Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/COZUIC87NyoCAOalOXsjcL6uyls.roa
File: COZUIC87NyoCAOalOXsjcL6uyls.roa (raw, json)
Hash identifier: DLXGUjDPDUdYk7VArOXy14pFRSfELf0lLVsdNQkow90=
Subject key identifier: 08:E6:54:20:2F:3B:37:2A:02:00:E6:A5:39:7B:23:70:BE:AE:CA:5B
Certificate issuer: /CN=7f03a1f8c334fdbf4b78def0c592ff0490ddf4b0
Certificate serial: 01856BEED8E71B34540963E5E204B6710671
Authority key identifier: 7F:03:A1:F8:C3:34:FD:BF:4B:78:DE:F0:C5:92:FF:04:90:DD:F4:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fwOh-MM0_b9LeN7wxZL_BJDd9LA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/COZUIC87NyoCAOalOXsjcL6uyls.roa
Signing time: Sun 01 Jan 2023 06:04:53 +0000
ROA not before: Sun 01 Jan 2023 06:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.13.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:d8:e7:1b:34:54:09:63:e5:e2:04:b6:71:06:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f03a1f8c334fdbf4b78def0c592ff0490ddf4b0
Validity
Not Before: Jan 1 06:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08e654202f3b372a0200e6a5397b2370beaeca5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fd:08:a9:4a:3b:bb:e5:48:ea:88:76:d5:d1:
dc:30:b9:06:41:51:ec:32:6b:b6:c9:1c:44:6e:8e:
e3:e5:e1:f4:43:26:69:c9:e9:9c:66:6c:a8:00:91:
f0:e1:3a:27:2a:cf:84:bb:6e:52:bd:ef:5f:2e:03:
f3:4c:31:21:84:d4:18:06:d2:c6:13:0c:d7:d7:c6:
8d:62:4c:cc:47:e7:4c:7b:27:0a:72:05:76:08:6e:
2c:1f:db:20:bf:6d:fb:4b:9c:71:db:ce:ba:c1:43:
82:4f:58:ca:ab:41:84:4c:25:ae:f9:ac:d1:61:b3:
c2:12:1c:b6:cb:b9:0c:c9:fa:f4:6d:35:9e:fa:4b:
7f:19:f1:c6:0b:8e:fb:a3:9e:85:30:78:5e:1b:6a:
bf:28:2b:12:7e:22:68:df:7e:c0:c5:91:e9:6f:85:
4a:01:f5:ec:47:d7:25:82:48:d2:19:b5:df:3e:47:
1d:83:84:a8:32:4c:7c:e0:ce:64:86:6b:17:05:cc:
c5:c8:e3:6c:72:ac:c3:08:13:f6:f6:34:fb:87:e3:
62:8a:9c:bb:9a:0c:e2:91:55:9e:e7:4a:91:ee:ff:
8b:69:d1:78:a1:44:e9:1a:96:b6:63:02:0d:2f:09:
63:85:b5:b7:51:91:0a:17:96:f4:3c:ea:37:d8:cd:
33:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E6:54:20:2F:3B:37:2A:02:00:E6:A5:39:7B:23:70:BE:AE:CA:5B
X509v3 Authority Key Identifier:
keyid:7F:03:A1:F8:C3:34:FD:BF:4B:78:DE:F0:C5:92:FF:04:90:DD:F4:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fwOh-MM0_b9LeN7wxZL_BJDd9LA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/COZUIC87NyoCAOalOXsjcL6uyls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/3fe1a0-c6fd-4bc4-aae1-9ee006942b4b/1/fwOh-MM0_b9LeN7wxZL_BJDd9LA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:fd:88:44:7d:cf:04:fd:64:07:cb:2d:37:74:20:33:5d:f1:
ec:f7:9c:cd:75:8a:5e:f8:62:58:1a:25:ef:a9:ae:53:c6:12:
48:e7:4a:96:56:bf:3d:2c:b6:b4:cd:66:e0:8a:72:af:9e:94:
54:17:da:cf:10:29:1c:fe:85:d7:31:4d:02:8d:7b:4b:6a:bb:
76:50:85:9e:5f:b3:d0:15:d4:b6:58:8e:37:06:ac:c6:52:15:
64:ab:08:db:d5:29:b2:ff:13:62:e5:ff:20:69:21:3d:09:29:
d8:21:0c:cb:a6:fa:fa:91:0e:64:dd:7e:e8:f8:02:46:33:3d:
46:cd:39:aa:e7:cf:61:1a:0d:70:eb:f4:87:95:60:5c:32:97:
57:b3:8e:3c:14:69:67:99:0f:ce:19:62:9c:e0:ef:bc:4c:a7:
0a:58:cc:48:89:e4:bd:90:cf:ef:00:a5:9c:97:74:41:69:cc:
0b:a1:e0:ac:a2:f1:c2:e7:fd:64:d0:7d:02:e9:27:c8:78:24:
66:a6:2d:e9:ff:df:02:e4:bb:4d:bf:ac:d3:bc:48:8d:4b:e2:
e6:6b:66:a9:6d:0b:57:82:23:02:26:d7:07:fd:c7:59:45:68:
43:56:a9:6e:5f:2c:7b:01:96:77:e1:2a:05:ef:e0:79:c6:95:
fc:e1:15:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:33 2024 by rpki-client on console.sobornost.net