Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/227e6b-02e4-4108-8b33-63dd275300bc/1/M8ippMObdGTmP6CGwh9BUdO_3Yw.roa
File: M8ippMObdGTmP6CGwh9BUdO_3Yw.roa (raw, json)
Hash identifier: D0QTw5T3fpF22vnc15zHkoUCCcJXCHGi233yZdIN5IE=
Subject key identifier: 33:C8:A9:A4:C3:9B:74:64:E6:3F:A0:86:C2:1F:41:51:D3:BF:DD:8C
Certificate issuer: /CN=819901b64fe22656b8f2db260b453f279352b7d0
Certificate serial: 01856F5DEA36FB94F4283AC470DC30253868
Authority key identifier: 81:99:01:B6:4F:E2:26:56:B8:F2:DB:26:0B:45:3F:27:93:52:B7:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZkBtk_iJla48tsmC0U_J5NSt9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/227e6b-02e4-4108-8b33-63dd275300bc/1/M8ippMObdGTmP6CGwh9BUdO_3Yw.roa
Signing time: Sun 01 Jan 2023 22:05:03 +0000
ROA not before: Sun 01 Jan 2023 22:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50572
IP address blocks: 91.238.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:ea:36:fb:94:f4:28:3a:c4:70:dc:30:25:38:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=819901b64fe22656b8f2db260b453f279352b7d0
Validity
Not Before: Jan 1 22:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33c8a9a4c39b7464e63fa086c21f4151d3bfdd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:32:91:f5:79:c6:eb:e8:04:a3:d7:8a:d8:
c2:55:d7:cb:c7:c8:08:c1:e2:fd:0f:b7:51:1e:1f:
1a:0b:92:f5:63:30:4d:9c:61:0c:f9:69:91:70:89:
58:df:27:f5:ac:39:42:0f:5f:3c:13:5a:3a:36:bd:
20:6f:c4:1b:3b:f6:5e:20:b5:24:8b:b4:88:9d:1b:
e9:73:2c:50:16:d4:42:f3:b8:9a:44:ea:e8:ce:9e:
9d:fd:c3:5f:fb:d5:b1:7f:90:ba:8c:eb:09:2e:39:
bf:69:ad:60:31:0f:81:37:fb:38:41:64:a6:e3:74:
4a:85:db:c9:92:15:b2:dc:18:2a:75:0d:09:f3:00:
13:0c:f5:16:c5:df:4d:8b:a9:04:3a:f8:b8:bb:19:
28:b8:c1:b4:fd:9d:0d:5f:1e:84:87:20:31:e3:56:
be:5e:8f:8f:af:c9:aa:92:48:17:33:2b:5d:9d:73:
ae:8f:15:02:ea:ed:11:9c:bb:30:2e:11:10:99:df:
af:dc:f0:7f:f1:db:17:e4:f2:f2:3d:89:f7:99:2d:
f0:a1:5c:cc:e1:11:9d:6e:c5:76:e0:8e:8b:8d:44:
11:b3:88:3b:6c:73:89:d6:ed:3e:87:c6:5a:4f:c9:
35:e2:0a:f7:76:68:f2:88:dd:35:73:d7:b1:36:1d:
8b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C8:A9:A4:C3:9B:74:64:E6:3F:A0:86:C2:1F:41:51:D3:BF:DD:8C
X509v3 Authority Key Identifier:
keyid:81:99:01:B6:4F:E2:26:56:B8:F2:DB:26:0B:45:3F:27:93:52:B7:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZkBtk_iJla48tsmC0U_J5NSt9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/227e6b-02e4-4108-8b33-63dd275300bc/1/M8ippMObdGTmP6CGwh9BUdO_3Yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/227e6b-02e4-4108-8b33-63dd275300bc/1/gZkBtk_iJla48tsmC0U_J5NSt9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.51.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f5:4f:78:98:65:e7:bc:76:a2:7b:29:f5:6d:9f:4a:c6:0c:
33:8e:b2:98:b3:4e:45:e6:b4:14:6d:1d:fd:57:f0:b7:4a:6a:
38:b6:b4:5a:ac:40:16:37:45:dd:3e:5b:5e:7f:c7:c3:91:0f:
75:28:fc:ed:f3:83:0e:79:5d:1f:23:49:44:7a:96:bf:ce:c3:
da:e4:b2:ed:a7:30:89:4a:4a:da:9a:c0:25:1e:2b:43:4c:27:
88:95:68:be:ea:c0:ba:ef:e0:39:e5:80:f1:bd:2e:a4:e4:16:
c5:04:9b:b9:5d:8b:ac:43:8c:f1:70:d9:70:39:13:05:e0:66:
81:ea:4a:f4:24:ad:c6:95:37:d8:8b:ed:fb:cf:ff:86:b8:a2:
16:64:f6:8e:50:c2:d9:77:01:5b:6e:5f:d9:64:d8:13:e5:f2:
e6:86:68:90:16:e2:63:54:8d:f2:50:42:11:77:ea:98:d2:57:
0d:3e:82:c3:b4:63:87:84:5a:86:98:69:06:57:a8:e5:34:dc:
a9:66:b2:09:6d:b4:63:10:68:cf:12:03:e3:47:59:c6:f4:58:
41:df:be:5b:cd:e5:aa:fe:62:c4:6c:7e:48:5e:52:55:0d:3f:
73:f1:01:58:46:a5:24:4e:cf:29:d9:d1:95:1b:2c:fb:3e:dd:
f5:9c:e6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:49 2024 by rpki-client on console.sobornost.net