Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/jEXZYlxwGf4nyxPkC39i6SI9Ydk.roa
File: jEXZYlxwGf4nyxPkC39i6SI9Ydk.roa (raw, json)
Hash identifier: 6tpREpKSWfBuGQhvGaXZsk3K7T4xIeAyYxTiOxaK3go=
Subject key identifier: 8C:45:D9:62:5C:70:19:FE:27:CB:13:E4:0B:7F:62:E9:22:3D:61:D9
Certificate issuer: /CN=b630b73b51cbc5380dd4adb3d5aaff4d7a334c5e
Certificate serial: 0188236D5C1FC3E64B24B5F37727D6780F49
Authority key identifier: B6:30:B7:3B:51:CB:C5:38:0D:D4:AD:B3:D5:AA:FF:4D:7A:33:4C:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tjC3O1HLxTgN1K2z1ar_TXozTF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/jEXZYlxwGf4nyxPkC39i6SI9Ydk.roa
Signing time: Tue 16 May 2023 07:19:09 +0000
ROA not before: Tue 16 May 2023 07:19:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47952
IP address blocks: 185.82.220.0/24 maxlen: 24
91.194.52.0/24 maxlen: 24
91.194.54.0/24 maxlen: 24
185.201.213.0/24 maxlen: 24
185.201.212.0/24 maxlen: 24
185.201.214.0/24 maxlen: 24
185.201.215.0/24 maxlen: 24
2a0a:c4c0:1::/48 maxlen: 48
2a0a:c4c0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:6d:5c:1f:c3:e6:4b:24:b5:f3:77:27:d6:78:0f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b630b73b51cbc5380dd4adb3d5aaff4d7a334c5e
Validity
Not Before: May 16 07:19:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c45d9625c7019fe27cb13e40b7f62e9223d61d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9b:3f:b9:c6:28:81:f7:0c:37:8b:72:53:91:
e0:79:af:b4:51:f6:b6:a7:ff:87:ea:c5:45:23:45:
ed:30:2f:8b:c7:68:62:d4:a6:72:4e:fd:b7:28:7c:
b8:a6:a8:cb:64:8a:fc:ac:9a:0b:61:1c:17:7c:e5:
67:24:c2:5b:f0:c8:30:ac:12:3a:39:28:0b:22:1d:
be:9a:ae:9b:9c:eb:6e:0a:28:b8:ce:2d:fc:43:7d:
56:27:9a:99:61:0c:13:37:00:4e:3e:ec:84:f8:fa:
cb:48:c9:18:14:38:6a:46:ba:ef:cf:37:42:87:6d:
1a:44:ac:95:c8:31:6a:08:5a:4e:71:49:fa:6d:fa:
52:d8:19:b7:ab:54:46:f0:52:0f:13:82:9d:45:8e:
44:47:a8:b9:9d:34:c1:d9:13:fb:f5:18:67:2c:bd:
1e:d2:8e:e3:db:8a:d1:92:2e:2a:b8:a6:e9:3c:de:
42:11:fb:63:22:48:67:38:f5:f3:3f:90:2a:4e:63:
9f:e8:fb:ac:cf:b6:d5:fb:23:db:0b:50:66:8f:6a:
d3:c2:46:3a:87:aa:55:57:dd:15:bb:43:d9:8f:d8:
34:8d:49:05:14:dd:fd:0a:bc:8c:ea:a5:fa:7f:cf:
27:82:d3:5e:ad:82:4b:74:55:df:e6:10:1c:aa:37:
26:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:45:D9:62:5C:70:19:FE:27:CB:13:E4:0B:7F:62:E9:22:3D:61:D9
X509v3 Authority Key Identifier:
keyid:B6:30:B7:3B:51:CB:C5:38:0D:D4:AD:B3:D5:AA:FF:4D:7A:33:4C:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tjC3O1HLxTgN1K2z1ar_TXozTF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/jEXZYlxwGf4nyxPkC39i6SI9Ydk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4748c7-cd9e-401e-a8a4-0d48e6895f12/1/tjC3O1HLxTgN1K2z1ar_TXozTF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.52.0/24
91.194.54.0/24
185.82.220.0/24
185.201.212.0/22
IPv6:
2a0a:c4c0::/47
Signature Algorithm: sha256WithRSAEncryption
51:ff:3e:ea:5c:33:35:a8:d4:e9:c4:8b:0b:44:84:e5:d6:9a:
a2:c4:b9:06:ba:36:a1:b6:6f:96:37:25:d2:ec:30:85:6f:b2:
07:a9:f8:27:6d:b4:7a:b0:c4:4a:7f:53:a1:6e:01:13:85:32:
3b:23:84:25:6e:3e:92:8f:00:b6:e4:ea:f3:62:9d:dd:94:4f:
68:ce:41:0b:b3:41:1a:b4:39:3b:17:ff:57:55:d3:e8:eb:4d:
03:60:db:ed:26:45:be:58:1b:f5:37:41:e6:d7:6b:90:03:a4:
e0:53:6e:a5:96:a2:22:f4:51:b3:35:2c:f8:0b:81:9f:37:8b:
16:a5:74:a4:54:3e:dd:19:b3:c4:fa:e1:8e:1d:29:09:14:e0:
3a:d0:d7:3c:f2:24:00:1a:8c:98:52:f5:4c:e3:48:28:7d:3f:
23:50:43:15:81:da:3b:f6:f3:34:06:9d:4b:c4:24:b3:12:92:
45:ec:9c:b7:12:fe:08:44:03:9d:53:16:ab:c9:fb:e8:01:e5:
c4:31:3a:4d:52:13:a7:56:a9:2c:f5:be:3f:b8:2b:42:cb:55:
f0:ab:73:5d:e2:0b:ce:b1:20:90:81:84:b8:4d:e1:64:27:e1:
82:36:b3:4f:7e:b4:83:0c:b1:dc:3d:d5:3a:2c:ee:21:80:f3:
f6:3a:52:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:28 2023 by rpki-client on console.sobornost.net