Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/0b40d0-c637-42c1-9ba8-41b22a957ec0/1/mh09Y3yu5O9jp8GRTJ4-nn_rAWQ.roa
File: mh09Y3yu5O9jp8GRTJ4-nn_rAWQ.roa (raw, json)
Hash identifier: Vph4wZw9CJh7DxQsRVxyN1q+OqKKzf8sWuUimaBGvUw=
Subject key identifier: 9A:1D:3D:63:7C:AE:E4:EF:63:A7:C1:91:4C:9E:3E:9E:7F:EB:01:64
Certificate issuer: /CN=3f5969ad74a1e033da9769db80c15288e6173644
Certificate serial: 018964C255C039C626A47E06E40E00C41D2A
Authority key identifier: 3F:59:69:AD:74:A1:E0:33:DA:97:69:DB:80:C1:52:88:E6:17:36:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P1lprXSh4DPal2nbgMFSiOYXNkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/0b40d0-c637-42c1-9ba8-41b22a957ec0/1/mh09Y3yu5O9jp8GRTJ4-nn_rAWQ.roa
Signing time: Mon 17 Jul 2023 16:50:04 +0000
ROA not before: Mon 17 Jul 2023 16:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 91.209.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c2:55:c0:39:c6:26:a4:7e:06:e4:0e:00:c4:1d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f5969ad74a1e033da9769db80c15288e6173644
Validity
Not Before: Jul 17 16:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a1d3d637caee4ef63a7c1914c9e3e9e7feb0164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e0:1c:10:6c:17:59:52:1a:36:fc:45:03:d1:
86:9e:07:56:ee:78:b5:ad:d2:f0:da:0f:fd:7a:db:
63:9b:16:0c:2e:e6:fb:c0:66:a0:5a:b1:57:90:b9:
41:36:76:29:6f:fe:b2:dd:2d:b9:92:df:f5:9a:2e:
bc:9b:d3:c2:5d:cd:82:fd:56:05:bb:ce:b5:94:46:
2c:2c:51:36:12:ac:a7:f9:e1:5b:86:3d:0d:f5:7b:
85:6f:63:fd:46:49:d5:f9:85:26:2f:5f:1a:55:ff:
28:21:50:29:30:76:1d:3c:21:3d:c6:88:9b:47:96:
18:7b:82:9c:6f:d3:6e:c5:d3:7d:bd:a9:27:56:2f:
4c:f7:63:24:24:55:f6:f8:04:6f:1b:46:1e:87:6a:
7c:fd:2d:17:23:8d:8a:de:3b:55:0c:82:cd:75:df:
cf:de:82:f8:ab:b2:b5:7a:32:01:17:cd:65:a5:f1:
77:a8:30:0c:82:01:d7:3b:9c:a8:4f:8a:ed:93:3b:
5c:c2:32:64:7a:89:4f:0a:6c:28:67:27:74:61:78:
b9:23:80:64:b1:94:ca:a3:ba:d6:cc:86:f3:22:9d:
69:c3:f5:7f:a4:4b:a9:2f:68:16:00:0c:65:50:60:
aa:94:c7:03:2b:ff:10:51:4e:58:96:e8:c7:d6:34:
7b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1D:3D:63:7C:AE:E4:EF:63:A7:C1:91:4C:9E:3E:9E:7F:EB:01:64
X509v3 Authority Key Identifier:
keyid:3F:59:69:AD:74:A1:E0:33:DA:97:69:DB:80:C1:52:88:E6:17:36:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P1lprXSh4DPal2nbgMFSiOYXNkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/0b40d0-c637-42c1-9ba8-41b22a957ec0/1/mh09Y3yu5O9jp8GRTJ4-nn_rAWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/0b40d0-c637-42c1-9ba8-41b22a957ec0/1/P1lprXSh4DPal2nbgMFSiOYXNkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.31.0/24
Signature Algorithm: sha256WithRSAEncryption
75:d1:1b:90:53:53:35:d8:c2:8a:7b:a4:1a:4c:e2:40:35:86:
29:8b:31:6e:c2:08:97:3a:56:d8:b1:ed:9d:05:10:c6:52:91:
51:81:78:2a:7f:c1:06:6b:a3:48:3f:49:5e:fc:02:13:b5:26:
01:16:61:dd:d6:23:6a:25:77:04:60:16:20:d8:97:97:a3:d4:
fa:4a:b3:fd:7c:f2:f2:c9:1c:76:9c:3d:4f:39:d8:c2:62:4f:
ec:aa:24:a8:aa:7a:24:12:c1:26:8a:aa:d9:17:43:a0:bf:a3:
45:7e:0e:1b:a4:ce:6d:5d:c4:73:bd:45:88:f1:5c:af:9b:8b:
54:89:a7:f3:cf:ea:54:29:2d:49:2d:c4:c7:69:4a:49:e7:69:
31:48:d6:f1:05:dc:4c:28:10:7d:fe:24:6b:a4:d4:d8:0c:84:
2f:3b:76:34:d3:ff:39:d1:6e:4a:e1:d7:03:18:29:e3:8e:07:
ff:61:68:b6:62:b1:71:79:56:2f:3c:2d:f3:fb:a6:74:c0:50:
36:a9:c3:47:e9:8b:9f:80:6e:df:48:9d:58:f3:77:7d:e9:8d:
6a:e3:a6:58:12:ec:52:c3:ec:4c:af:59:35:74:d9:da:dc:1b:
83:af:67:05:77:09:66:d2:58:79:37:42:c8:24:6c:bf:34:35:
35:74:20:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:37 2024 by rpki-client on console.sobornost.net