Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/7EkGkXZ99YN392GVfY5PNtJ64nw.roa
File: 7EkGkXZ99YN392GVfY5PNtJ64nw.roa (raw, json)
Hash identifier: uUUJ5TuU9lTlj/6YBqrlbVv2cbRjrMoZIOBgYzI+/yQ=
Subject key identifier: EC:49:06:91:76:7D:F5:83:77:F7:61:95:7D:8E:4F:36:D2:7A:E2:7C
Certificate issuer: /CN=93dc45ffe13f841f188af743bd7dc34ed54805d4
Certificate serial: 01856D0AC6EC958A91BC550FC1A7834282AE
Authority key identifier: 93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/7EkGkXZ99YN392GVfY5PNtJ64nw.roa
Signing time: Sun 01 Jan 2023 11:15:00 +0000
ROA not before: Sun 01 Jan 2023 11:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205660
IP address blocks: 185.188.2.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:c6:ec:95:8a:91:bc:55:0f:c1:a7:83:42:82:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93dc45ffe13f841f188af743bd7dc34ed54805d4
Validity
Not Before: Jan 1 11:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec490691767df58377f761957d8e4f36d27ae27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a3:4c:51:29:d6:dd:3b:2f:22:83:2a:be:ec:
ee:47:97:24:8c:8f:4b:e5:72:d5:f5:3c:54:28:71:
0b:a4:3c:ac:c6:5a:31:9d:c5:9e:02:02:e5:e1:43:
3d:1c:cd:87:48:09:9f:42:29:a8:9f:b1:5e:5b:99:
30:23:e1:e3:53:52:d7:d7:58:dc:c4:83:71:22:2a:
18:d0:17:94:84:ca:65:51:28:b5:4b:93:2b:e5:88:
2b:24:2e:19:1d:c9:8d:54:a9:e2:ff:ca:f1:5b:56:
65:48:a4:fa:bb:0d:d9:fd:a0:26:f7:a8:8f:0f:c5:
eb:e5:20:79:f2:d7:75:2f:fc:6e:0b:78:b7:be:70:
ba:b2:ab:40:8d:52:c6:dd:90:05:9e:dc:4c:49:9d:
88:37:68:07:ed:07:03:4d:ab:cc:74:a2:b7:24:e8:
79:f8:74:d9:9b:23:b0:de:df:d9:d4:24:7b:d2:d0:
a3:95:46:f1:b2:45:b4:1d:08:cf:1a:36:69:5b:84:
bd:14:fc:0e:20:0f:82:27:57:f8:c8:57:28:99:b6:
7d:71:a9:f3:05:3d:05:97:d3:e5:20:f3:97:cd:0e:
06:a9:7a:04:6d:9b:3d:30:09:cc:0a:bd:0d:85:04:
9a:3e:19:82:7f:83:c1:46:47:17:8a:4e:16:f3:07:
01:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:49:06:91:76:7D:F5:83:77:F7:61:95:7D:8E:4F:36:D2:7A:E2:7C
X509v3 Authority Key Identifier:
keyid:93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/7EkGkXZ99YN392GVfY5PNtJ64nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/k9xF_-E_hB8YivdDvX3DTtVIBdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.2.0/23
Signature Algorithm: sha256WithRSAEncryption
82:85:b9:ee:52:25:c9:2e:63:2b:38:b3:98:59:a4:22:e5:a0:
8f:5e:90:ba:ab:13:47:ed:6b:3e:06:9b:ef:3b:64:88:64:38:
b6:c6:18:de:00:12:fd:eb:0d:b8:40:9c:ac:7f:b7:a4:3d:fa:
f8:8c:80:33:d4:62:a7:1a:7c:b4:62:c3:7b:d8:c4:fd:94:1d:
40:ef:89:49:29:30:6f:c3:2a:da:00:96:0a:7d:ae:72:fc:bd:
1c:dc:ff:39:7d:f9:f1:84:d5:1b:ae:6d:6b:e4:29:99:8f:ac:
e6:a5:ab:2f:c7:b2:a7:f9:d1:b1:40:c5:42:46:13:8f:3d:d5:
1f:1f:1f:fc:63:80:36:49:79:31:07:92:de:51:36:43:9e:98:
81:1c:37:8f:6e:87:f3:02:9b:8e:b5:9b:10:9c:bf:cc:1c:9d:
c4:0e:2f:ef:33:23:0e:0d:64:28:46:b4:d4:8d:ca:0d:2e:71:
f8:32:c4:8e:1f:e6:8c:c6:de:4e:45:ac:a0:20:db:5d:a9:35:
8d:a6:b8:ef:5e:ba:f7:47:19:34:c9:31:8f:e4:b2:8b:3e:36:
2c:b1:ed:63:1e:59:0c:14:48:1d:e6:f8:8a:65:56:28:b5:79:
49:7b:46:bb:e1:c1:39:2d:f7:73:ae:22:6b:55:54:d5:bb:85:
17:a3:9c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:30 2024 by rpki-client on console.sobornost.net