Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/34bd6e-79a7-4126-8a32-2fd280e0d54a/1/1Sdhrv46tbhMZRRss0vtyxjniyo.roa
File: 1Sdhrv46tbhMZRRss0vtyxjniyo.roa (raw, json)
Hash identifier: qkH90vvqc7VWnilrq+YcaImX6atuYNRFDazejes5K5U=
Subject key identifier: D5:27:61:AE:FE:3A:B5:B8:4C:65:14:6C:B3:4B:ED:CB:18:E7:8B:2A
Certificate issuer: /CN=58f75ef0d630e1d086790ca0b78e7eef8e2acfbb
Certificate serial: 01856DE63C048A61A3EC3AA616805D5764B9
Authority key identifier: 58:F7:5E:F0:D6:30:E1:D0:86:79:0C:A0:B7:8E:7E:EF:8E:2A:CF:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WPde8NYw4dCGeQygt45-744qz7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/34bd6e-79a7-4126-8a32-2fd280e0d54a/1/1Sdhrv46tbhMZRRss0vtyxjniyo.roa
Signing time: Sun 01 Jan 2023 15:14:43 +0000
ROA not before: Sun 01 Jan 2023 15:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196725
IP address blocks: 151.252.96.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:3c:04:8a:61:a3:ec:3a:a6:16:80:5d:57:64:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58f75ef0d630e1d086790ca0b78e7eef8e2acfbb
Validity
Not Before: Jan 1 15:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d52761aefe3ab5b84c65146cb34bedcb18e78b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5d:10:54:02:70:f3:7b:c4:5b:8e:03:d5:81:
dc:29:25:e3:1e:5e:c7:e1:c4:b9:18:d7:f4:d5:a4:
5f:96:46:8b:99:33:de:e3:73:37:05:9b:7f:c8:83:
13:d2:54:d6:8f:2c:16:d8:0c:70:43:64:92:b5:c3:
e7:0f:3e:cb:cd:15:3f:51:4c:cf:72:2a:ef:35:ec:
3e:e8:21:6b:f4:04:30:45:84:1e:82:91:0c:65:50:
b4:f3:83:bd:8e:8c:89:93:99:42:63:b7:63:2f:e1:
d5:2c:5a:4e:14:06:d1:47:b8:16:0e:22:e1:6d:ce:
d9:eb:34:0b:d8:78:d3:f0:34:a4:1e:98:7a:1c:17:
7c:b9:d5:71:7b:af:78:48:50:69:c7:fa:a1:c5:96:
e6:83:8e:61:8f:30:38:39:bb:02:22:02:e0:da:55:
88:80:b2:d4:f0:0a:8f:19:43:54:4b:de:62:d4:5f:
fa:24:95:f2:56:ab:aa:1a:31:58:f4:2c:d3:f3:b9:
b6:20:e0:4c:05:bd:6f:5c:97:98:6d:7a:d6:e3:39:
3c:1f:30:64:74:44:39:b8:0b:33:ff:39:c4:fc:5d:
a7:d4:2e:d7:51:01:97:3d:73:4c:5c:b5:dc:cd:6b:
cc:44:5e:1b:00:f7:50:b8:3e:cc:2b:f5:af:5f:7f:
25:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:27:61:AE:FE:3A:B5:B8:4C:65:14:6C:B3:4B:ED:CB:18:E7:8B:2A
X509v3 Authority Key Identifier:
keyid:58:F7:5E:F0:D6:30:E1:D0:86:79:0C:A0:B7:8E:7E:EF:8E:2A:CF:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WPde8NYw4dCGeQygt45-744qz7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/34bd6e-79a7-4126-8a32-2fd280e0d54a/1/1Sdhrv46tbhMZRRss0vtyxjniyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/34bd6e-79a7-4126-8a32-2fd280e0d54a/1/WPde8NYw4dCGeQygt45-744qz7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.252.96.0/21
Signature Algorithm: sha256WithRSAEncryption
90:27:7f:ed:31:c7:34:3b:c0:84:20:2d:74:8c:3e:02:1a:e6:
aa:b7:ac:c5:44:26:d2:de:80:f1:15:95:1c:49:cf:fc:e3:dd:
d4:60:0d:93:7a:b6:b7:e9:42:32:59:44:93:34:26:f1:7d:a5:
36:45:b3:51:72:3a:bc:3b:ba:99:b4:f0:1d:a2:10:3c:af:9c:
73:24:9c:55:69:11:0b:c9:55:67:9c:ce:f7:e6:20:31:60:19:
69:f3:d4:7a:96:82:13:05:04:e1:3b:c7:18:1c:90:8f:be:70:
a3:e3:88:2c:e2:59:5f:9f:5e:07:32:34:89:ed:4c:cd:ce:90:
8b:28:53:54:fe:75:c8:b2:af:5e:8a:b0:1f:d8:a4:00:c6:1c:
96:9c:e4:23:54:22:94:6e:86:ee:62:b8:7d:44:ae:e1:13:79:
88:08:0b:dd:6e:93:c0:ad:84:4e:de:d5:1a:6d:5e:21:b2:17:
c0:b3:0d:0c:99:07:fc:96:3f:59:09:55:9b:ea:84:2a:27:34:
b1:c0:76:5c:39:af:29:2a:84:0d:36:29:5e:da:a8:62:f5:6d:
73:ab:52:c3:a7:f6:99:e7:01:4c:d7:c6:b4:58:74:ce:a8:fb:
9c:92:29:88:a5:2d:02:71:6f:3c:2e:9e:69:67:4d:58:02:84:
20:a4:0e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:28 2024 by rpki-client on console.sobornost.net