Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/999cf5-812f-4e0a-8ea1-618238b7b942/1/dAL92IlMmj-TL7gR6qednina8Wc.roa
File: dAL92IlMmj-TL7gR6qednina8Wc.roa (raw, json)
Hash identifier: wR+D9S6ENLWUdmUJxqLzKDf7BJHay1UnVHD8o9IotAU=
Subject key identifier: 74:02:FD:D8:89:4C:9A:3F:93:2F:B8:11:EA:A7:9D:9E:29:DA:F1:67
Certificate issuer: /CN=b1b34e006765b154f37b6d3484588189511fb200
Certificate serial: 0185ED7B855A76330E403F1296F041A95E92
Authority key identifier: B1:B3:4E:00:67:65:B1:54:F3:7B:6D:34:84:58:81:89:51:1F:B2:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbNOAGdlsVTze200hFiBiVEfsgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/999cf5-812f-4e0a-8ea1-618238b7b942/1/dAL92IlMmj-TL7gR6qednina8Wc.roa
Signing time: Thu 26 Jan 2023 09:49:33 +0000
ROA not before: Thu 26 Jan 2023 09:49:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13045
IP address blocks: 2001:678:7d4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ed:7b:85:5a:76:33:0e:40:3f:12:96:f0:41:a9:5e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b34e006765b154f37b6d3484588189511fb200
Validity
Not Before: Jan 26 09:49:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7402fdd8894c9a3f932fb811eaa79d9e29daf167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:bf:08:0c:b1:cb:2d:28:2d:30:d5:80:99:
7a:87:c7:6e:a4:e5:f8:09:0a:f8:76:12:e5:5b:ca:
ee:54:89:19:bd:79:40:b6:c3:5d:d6:63:19:bb:cd:
86:4f:2c:e8:e8:94:b7:b4:19:9f:9f:32:f9:bb:07:
e6:d0:85:ae:0d:e9:cc:14:bf:94:6b:4f:23:c1:16:
ec:41:6f:03:d5:eb:7b:b8:72:0e:fc:7f:9b:ea:9f:
67:16:cc:8f:a1:50:d3:29:94:a3:ad:49:53:ce:ab:
57:75:94:2c:03:ec:82:69:0c:83:7c:80:55:a9:49:
90:d4:b6:b6:21:66:67:8b:4f:a1:60:ef:46:35:c4:
52:f3:53:69:18:f1:06:06:97:17:3f:30:67:b9:b0:
40:75:9b:4c:d1:b0:bb:f1:1f:c0:72:fc:02:65:e1:
ab:75:2e:84:7f:7d:36:e9:39:75:80:ba:fd:13:1f:
f9:ff:26:8a:97:4c:45:10:d8:57:b9:dd:c4:79:89:
e6:4a:ee:65:3b:7d:e4:f1:95:19:21:37:3d:d0:f5:
63:b1:01:05:c7:2b:87:2f:43:5e:c5:9e:a5:06:17:
1d:75:85:a4:0a:f9:f7:a8:b7:1c:f6:18:73:4f:0c:
cf:d8:16:c8:46:3e:11:69:67:36:9f:b6:2a:3c:35:
5e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:02:FD:D8:89:4C:9A:3F:93:2F:B8:11:EA:A7:9D:9E:29:DA:F1:67
X509v3 Authority Key Identifier:
keyid:B1:B3:4E:00:67:65:B1:54:F3:7B:6D:34:84:58:81:89:51:1F:B2:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbNOAGdlsVTze200hFiBiVEfsgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/999cf5-812f-4e0a-8ea1-618238b7b942/1/dAL92IlMmj-TL7gR6qednina8Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/999cf5-812f-4e0a-8ea1-618238b7b942/1/sbNOAGdlsVTze200hFiBiVEfsgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7d4::/48
Signature Algorithm: sha256WithRSAEncryption
4e:89:17:6b:ba:7e:7f:50:f0:8e:1b:db:07:73:38:57:fd:4c:
fd:5f:b0:ed:d9:92:71:c7:91:dc:54:8f:41:0f:2a:7b:19:e4:
9d:22:47:1b:79:a9:09:40:9a:75:10:d8:67:d1:cf:af:b1:f4:
2d:5b:ff:88:2a:71:6e:96:a2:43:91:9e:5a:79:1e:2c:33:bb:
f4:5c:c4:2d:01:42:5f:9b:94:63:45:3d:b5:87:48:d5:ab:8b:
78:d3:fc:67:cf:21:f8:66:ac:2d:dc:a1:1f:52:29:01:48:13:
cb:78:c5:d2:1d:1d:0d:d5:0b:5a:27:d8:17:85:6e:83:67:1c:
fe:38:c2:93:31:6b:45:9f:50:06:12:d3:ba:0f:c9:95:69:a3:
7c:a2:90:a9:5f:63:48:47:4f:11:f2:13:fb:17:34:75:a3:c7:
f9:c1:22:55:eb:b3:65:bf:81:24:1e:ad:fd:a4:1b:25:8f:0b:
db:ed:58:7a:96:7b:07:4f:6e:63:55:fa:8a:94:52:35:80:b0:
5a:f8:ae:72:53:08:b4:6f:2d:8a:09:d3:1a:3a:d5:3e:86:76:
e5:3e:64:38:4a:c7:14:c2:bd:f5:2c:36:a3:fa:99:cd:4d:ee:
6a:f2:59:4e:64:31:e7:5b:7e:45:6b:00:fd:69:02:20:f2:98:
90:90:03:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:22 2024 by rpki-client on console.sobornost.net