm86-QM1t8B5ImGKeZRQ6A.roa
File: p5MJjsm86-QM1t8B5ImGKeZRQ6A.roa (raw, json)
Hash identifier: YNP7Y/HxqsvVhnPnSZny7F1FrQMlsq5K2AHrmgNpssE=
Subject key identifier: A7:93:09:8E:C9:BC:EB:E4:0C:D6:DF:01:E4:89:86:29:E6:51:43:A0
Certificate issuer: /CN=6d5be666d804d0f8b387fc62209d13006c6644aa
Certificate serial: 018570676FDBB6C20006642161F4C430E83A
Authority key identifier: 6D:5B:E6:66:D8:04:D0:F8:B3:87:FC:62:20:9D:13:00:6C:66:44:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bVvmZtgE0Pizh_xiIJ0TAGxmRKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/523ef6-2743-413d-b41d-6af655a5494b/1/p5MJjsm86-QM1t8B5ImGKeZRQ6A.roa
Signing time: Mon 02 Jan 2023 02:55:05 +0000
ROA not before: Mon 02 Jan 2023 02:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43442
IP address blocks: 185.224.188.0/22 maxlen: 22
2001:678:424::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:6f:db:b6:c2:00:06:64:21:61:f4:c4:30:e8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d5be666d804d0f8b387fc62209d13006c6644aa
Validity
Not Before: Jan 2 02:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a793098ec9bcebe40cd6df01e4898629e65143a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:0c:1a:58:a1:0a:3e:86:14:2d:31:d3:42:
1d:c5:18:92:22:c8:d5:cb:85:a2:89:5b:4e:80:4e:
66:6e:21:07:2d:f2:5f:1f:71:ad:b7:82:11:b7:8b:
7e:15:b1:cc:37:a6:2e:29:4c:eb:64:61:b8:ac:a8:
9f:1a:f7:35:63:0d:dc:65:2a:7b:94:7d:66:59:15:
fb:d5:57:50:a0:d3:74:3b:db:d2:56:89:0a:36:4c:
a0:94:68:a4:8a:65:fa:b2:e3:54:14:a6:07:fe:e2:
a9:4e:74:f9:89:54:47:21:95:f8:5b:69:52:28:15:
16:5c:6a:85:21:44:81:00:95:f8:61:21:15:2e:56:
f2:f0:5d:6d:31:2d:20:c0:e5:bb:35:7c:49:fc:70:
65:79:df:fd:f7:f9:06:da:b5:be:58:2b:31:63:07:
5a:93:35:d6:e8:4c:08:ba:74:a2:7a:52:73:75:95:
8b:44:9d:90:2a:84:fc:6d:87:e4:92:c4:df:7f:55:
0a:55:fc:25:6b:51:3f:3d:88:0f:1d:b7:ab:e8:fa:
64:4c:fe:5e:60:7e:90:d5:c3:a0:b2:dd:ff:5c:df:
3d:eb:02:d9:d9:15:b7:a8:8a:7f:39:26:b7:44:8b:
ab:90:d1:d4:34:77:a5:f9:aa:6f:2f:ff:89:05:24:
5d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:93:09:8E:C9:BC:EB:E4:0C:D6:DF:01:E4:89:86:29:E6:51:43:A0
X509v3 Authority Key Identifier:
keyid:6D:5B:E6:66:D8:04:D0:F8:B3:87:FC:62:20:9D:13:00:6C:66:44:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVvmZtgE0Pizh_xiIJ0TAGxmRKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/523ef6-2743-413d-b41d-6af655a5494b/1/p5MJjsm86-QM1t8B5ImGKeZRQ6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/523ef6-2743-413d-b41d-6af655a5494b/1/bVvmZtgE0Pizh_xiIJ0TAGxmRKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.188.0/22
IPv6:
2001:678:424::/48
Signature Algorithm: sha256WithRSAEncryption
5c:05:0f:84:41:bf:0b:32:1d:a6:30:3a:7d:fc:08:ed:4d:00:
17:d7:65:58:12:3c:03:1f:d4:f0:39:31:10:e3:a3:fd:7e:6a:
a3:8c:32:20:27:3e:29:d2:8d:b9:cf:1c:5f:fe:91:32:11:45:
c7:54:28:2d:cc:bd:5d:84:b4:8e:a5:4c:bc:d0:07:15:3d:8c:
bd:5e:38:19:aa:aa:6f:63:e4:a5:24:9c:b6:5d:9d:00:b5:a9:
d9:72:2d:b3:d4:3c:31:c8:67:b4:00:08:5d:b4:4e:1b:f6:89:
0d:71:dc:e2:da:9f:11:b8:1b:8c:09:6c:29:87:82:79:b3:f1:
96:ee:ba:49:d8:a4:2a:5d:34:24:f4:b0:f2:9c:b5:4e:6d:6d:
5b:be:19:e8:9b:f5:27:f9:ca:51:97:40:da:ce:cb:f8:7a:2b:
90:1f:68:8d:e5:9d:a1:c6:47:38:95:e2:4e:e1:35:6b:69:17:
9b:40:12:55:db:9a:11:c2:ca:70:28:05:20:e1:ca:bc:9a:c9:
c2:8b:58:c6:b2:d6:93:fa:47:58:69:34:f1:92:16:c1:a9:5e:
82:6d:4b:8f:29:17:93:d3:cc:66:7f:f4:8b:41:38:24:d2:6c:
26:30:27:85:35:cc:1a:22:fa:94:ff:5c:6c:9e:f4:2e:87:7f:
47:9e:98:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:30 2024 by rpki-client on console.sobornost.net