Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/uTL0CRdPXGVrHMjVgvKgJUwTVig.roa
File: uTL0CRdPXGVrHMjVgvKgJUwTVig.roa (raw, json)
Hash identifier: j1wU5uRqVofiirAVcYsPABJiW8f6n0pL6J9oiJKhBAg=
Subject key identifier: B9:32:F4:09:17:4F:5C:65:6B:1C:C8:D5:82:F2:A0:25:4C:13:56:28
Certificate issuer: /CN=bfe3542dd63fed250de5cb65f6eca487e7f47847
Certificate serial: 01856EF4338C526468B7158992735C753002
Authority key identifier: BF:E3:54:2D:D6:3F:ED:25:0D:E5:CB:65:F6:EC:A4:87:E7:F4:78:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-NULdY_7SUN5ctl9uykh-f0eEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/uTL0CRdPXGVrHMjVgvKgJUwTVig.roa
Signing time: Sun 01 Jan 2023 20:09:35 +0000
ROA not before: Sun 01 Jan 2023 20:09:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48590
IP address blocks: 195.70.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:33:8c:52:64:68:b7:15:89:92:73:5c:75:30:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3542dd63fed250de5cb65f6eca487e7f47847
Validity
Not Before: Jan 1 20:09:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b932f409174f5c656b1cc8d582f2a0254c135628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ce:ba:0d:21:12:9a:51:b9:5e:eb:4a:37:45:
4b:4b:b9:09:03:00:7e:37:ac:30:8e:7c:47:4b:b5:
3d:89:f7:17:89:cd:a4:01:b7:0a:ab:b3:bf:6c:c6:
3c:92:1e:aa:16:85:e6:53:13:3a:ec:0f:d0:c4:fc:
62:0c:7b:bb:65:d0:00:18:1b:21:44:33:97:98:6a:
68:a6:62:e3:6e:5b:56:13:bf:86:26:9e:c7:00:2c:
3e:ac:bd:92:33:5b:26:c7:f9:dd:38:d4:fe:6a:46:
5b:26:59:21:74:18:30:c3:5e:5d:dc:45:13:49:9f:
28:4a:d3:e1:be:5a:45:85:4a:d1:4a:43:ea:be:81:
89:5b:2f:15:3b:ae:6a:a2:38:4c:c1:54:1f:57:60:
36:e9:82:fd:6f:ea:22:0e:76:ae:c5:f4:57:c9:d5:
92:bf:01:48:7f:b0:fe:7d:c2:da:9d:7e:2b:2d:4b:
0e:8b:e6:57:18:6b:f7:93:9f:9f:f5:61:13:a0:e8:
87:0d:ec:be:9d:eb:9c:90:1f:6e:6b:71:21:59:38:
3a:c5:67:c6:43:68:67:9e:68:61:da:28:61:a9:63:
da:14:31:63:a4:5d:10:9c:d1:47:12:99:55:c6:3c:
ec:80:16:f1:64:e6:70:98:cb:94:c9:e2:8c:fa:32:
a1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:32:F4:09:17:4F:5C:65:6B:1C:C8:D5:82:F2:A0:25:4C:13:56:28
X509v3 Authority Key Identifier:
keyid:BF:E3:54:2D:D6:3F:ED:25:0D:E5:CB:65:F6:EC:A4:87:E7:F4:78:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-NULdY_7SUN5ctl9uykh-f0eEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/uTL0CRdPXGVrHMjVgvKgJUwTVig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b15658-10b6-4041-a3da-8d3a6d165da3/1/v-NULdY_7SUN5ctl9uykh-f0eEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.70.29.0/24
Signature Algorithm: sha256WithRSAEncryption
43:de:dd:c0:aa:09:b1:be:f2:07:7c:20:12:bf:13:a6:03:e8:
c3:30:37:88:c4:54:94:e0:d7:f7:35:64:47:2b:1c:f8:dc:cb:
89:b2:6f:28:3f:a5:d1:37:8d:aa:f2:ca:91:75:d0:53:57:5f:
bf:8a:a0:84:05:03:38:c8:ba:85:73:be:a4:bd:50:fc:5e:a6:
23:cf:f0:3a:9c:5a:72:e2:cf:1b:9d:c5:bc:79:05:6f:53:e0:
4d:0d:12:50:d5:45:98:da:ce:f6:0c:3e:f7:ed:ab:05:16:a4:
da:46:d8:6f:c6:e3:cc:4b:34:81:d2:f1:2c:57:66:43:07:1b:
27:36:42:e0:7d:0d:08:62:75:ff:24:c0:62:fb:10:b4:36:36:
ee:7b:bb:8a:b1:2c:2d:27:d8:ee:dd:6d:ed:79:0f:62:e2:fc:
2d:68:0c:e9:2f:5a:67:c6:d8:8c:03:09:57:b6:1c:80:6d:ae:
8b:26:dc:c2:09:3f:95:b1:a4:0c:c5:ec:ba:be:f9:82:0d:03:
c2:9d:e9:ed:0c:b9:f6:ed:0b:28:d4:1d:2a:5f:04:41:89:3d:
be:e9:e1:9a:ec:90:ac:d7:b3:54:2b:1f:19:ff:72:c6:db:2e:
97:ee:0c:18:23:bd:b1:ef:b9:07:8a:21:a5:f5:06:bc:d2:37:
36:d6:5b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:15 2024 by rpki-client on console.sobornost.net