Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/6bn3seA8FKDd6QEAnjj8nvFNQ5E.roa
File: 6bn3seA8FKDd6QEAnjj8nvFNQ5E.roa (raw, json)
Hash identifier: H0uPG/BV5g5vWmXR2Uj0UC0k9YW2lI1g2t/S+AZhOLs=
Subject key identifier: E9:B9:F7:B1:E0:3C:14:A0:DD:E9:01:00:9E:38:FC:9E:F1:4D:43:91
Certificate issuer: /CN=8e7b69927dd21bb9e1455fa88ed88ed247c718da
Certificate serial: 018570B083C4AE902E4A61DBEFD97C0453E1
Authority key identifier: 8E:7B:69:92:7D:D2:1B:B9:E1:45:5F:A8:8E:D8:8E:D2:47:C7:18:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jntpkn3SG7nhRV-ojtiO0kfHGNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/6bn3seA8FKDd6QEAnjj8nvFNQ5E.roa
Signing time: Mon 02 Jan 2023 04:14:54 +0000
ROA not before: Mon 02 Jan 2023 04:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44650
IP address blocks: 185.175.240.0/24 maxlen: 24
185.175.242.0/24 maxlen: 24
185.175.243.0/24 maxlen: 24
185.175.241.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:83:c4:ae:90:2e:4a:61:db:ef:d9:7c:04:53:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7b69927dd21bb9e1455fa88ed88ed247c718da
Validity
Not Before: Jan 2 04:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9b9f7b1e03c14a0dde901009e38fc9ef14d4391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:ac:9c:7e:70:08:51:53:8a:6b:fa:65:42:
8d:46:7f:67:57:96:1c:75:e4:a2:f0:ac:83:db:ce:
3a:ce:87:9f:3e:4f:27:b9:6a:69:e7:0d:29:fc:c6:
5c:06:8c:89:c9:14:a0:93:bd:b0:ab:6f:c3:59:02:
7d:2f:59:ca:08:77:73:98:8e:64:a8:21:4b:2f:7f:
86:4c:92:58:54:1e:4a:d6:37:c9:35:26:5d:e8:95:
54:35:a7:0a:d9:1e:4f:88:9c:bb:24:9e:ec:c1:95:
49:89:0f:39:c3:ec:04:89:dc:32:7c:fc:e3:3f:c8:
32:fc:a9:ea:b7:df:60:48:93:a8:8b:a6:46:96:1b:
ff:9b:09:0a:36:81:3d:4f:ed:ce:50:e1:da:c5:96:
0f:bd:a2:76:4a:05:b1:90:26:0b:81:4b:d3:6d:d1:
af:3c:6b:17:a2:8f:b8:0f:f2:fa:4c:84:b4:9b:9a:
d4:32:00:c7:89:79:75:d4:21:f6:ed:8a:fc:5d:6f:
8f:34:69:8b:09:c7:28:d0:b7:7a:03:26:23:d9:9c:
22:79:4e:d2:32:83:b0:c6:ad:9e:c4:aa:52:5a:17:
2b:6c:ba:32:03:7c:0c:ba:88:72:29:7d:82:23:d3:
7a:3a:25:1c:02:af:ce:34:e7:e5:a6:9a:9f:12:28:
72:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B9:F7:B1:E0:3C:14:A0:DD:E9:01:00:9E:38:FC:9E:F1:4D:43:91
X509v3 Authority Key Identifier:
keyid:8E:7B:69:92:7D:D2:1B:B9:E1:45:5F:A8:8E:D8:8E:D2:47:C7:18:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jntpkn3SG7nhRV-ojtiO0kfHGNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/6bn3seA8FKDd6QEAnjj8nvFNQ5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/46edcb-caaf-4d65-85c1-c0292f58b72f/1/jntpkn3SG7nhRV-ojtiO0kfHGNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.240.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:d3:62:65:71:9d:c0:39:7d:89:79:d4:aa:01:9d:c7:4d:7c:
8c:00:e8:56:3e:0d:57:01:6d:96:52:d4:73:fa:8b:78:bd:d5:
af:73:21:19:52:bf:b2:64:55:d5:df:2a:ea:ec:da:32:05:93:
e2:41:21:f5:cf:2f:22:70:44:5b:16:47:a2:6e:74:9b:bb:70:
fb:a2:af:9b:fb:f8:bb:37:c6:77:2c:97:5d:47:3e:bb:fd:5c:
c0:68:b9:9f:a5:91:9b:4d:87:15:08:5a:68:54:79:69:c5:64:
10:13:c6:b0:b4:73:fd:69:4e:04:72:90:22:b4:d0:57:b6:2b:
97:d0:5f:ab:22:4b:12:2e:57:2d:5d:78:ff:9c:bb:2a:ad:83:
44:04:77:d9:fe:f2:0a:39:53:9d:d8:b1:22:41:26:58:a5:3d:
12:20:9d:05:84:b3:44:e4:e5:fb:8e:ba:77:96:ab:8f:4d:61:
83:58:25:dd:15:78:74:07:e6:a4:b5:71:29:1a:53:d0:b6:3a:
a2:cf:2a:75:ef:43:45:64:cb:fc:b3:c9:ae:49:b1:fa:1f:08:
73:05:3e:09:a0:20:a5:65:45:45:66:71:1f:45:da:0e:56:cb:
e5:c3:6c:3b:e9:cc:ca:20:98:59:c1:3e:29:98:98:9f:4b:d8:
df:2c:a1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:58 2024 by rpki-client on console.sobornost.net