Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9ee73e-3d08-483f-99e6-638e8c98c110/1/uu_SUv-HkGcB8yO-xNN7UdaJ93c.roa
File: uu_SUv-HkGcB8yO-xNN7UdaJ93c.roa (raw, json)
Hash identifier: H5nX8HSL/4W0vsGb3fGkMdYh3MGveraFOdyo8R0ZkHQ=
Subject key identifier: BA:EF:D2:52:FF:87:90:67:01:F3:23:BE:C4:D3:7B:51:D6:89:F7:77
Certificate issuer: /CN=07058602656cc1b17628a636465c2e89bcfc0d0e
Certificate serial: 01856EC21710283DA036D170597982DDB402
Authority key identifier: 07:05:86:02:65:6C:C1:B1:76:28:A6:36:46:5C:2E:89:BC:FC:0D:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwWGAmVswbF2KKY2Rlwuibz8DQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9ee73e-3d08-483f-99e6-638e8c98c110/1/uu_SUv-HkGcB8yO-xNN7UdaJ93c.roa
Signing time: Sun 01 Jan 2023 19:14:51 +0000
ROA not before: Sun 01 Jan 2023 19:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43278
IP address blocks: 91.220.80.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:17:10:28:3d:a0:36:d1:70:59:79:82:dd:b4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07058602656cc1b17628a636465c2e89bcfc0d0e
Validity
Not Before: Jan 1 19:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baefd252ff87906701f323bec4d37b51d689f777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2b:90:2d:b5:d6:49:a3:ae:c4:06:a9:f5:75:
72:e6:ef:67:ca:e1:f9:c1:16:54:b8:dc:64:71:7c:
da:32:66:b5:54:06:72:01:37:29:d5:59:98:cd:67:
e8:2f:80:65:5f:b7:06:9e:f1:bb:67:c2:b0:80:65:
f1:cb:ad:c3:41:8e:1e:a1:99:ba:29:9f:be:8e:6b:
fe:f6:d0:a1:d2:b9:88:55:e1:f9:03:3d:06:2a:20:
80:0e:29:e8:d4:ac:06:7a:b0:01:fc:bf:af:53:23:
31:5e:fa:e9:2a:9c:65:76:84:cf:bf:f8:4d:d5:38:
e1:dd:e1:b0:8c:65:cd:9f:b6:12:f4:bd:9b:c4:e8:
0f:f0:4f:7f:11:97:0a:89:2e:31:7c:7a:c6:78:05:
9d:f4:3b:5d:ec:58:07:2e:23:0d:b8:44:29:5b:da:
d0:6b:87:c4:52:81:6b:41:2c:9d:36:95:4a:4c:ee:
4b:cd:f9:fb:44:7e:ee:25:23:a8:f7:5f:2b:aa:07:
cd:84:b0:0d:64:58:fa:9b:34:66:11:f5:98:52:f8:
cf:43:51:2a:0e:99:bf:e4:e2:57:d8:c6:0b:d0:df:
24:aa:53:0d:a0:3b:01:c4:5e:5f:be:68:2a:fc:26:
7c:02:c1:f9:7f:e1:38:3a:0b:8b:03:9b:38:f5:d0:
31:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:EF:D2:52:FF:87:90:67:01:F3:23:BE:C4:D3:7B:51:D6:89:F7:77
X509v3 Authority Key Identifier:
keyid:07:05:86:02:65:6C:C1:B1:76:28:A6:36:46:5C:2E:89:BC:FC:0D:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwWGAmVswbF2KKY2Rlwuibz8DQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9ee73e-3d08-483f-99e6-638e8c98c110/1/uu_SUv-HkGcB8yO-xNN7UdaJ93c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9ee73e-3d08-483f-99e6-638e8c98c110/1/BwWGAmVswbF2KKY2Rlwuibz8DQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.80.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:fe:73:87:54:a7:f8:a3:dd:3a:b8:e4:33:38:55:9a:9e:eb:
05:05:82:27:9b:42:d3:69:24:e1:50:06:cf:80:3f:a8:b4:1d:
53:37:ab:81:c5:26:5d:c6:d4:33:38:30:ba:2a:a2:8b:33:94:
99:97:e4:96:b6:e0:81:20:03:5f:6e:98:23:bb:e9:ad:29:a7:
cc:31:b5:b9:58:a2:d8:41:44:58:c6:d1:f2:38:78:41:f9:de:
3f:4d:33:50:dd:f2:23:9b:ea:14:9c:c4:8b:c9:76:01:77:be:
4f:35:7a:d8:00:75:5c:09:78:a9:a3:4c:e8:3f:68:b6:28:f6:
0c:c7:54:75:8f:2f:f4:48:b5:8b:db:d0:29:9b:ac:9d:0b:fb:
ff:c3:10:3d:da:f4:ff:1b:0a:08:30:40:ad:ac:df:60:25:01:
60:08:0f:c9:31:34:52:61:5f:72:32:a8:7d:91:23:56:c7:da:
cc:5f:e4:db:9b:e2:16:95:fd:26:37:9d:87:2d:cc:50:88:61:
24:35:8b:d7:28:85:70:8e:be:5a:e4:d3:87:26:90:59:a4:11:
34:f0:27:60:91:14:2a:6b:e0:4b:27:81:14:61:6e:72:da:ec:
4e:72:c0:23:9c:3e:c3:cf:ed:ed:30:6e:cc:be:14:2d:0f:e6:
cd:1f:4f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:48 2024 by rpki-client on console.sobornost.net