Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/tjuzsqxXdeZH5coBED3Hcw2cIP8.roa
File: tjuzsqxXdeZH5coBED3Hcw2cIP8.roa (raw, json)
Hash identifier: rG+4BmDQ2Av/wQJ8arv5qgYES+WzF1s7dLOXjz5uY40=
Subject key identifier: B6:3B:B3:B2:AC:57:75:E6:47:E5:CA:01:10:3D:C7:73:0D:9C:20:FF
Certificate issuer: /CN=585e4f4b4a9ef5531dfe50f41541c912a335fbf1
Certificate serial: 018570C2E0814702516849916C88919DC512
Authority key identifier: 58:5E:4F:4B:4A:9E:F5:53:1D:FE:50:F4:15:41:C9:12:A3:35:FB:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WF5PS0qe9VMd_lD0FUHJEqM1-_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/tjuzsqxXdeZH5coBED3Hcw2cIP8.roa
Signing time: Mon 02 Jan 2023 04:34:57 +0000
ROA not before: Mon 02 Jan 2023 04:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5610
IP address blocks: 195.246.97.0/24 maxlen: 24
195.246.96.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:e0:81:47:02:51:68:49:91:6c:88:91:9d:c5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=585e4f4b4a9ef5531dfe50f41541c912a335fbf1
Validity
Not Before: Jan 2 04:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b63bb3b2ac5775e647e5ca01103dc7730d9c20ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1e:fb:04:3a:c6:ae:46:41:35:92:1c:c0:56:
20:01:f7:55:b2:32:7a:e4:a5:1c:ac:38:30:80:94:
61:22:23:6c:4d:68:b8:d6:93:a6:71:31:bf:11:0b:
77:57:a6:eb:03:82:ad:84:ff:17:e7:75:84:47:cb:
b2:c1:dd:10:15:0b:ec:7b:df:c6:cd:6f:6f:5e:62:
67:93:a9:d2:e9:fb:1a:2d:92:62:b5:f0:87:7e:ed:
47:3d:84:be:9c:64:cc:1c:23:37:83:f9:61:f0:3e:
42:08:f1:d0:78:02:07:c2:a1:10:84:0d:c3:e4:63:
6c:31:f8:2f:57:c1:f3:20:be:ad:af:da:75:f6:d3:
45:fd:ae:8a:f3:51:10:c4:8e:4d:1a:65:e0:09:58:
00:16:58:a2:2e:ca:0d:71:8e:de:ee:05:fb:a0:30:
16:ed:7d:40:b4:7a:c1:92:5e:9b:5c:17:c5:9b:1e:
2e:9d:1f:f8:01:44:17:ba:23:6d:78:f4:72:2f:d6:
59:6a:04:97:0a:99:5c:66:01:8f:68:ad:91:eb:a3:
ed:5f:0a:43:d7:c7:17:b8:91:7f:1a:d9:9a:e5:10:
e5:26:a3:2e:80:22:55:0b:ee:80:63:33:91:1b:53:
90:07:47:54:2c:9e:c8:68:0b:b3:f9:40:f2:47:c0:
3b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3B:B3:B2:AC:57:75:E6:47:E5:CA:01:10:3D:C7:73:0D:9C:20:FF
X509v3 Authority Key Identifier:
keyid:58:5E:4F:4B:4A:9E:F5:53:1D:FE:50:F4:15:41:C9:12:A3:35:FB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WF5PS0qe9VMd_lD0FUHJEqM1-_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/tjuzsqxXdeZH5coBED3Hcw2cIP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/cfc4af-17e6-43de-921f-6baf3007905c/1/WF5PS0qe9VMd_lD0FUHJEqM1-_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.246.96.0/23
Signature Algorithm: sha256WithRSAEncryption
17:ae:47:6e:30:1d:21:94:62:a3:f7:2e:8a:0f:7f:c8:06:d5:
c0:fd:b1:96:b8:96:6c:be:c6:5a:a8:61:f9:65:07:17:3d:a7:
ca:a1:a3:8f:1b:15:33:3c:1d:9d:1b:29:d7:b6:1d:05:fc:2a:
b3:f6:80:28:40:2a:f5:b5:a8:fd:11:63:c5:bb:74:26:07:99:
75:e7:a6:84:c5:cc:88:1f:7b:b7:d8:6f:8b:85:93:f6:97:fc:
6b:15:49:3e:26:4e:15:30:9b:b4:d6:96:d6:7c:a3:c0:f4:5a:
60:0a:7f:99:e4:a5:d9:27:d5:d1:5f:78:8f:5d:f8:b5:90:3b:
5a:fc:4b:70:73:b5:a6:90:b6:8f:c4:65:14:0b:b9:c3:bc:e1:
a6:7e:3b:ad:db:a5:80:e4:22:3b:80:ae:d6:a6:b2:14:9c:ab:
56:6b:f4:ef:fa:59:63:21:18:8e:f9:a4:ea:e1:a3:83:04:1d:
87:b6:f5:ee:41:b6:a7:7c:7e:60:a7:06:39:94:77:f4:91:11:
c9:e0:f6:8c:87:a5:24:19:34:74:39:a4:9a:34:35:15:82:c9:
e4:af:ad:2d:25:71:83:48:e5:96:4e:bd:82:f0:0c:db:eb:bf:
9d:e5:f9:6e:c6:87:6b:ad:80:c9:20:fa:bc:b3:0b:6b:5c:7c:
69:4c:c0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:36:11 2024 by rpki-client on console.sobornost.net