Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/ESFPGIYAnmOK9rqyExB8_9prsCo.roa
File: ESFPGIYAnmOK9rqyExB8_9prsCo.roa (raw, json)
Hash identifier: yiEF5Xw5ihdJdWXRNSdgPFUlVVPaBboD1QMLwZ9Rfuw=
Subject key identifier: 11:21:4F:18:86:00:9E:63:8A:F6:BA:B2:13:10:7C:FF:DA:6B:B0:2A
Certificate issuer: /CN=4987941e74c1c03e7aba3b878530095eb6fa874e
Certificate serial: 01856F1D994E95A0AF6C75D0993843495EB6
Authority key identifier: 49:87:94:1E:74:C1:C0:3E:7A:BA:3B:87:85:30:09:5E:B6:FA:87:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYeUHnTBwD56ujuHhTAJXrb6h04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/ESFPGIYAnmOK9rqyExB8_9prsCo.roa
Signing time: Sun 01 Jan 2023 20:54:48 +0000
ROA not before: Sun 01 Jan 2023 20:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200736
IP address blocks: 45.66.40.0/22 maxlen: 24
2a10:9300::/29 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:99:4e:95:a0:af:6c:75:d0:99:38:43:49:5e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4987941e74c1c03e7aba3b878530095eb6fa874e
Validity
Not Before: Jan 1 20:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11214f1886009e638af6bab213107cffda6bb02a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:18:26:93:8f:51:d9:74:ff:fd:fd:2a:64:34:
f5:d2:47:2e:47:21:dc:e7:62:75:73:0b:ce:fe:e6:
92:b8:7d:e0:46:82:e7:89:08:55:01:9c:62:e5:26:
25:80:05:e3:27:46:8c:98:11:b9:a5:13:ac:4f:35:
da:40:ca:fe:1a:48:bb:64:7c:b6:f3:d8:76:b0:39:
08:82:24:0c:c7:39:9e:bf:89:5b:bd:9c:99:c3:db:
b6:ee:5a:51:9b:e3:fb:5d:f0:78:80:f9:2f:67:71:
6e:d0:91:63:be:05:dd:fd:f1:3e:15:6d:3a:99:23:
31:63:a0:36:83:6d:c5:8c:3e:38:11:95:f8:69:83:
22:14:3f:23:c5:62:fa:34:38:dd:34:2a:c8:0a:e0:
8e:3a:a2:74:ec:c9:e7:2e:2f:b4:31:55:cd:37:26:
d7:8b:3c:7d:d1:c5:a0:55:ad:ec:29:b8:fd:4b:b3:
a1:bc:a2:70:f3:76:3e:bf:2b:01:30:ad:c7:c7:d8:
1d:e4:53:0b:94:53:db:d5:85:14:d0:e0:63:41:ad:
e6:65:2a:41:1f:65:c0:f4:bd:8a:79:5f:68:bf:57:
cc:06:1b:c6:78:6a:79:c9:1f:f9:c4:ee:74:08:32:
b4:a0:c8:76:0d:17:10:16:08:1e:c4:50:1b:1c:44:
57:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:21:4F:18:86:00:9E:63:8A:F6:BA:B2:13:10:7C:FF:DA:6B:B0:2A
X509v3 Authority Key Identifier:
keyid:49:87:94:1E:74:C1:C0:3E:7A:BA:3B:87:85:30:09:5E:B6:FA:87:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYeUHnTBwD56ujuHhTAJXrb6h04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/ESFPGIYAnmOK9rqyExB8_9prsCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/SYeUHnTBwD56ujuHhTAJXrb6h04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.40.0/22
IPv6:
2a10:9300::/29
Signature Algorithm: sha256WithRSAEncryption
73:90:45:9e:5d:e1:22:d8:f5:19:6b:85:c8:86:f7:ee:72:e5:
06:ae:56:81:c7:e9:65:8f:5a:3d:bc:a9:ac:3c:f1:8c:bd:68:
fc:d9:20:a3:85:8c:ff:87:c4:a1:a8:30:1d:1d:d3:61:a7:07:
f0:77:c6:23:15:68:b1:88:dd:84:00:80:aa:30:45:c3:52:a0:
33:7f:6e:04:ae:30:21:57:21:81:62:bf:af:01:38:18:34:8a:
eb:e0:ec:7f:53:6f:54:f0:99:38:84:4c:97:7d:2d:2f:7b:3a:
e2:56:84:88:d6:e1:09:c5:96:7f:4f:8b:9e:59:da:b6:d0:20:
c6:8e:58:9e:d4:b8:16:32:50:79:9b:54:31:c2:2d:d1:e1:0b:
af:de:47:d0:e5:d3:1f:79:e4:5f:5a:1a:87:d0:cc:fb:6a:31:
1d:fe:93:59:4c:0d:e1:76:d3:7e:e3:53:8d:0a:f6:b2:6a:e5:
dc:f5:c7:1a:cd:f1:9b:1b:34:44:61:98:87:1b:b8:99:28:c7:
06:f4:63:71:ba:56:b8:c4:73:d8:e4:10:db:69:eb:5f:ab:67:
de:8c:80:dd:d1:70:9b:04:10:96:fb:51:d1:7f:ae:88:98:4a:
37:ed:c0:fc:3f:fe:14:84:b0:64:64:73:1e:93:05:73:71:d4:
3a:9a:11:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net