Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/UOqqhb0grfEZfedh0OpAVISwWsk.roa
File: UOqqhb0grfEZfedh0OpAVISwWsk.roa (raw, json)
Hash identifier: IDWUWfxyzRMr9/jVaJcs4lUGEHkI9okzCNvh95RmfcQ=
Subject key identifier: 50:EA:AA:85:BD:20:AD:F1:19:7D:E7:61:D0:EA:40:54:84:B0:5A:C9
Certificate issuer: /CN=0cefacb37441dd19183bd1cb57db5ee55477a7a7
Certificate serial: 0185ED6653C2C3DBBF7FA4C87A9038B4FF30
Authority key identifier: 0C:EF:AC:B3:74:41:DD:19:18:3B:D1:CB:57:DB:5E:E5:54:77:A7:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DO-ss3RB3RkYO9HLV9te5VR3p6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/UOqqhb0grfEZfedh0OpAVISwWsk.roa
Signing time: Thu 26 Jan 2023 09:26:24 +0000
ROA not before: Thu 26 Jan 2023 09:26:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200190
IP address blocks: 185.169.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:66:53:c2:c3:db:bf:7f:a4:c8:7a:90:38:b4:ff:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cefacb37441dd19183bd1cb57db5ee55477a7a7
Validity
Not Before: Jan 26 09:26:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50eaaa85bd20adf1197de761d0ea405484b05ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:42:8a:67:55:0b:a2:d4:3f:06:40:82:aa:39:
b3:39:6b:8f:a6:42:ef:fa:89:b7:d2:0d:48:76:1c:
1b:cd:13:a3:0e:5b:e4:9f:7a:96:39:da:3a:0b:1b:
94:5f:95:d5:38:05:70:f5:d0:69:d1:29:dc:b1:c8:
91:a9:39:cf:47:d4:08:74:68:93:65:e7:fd:d6:cc:
42:fc:f8:5d:bd:11:a9:71:11:c5:d4:64:30:ac:32:
9b:77:41:47:08:eb:74:b6:c3:ba:4a:38:e8:44:e6:
12:2d:6f:c4:1b:c2:77:eb:b8:73:41:bb:6d:d6:fb:
6f:d2:3d:4b:cf:ee:27:6a:9e:b0:3d:d3:10:31:b8:
6e:52:98:0f:19:20:b8:2d:f1:9f:1f:79:65:88:b6:
23:68:68:83:2a:80:c7:ae:75:a2:20:5b:19:9c:c3:
15:a5:19:ea:df:69:6a:6d:1f:0c:49:47:99:aa:61:
86:74:11:25:51:8f:92:13:d5:ee:ae:16:b3:03:81:
79:05:1b:fb:bc:74:f6:c6:2c:23:f4:e2:a9:0a:a2:
0d:11:48:9e:c7:53:fe:d6:61:15:79:6e:10:2c:07:
99:fa:bb:80:c9:e3:1c:f3:84:07:f7:f7:b0:1b:85:
aa:f6:61:c0:a5:04:27:dc:37:63:af:58:3a:ba:87:
0d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:EA:AA:85:BD:20:AD:F1:19:7D:E7:61:D0:EA:40:54:84:B0:5A:C9
X509v3 Authority Key Identifier:
keyid:0C:EF:AC:B3:74:41:DD:19:18:3B:D1:CB:57:DB:5E:E5:54:77:A7:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DO-ss3RB3RkYO9HLV9te5VR3p6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/UOqqhb0grfEZfedh0OpAVISwWsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/DO-ss3RB3RkYO9HLV9te5VR3p6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.77.0/24
Signature Algorithm: sha256WithRSAEncryption
40:32:61:de:0e:9d:d1:fc:be:1d:b5:7c:b0:e8:72:d2:85:07:
01:a4:3e:37:49:d6:76:d6:20:e8:5f:fd:02:68:d0:12:f8:df:
40:41:50:cd:4c:c8:c8:01:0d:f2:7e:0c:18:4c:72:35:a3:5e:
b3:eb:0b:b7:d9:4e:65:23:3e:b7:40:0d:ca:f3:57:d0:7a:ac:
b6:54:89:ce:30:72:f0:86:9f:5b:b0:9c:7e:2c:c1:69:bb:42:
c1:3b:d9:99:79:1c:bf:5f:d8:da:da:e2:7f:a4:64:18:9f:8e:
0c:3e:f7:5e:3b:0d:03:85:94:9a:65:88:89:62:a8:d1:53:a5:
41:32:bc:e6:f5:dd:78:79:ef:11:f3:2c:f3:e3:6f:08:00:87:
16:0d:24:a6:d9:f6:09:b1:ae:14:aa:19:70:78:7f:f6:04:be:
74:6d:93:15:d8:07:c3:6e:5b:88:77:34:5d:0b:7d:7e:4d:f5:
0e:5f:cc:1d:91:8d:62:15:77:0c:ba:bd:18:c5:a5:a9:65:58:
e1:2a:09:1b:7a:ad:94:93:30:d4:7a:2c:90:ad:35:f2:2e:8c:
1c:ce:7d:0b:59:d6:7d:de:7b:99:ab:90:ca:5a:be:1f:40:7b:
da:ac:25:5b:0a:10:ec:0a:97:51:4a:74:da:7b:68:70:79:2a:
bc:f5:b5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:38 2024 by rpki-client on console.sobornost.net