Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/5m6Er2DdJUsLedaeTAh9Oghh3N8.roa
File: 5m6Er2DdJUsLedaeTAh9Oghh3N8.roa (raw, json)
Hash identifier: jyygX+9xvAmmQjH2k1ugaACUQXBFkXZlklx005jnP1k=
Subject key identifier: E6:6E:84:AF:60:DD:25:4B:0B:79:D6:9E:4C:08:7D:3A:08:61:DC:DF
Certificate issuer: /CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Certificate serial: 018CC94E41F47B2313C0744786E831B623E8
Authority key identifier: A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/5m6Er2DdJUsLedaeTAh9Oghh3N8.roa
Signing time: Tue 02 Jan 2024 08:33:18 +0000
ROA not before: Tue 02 Jan 2024 08:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5413
IP address blocks: 185.99.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 12:58:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:41:f4:7b:23:13:c0:74:47:86:e8:31:b6:23:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Validity
Not Before: Jan 2 08:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e66e84af60dd254b0b79d69e4c087d3a0861dcdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:55:73:24:1a:5e:55:b0:99:e4:a5:6b:4a:a0:
03:bb:4d:ff:49:49:bf:eb:33:69:d2:b7:1e:ab:d6:
ed:11:c7:e7:b0:c2:db:3e:21:f2:d5:8c:66:b4:59:
08:a7:06:f6:ab:9b:eb:e1:4f:4c:e6:d6:15:7c:5a:
76:68:d0:b6:3e:4d:58:77:0f:44:f1:ec:03:2e:37:
aa:c3:07:c7:f4:d1:8f:2c:62:ce:b8:15:af:8b:ab:
52:39:a3:12:13:a7:8b:38:8b:da:b5:90:b6:a4:ad:
9a:42:41:1b:86:ff:fa:f9:e9:a2:00:e5:db:56:33:
84:12:1d:af:c5:e6:cb:5b:13:dc:9e:46:fd:c6:23:
ef:68:eb:77:6c:e2:e5:76:f6:2b:44:7b:3d:91:93:
79:43:0e:e5:7c:06:fa:f5:83:3d:c4:9b:6f:47:e7:
69:d0:c8:59:54:a2:5e:0e:d1:12:37:89:02:72:10:
c5:2f:1b:37:a3:1d:1c:18:ba:bd:05:ee:86:c4:4e:
84:89:5e:bd:d8:d2:0e:38:ab:5e:a2:92:17:eb:9e:
cd:5c:c5:9e:d3:c1:f5:c3:a0:71:a3:f4:d1:6a:42:
13:bb:71:02:a6:19:e6:b3:17:f7:bf:01:4a:d9:f7:
d0:24:ce:1a:4b:67:2a:94:ae:bf:cd:48:8c:b5:39:
4e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6E:84:AF:60:DD:25:4B:0B:79:D6:9E:4C:08:7D:3A:08:61:DC:DF
X509v3 Authority Key Identifier:
keyid:A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/5m6Er2DdJUsLedaeTAh9Oghh3N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.255.0/24
Signature Algorithm: sha256WithRSAEncryption
77:df:38:ff:3c:55:b6:a9:bc:2e:8c:3c:ad:3b:40:86:af:ae:
c1:d7:21:b9:6f:13:42:18:23:9d:cf:70:f0:9c:dd:ce:c9:30:
ef:54:43:3e:f5:67:d8:50:42:b6:93:6a:66:b7:71:75:19:2d:
13:2d:57:4a:05:8d:05:1e:ac:c2:ec:3f:9a:70:bc:51:5b:5c:
b5:0a:38:db:2d:92:cb:0d:a2:88:d4:4f:1c:20:76:bd:43:71:
a5:27:13:2a:49:44:71:83:e8:9f:a0:4e:20:c9:a4:18:e3:79:
ac:fc:f3:76:4d:5e:a5:65:ae:55:58:de:8c:10:ba:1e:83:ce:
8c:bc:65:02:88:4d:8d:ba:af:05:81:b3:ea:87:c3:f9:89:6b:
4a:18:e7:ee:1c:91:44:a5:c6:ea:22:c5:d3:f0:a0:89:ee:89:
ad:e4:fb:ac:03:8d:32:74:7f:18:c8:ea:96:c0:28:51:49:fc:
85:b2:0d:68:e8:42:1e:3b:99:f8:78:4b:f6:f1:6c:6b:ae:05:
f9:d5:ba:90:95:78:d3:52:46:fa:0e:8e:05:53:aa:4e:07:65:
02:02:7f:f4:e4:9e:de:89:7e:e7:57:4f:6e:ab:02:70:5e:17:
be:a7:23:5b:ce:66:be:13:43:76:39:10:ca:ec:4a:da:b8:9b:
7c:9d:5f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 18:13:38 2024 by rpki-client on console.sobornost.net