Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/G0u5GV-D5IKmxS7ttQHDObFbeCk.roa
File: G0u5GV-D5IKmxS7ttQHDObFbeCk.roa (raw, json)
Hash identifier: IdcfBIYxt1H6Mr/70lHtNrrxaiXXcz5m7fVbD/A3DNM=
Subject key identifier: 1B:4B:B9:19:5F:83:E4:82:A6:C5:2E:ED:B5:01:C3:39:B1:5B:78:29
Certificate issuer: /CN=a4dc8a4e916aa3f78ef78047ac20d0d0f8a950f9
Certificate serial: 01856D93F0481EC47A9FC551823BD01E3F5C
Authority key identifier: A4:DC:8A:4E:91:6A:A3:F7:8E:F7:80:47:AC:20:D0:D0:F8:A9:50:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNyKTpFqo_eO94BHrCDQ0PipUPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/G0u5GV-D5IKmxS7ttQHDObFbeCk.roa
Signing time: Sun 01 Jan 2023 13:44:49 +0000
ROA not before: Sun 01 Jan 2023 13:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210302
IP address blocks: 193.202.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:f0:48:1e:c4:7a:9f:c5:51:82:3b:d0:1e:3f:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4dc8a4e916aa3f78ef78047ac20d0d0f8a950f9
Validity
Not Before: Jan 1 13:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b4bb9195f83e482a6c52eedb501c339b15b7829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:65:d7:d1:c3:98:9b:61:29:b7:ca:4b:64:bb:
7e:31:60:8d:50:b6:eb:3d:11:b1:36:ba:cc:d7:e6:
a3:bf:f6:9a:2e:f7:c2:bf:6b:3c:63:95:f5:92:94:
17:e6:b5:f8:6f:7c:ca:43:ef:f9:4e:80:9c:06:64:
8d:49:42:6a:76:98:2d:f5:cb:90:ba:79:dc:79:b5:
25:a3:ca:be:8b:b7:1b:9f:b4:17:99:34:8e:50:9e:
91:89:82:b7:7f:3d:e7:27:bd:5d:af:c6:4d:58:dd:
57:e8:5b:12:4e:c7:67:f0:94:8b:08:7f:8e:2c:d7:
3c:cb:49:11:cf:0e:3c:e5:3f:fc:95:18:f1:ca:bd:
b1:45:bf:9a:a9:2c:47:1d:d4:48:76:9b:ea:7f:90:
26:b2:d3:92:91:50:13:ab:6c:34:35:87:2d:69:e1:
25:31:99:2e:32:62:5a:84:46:bf:a3:ea:68:18:10:
06:04:e4:c0:31:62:e0:a8:67:aa:61:bb:7a:6f:35:
6b:09:9a:1c:0c:b7:92:b8:88:9b:c3:04:7c:08:fe:
82:16:4c:84:f9:85:65:5c:67:40:4c:0f:68:57:c4:
21:bd:89:73:91:05:90:e8:13:e0:27:17:df:bd:d5:
00:a9:a0:19:e1:ba:29:c3:e0:af:d4:53:35:1a:64:
ea:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4B:B9:19:5F:83:E4:82:A6:C5:2E:ED:B5:01:C3:39:B1:5B:78:29
X509v3 Authority Key Identifier:
keyid:A4:DC:8A:4E:91:6A:A3:F7:8E:F7:80:47:AC:20:D0:D0:F8:A9:50:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNyKTpFqo_eO94BHrCDQ0PipUPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/G0u5GV-D5IKmxS7ttQHDObFbeCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ae1b89-fd48-4b2d-a88e-966be4832815/1/pNyKTpFqo_eO94BHrCDQ0PipUPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.40.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:ca:90:c0:b7:5b:a9:71:e2:c6:49:4e:d6:a9:c2:a7:42:73:
d9:e3:96:c0:eb:42:a9:26:a7:a1:f7:3d:51:18:53:72:4d:50:
c3:99:31:93:a5:b1:ae:de:ac:ac:ae:a6:f7:d2:63:ee:65:ea:
e0:ce:58:60:a8:10:bb:7a:6b:4f:b2:7a:3c:d3:a5:14:00:2e:
ae:e0:d6:19:a4:3b:3f:a8:3e:18:fe:7c:57:ad:7c:90:ca:5b:
62:31:ad:38:b2:79:b8:3c:03:32:63:78:08:3b:15:d9:ee:4e:
ed:80:85:cf:ff:06:20:42:32:0d:71:8a:c7:73:fa:9a:f4:41:
8a:90:a7:eb:1d:51:a4:a4:79:94:d9:2b:1c:bb:64:94:91:d8:
67:fe:64:67:ae:06:e9:d1:ef:8c:a1:3e:a7:99:81:32:90:9a:
ca:3d:41:58:3f:04:46:8f:1e:83:7b:41:8f:4b:18:04:c2:d1:
79:44:13:6d:ea:2b:62:31:0a:9d:52:eb:7d:0e:0a:37:c2:9f:
01:47:b2:b3:bc:84:ff:b4:2d:37:da:4f:4d:24:52:7c:c9:b3:
19:db:b1:73:9f:4c:0f:1a:a9:3d:02:c7:f6:aa:a2:e1:6a:d6:
83:73:6a:3c:f9:f3:c9:47:f6:af:06:46:3e:9f:f4:e0:0f:12:
76:a0:27:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:35 2024 by rpki-client on console.sobornost.net