Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/CkRt-JW9r1Ks05nhvxFgoN2UlrM.roa
File: CkRt-JW9r1Ks05nhvxFgoN2UlrM.roa (raw, json)
Hash identifier: HkNr/O6kxLzQPZivNYg6bsc3jy53CVkIETVs9isPCnQ=
Subject key identifier: 0A:44:6D:F8:95:BD:AF:52:AC:D3:99:E1:BF:11:60:A0:DD:94:96:B3
Certificate issuer: /CN=f266a0f986f21945c80d831567baf29620107adc
Certificate serial: 01856B40EA49E97E7C8DBCC49DE5B5A960DF
Authority key identifier: F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/CkRt-JW9r1Ks05nhvxFgoN2UlrM.roa
Signing time: Sun 01 Jan 2023 02:54:54 +0000
ROA not before: Sun 01 Jan 2023 02:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209931
IP address blocks: 212.162.128.0/24 maxlen: 24
212.162.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:ea:49:e9:7e:7c:8d:bc:c4:9d:e5:b5:a9:60:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f266a0f986f21945c80d831567baf29620107adc
Validity
Not Before: Jan 1 02:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a446df895bdaf52acd399e1bf1160a0dd9496b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c7:33:f8:e3:40:4b:19:1f:f3:ea:d3:b2:30:
34:2b:04:e0:a8:bf:da:68:57:50:b7:73:09:44:a1:
d9:03:35:10:09:a7:39:a7:77:05:6d:a8:95:c2:f1:
9c:b4:dc:34:64:07:bc:7d:b4:3c:64:43:e6:2d:f9:
92:8a:f3:d0:38:1d:26:d3:66:e9:55:32:a2:77:97:
4b:6d:67:99:e3:45:65:2c:bb:36:ec:c7:66:3a:e9:
68:6b:77:0c:29:ff:15:f7:b4:fa:81:10:13:f5:75:
fe:22:9f:7f:c0:9f:96:50:36:89:da:cc:65:6a:3a:
4b:2c:55:cc:42:7d:83:97:ff:a7:f0:bd:27:5b:ca:
b3:a1:8c:9c:d4:83:07:74:f5:55:54:2a:96:74:fd:
ca:7c:44:3f:67:b5:72:a6:19:f3:b6:c7:9d:a6:2a:
d4:5e:15:16:76:00:f6:ca:07:50:ea:0d:50:97:43:
56:b9:e8:12:2c:b4:04:27:f4:ec:5b:68:61:7d:be:
b4:2f:d9:51:20:35:04:3b:83:63:f8:52:37:7a:26:
52:96:60:5f:8a:2b:8b:8d:d9:4f:ff:d2:39:93:e9:
18:3c:2e:82:46:bb:9f:9d:b3:5c:e2:e2:53:c6:ae:
cb:36:2f:6d:c9:c3:a9:55:fd:3c:ef:ea:3c:d6:46:
e4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:44:6D:F8:95:BD:AF:52:AC:D3:99:E1:BF:11:60:A0:DD:94:96:B3
X509v3 Authority Key Identifier:
keyid:F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/CkRt-JW9r1Ks05nhvxFgoN2UlrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/8mag-YbyGUXIDYMVZ7ryliAQetw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.162.128.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:60:85:28:ea:d4:54:be:ea:18:52:9e:9d:54:18:4b:a1:4b:
09:bc:28:b8:04:f5:05:50:21:c4:a1:b2:fe:13:49:66:ad:bf:
7c:e5:6d:dd:2d:40:00:09:c1:b7:7c:11:24:b3:43:42:b0:b3:
56:fb:92:01:3b:13:b8:4d:59:64:c2:41:e5:8e:81:ed:e1:4c:
5b:92:a4:2b:06:ce:35:bc:60:ea:e8:a4:6c:be:3c:f3:af:49:
f4:02:66:e7:9f:79:ca:bf:f3:ee:71:bf:34:78:1b:83:38:1e:
61:99:db:0a:d4:c5:ed:a2:8d:c7:31:a8:5e:f4:da:8d:72:a1:
17:97:e4:5c:f1:54:dd:9e:c6:23:3f:d5:9b:d5:12:7c:a1:d7:
80:95:5e:14:5a:3c:c2:30:7f:07:b9:cc:36:83:18:4d:fc:35:
fb:36:b6:08:82:8b:8f:0f:86:4e:77:00:1c:6d:23:61:64:c1:
46:ec:ea:eb:08:0b:13:f4:d5:8b:84:14:b1:58:c3:93:be:38:
05:14:71:ac:a6:e1:b4:a3:72:e5:e4:6d:3a:31:42:73:4b:66:
f0:c7:98:b3:e8:20:04:74:84:f4:b4:6c:53:a2:bc:3a:07:bf:
fa:08:ce:04:1c:1e:a8:f9:d1:c6:e3:2a:ae:cf:b8:8a:f9:fd:
ca:f8:a7:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:49 2024 by rpki-client on console.sobornost.net