Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/I3I4IL8X-2Lqqc7QDzF7kZw-6fQ.roa
File: I3I4IL8X-2Lqqc7QDzF7kZw-6fQ.roa (raw, json)
Hash identifier: CVkaODlMgLLa0C+yUsqWhgOnNEUN5jBKzS+upd85cEM=
Subject key identifier: 23:72:38:20:BF:17:FB:62:EA:A9:CE:D0:0F:31:7B:91:9C:3E:E9:F4
Certificate issuer: /CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Certificate serial: 018570398E9DFD44ABF81FB184C4EFE98D5F
Authority key identifier: 70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/I3I4IL8X-2Lqqc7QDzF7kZw-6fQ.roa
Signing time: Mon 02 Jan 2023 02:04:58 +0000
ROA not before: Mon 02 Jan 2023 02:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42675
IP address blocks: 91.226.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:8e:9d:fd:44:ab:f8:1f:b1:84:c4:ef:e9:8d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7001e422227fa44cc5cb95d2a9dcce0fa5b89c07
Validity
Not Before: Jan 2 02:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23723820bf17fb62eaa9ced00f317b919c3ee9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e4:e8:67:d9:b3:e2:40:01:33:f4:ee:0a:23:
34:01:06:01:3c:ff:97:35:f1:62:a8:9d:27:13:64:
cc:1f:c4:24:d3:92:c6:b8:6b:d4:6e:a7:01:93:cd:
71:e6:eb:85:28:30:eb:bc:0a:f2:44:33:b3:09:06:
ad:88:91:58:0c:d7:bb:12:4b:fc:89:43:10:a4:c6:
21:d9:7b:2d:7d:38:9c:ef:28:f3:31:a7:db:ed:d8:
f7:8f:24:3a:71:18:07:d7:cf:8d:53:87:85:87:f3:
9d:00:5c:3a:74:0e:b7:07:f2:53:6c:31:8f:00:53:
26:2f:56:16:a0:8e:00:96:41:56:15:7c:af:50:6e:
22:46:e7:27:c1:79:9e:dd:ce:2d:34:b6:ba:1c:3a:
8c:eb:a9:c8:d6:3b:b5:bd:29:de:dc:4d:2b:bc:dc:
c5:db:fd:ed:7b:b5:1e:78:28:07:da:18:3b:c8:a3:
06:46:b0:0a:0b:fb:64:16:69:14:82:f8:5e:8e:2b:
1e:2b:dc:73:7d:e8:19:76:b3:d6:84:95:9e:24:90:
db:f3:c4:3b:29:5d:6b:40:e9:e7:bb:0e:c4:20:6a:
21:76:dc:54:c4:4d:0a:dd:fa:20:3f:18:aa:93:6a:
58:28:6c:c8:7a:ba:68:d8:a1:3f:d3:4b:b3:a7:91:
c7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:72:38:20:BF:17:FB:62:EA:A9:CE:D0:0F:31:7B:91:9C:3E:E9:F4
X509v3 Authority Key Identifier:
keyid:70:01:E4:22:22:7F:A4:4C:C5:CB:95:D2:A9:DC:CE:0F:A5:B8:9C:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/I3I4IL8X-2Lqqc7QDzF7kZw-6fQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/992d03-883b-404d-887e-f2435d5cf37b/1/cAHkIiJ_pEzFy5XSqdzOD6W4nAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.221.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b5:37:3e:52:05:03:88:d9:6e:18:c1:18:30:a2:b8:f1:ec:
16:5b:88:18:2e:fb:1f:be:6d:94:56:4b:20:88:38:1d:1d:3e:
6b:f6:4b:99:cb:ad:b2:33:ca:0f:87:45:1c:52:31:93:10:08:
b0:1f:09:3c:c9:25:61:22:82:ea:7f:bf:7f:87:79:88:a5:ba:
fa:69:1d:b4:a1:28:19:48:8d:a0:16:3c:b6:40:1d:36:03:bc:
82:da:71:f4:56:44:15:de:cc:66:81:ee:cf:0f:57:fb:69:1c:
b6:b1:00:3d:fb:ba:e6:79:c0:d4:a0:eb:32:e6:7a:1b:a7:26:
b7:83:28:dd:03:fb:ca:b9:4c:e3:93:a2:b0:15:d5:56:52:0b:
d5:04:ac:45:e0:ef:b8:2c:09:a6:55:57:56:40:13:62:4f:6c:
aa:4b:fd:34:e9:ca:9a:a3:9d:c7:f3:15:29:82:a0:90:38:a8:
db:71:a9:fe:9c:77:6d:6c:08:59:c3:af:a9:63:c3:2d:8a:66:
38:1d:f6:4a:a2:7b:59:78:13:b4:bb:7a:68:b6:ef:8c:96:a2:
a9:0b:40:b8:16:4d:2c:00:90:7c:49:dc:5c:58:d8:7b:0d:44:
a1:53:cb:14:0e:92:1a:02:54:c3:21:07:df:50:b3:87:cd:b7:
cc:75:4a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:17 2024 by rpki-client on console.sobornost.net