Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/wXMK_8_Y093r7TjgMyef3-hSxTg.roa
File: wXMK_8_Y093r7TjgMyef3-hSxTg.roa (raw, json)
Hash identifier: O09XKKBDe1Qukx7fypAOe9wjjdNA6PCC/0PIY/L6d/M=
Subject key identifier: C1:73:0A:FF:CF:D8:D3:DD:EB:ED:38:E0:33:27:9F:DF:E8:52:C5:38
Certificate issuer: /CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Certificate serial: 018570CBF90174B721ECACD9857592461E39
Authority key identifier: 2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/wXMK_8_Y093r7TjgMyef3-hSxTg.roa
Signing time: Mon 02 Jan 2023 04:44:53 +0000
ROA not before: Mon 02 Jan 2023 04:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 91.198.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f9:01:74:b7:21:ec:ac:d9:85:75:92:46:1e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Validity
Not Before: Jan 2 04:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1730affcfd8d3ddebed38e033279fdfe852c538
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5e:bf:3d:11:ad:f4:57:87:cf:27:7e:5a:88:
13:63:af:fb:09:c0:9c:76:e0:0b:7e:8b:55:22:3f:
c9:1c:8c:7d:46:bd:99:76:b1:a8:8a:78:22:69:c9:
b3:f8:14:7a:07:03:b3:ab:0f:58:98:55:df:59:e5:
76:d1:d3:20:d3:87:93:04:08:78:c8:d4:46:f0:f1:
b6:f0:05:ce:ae:6b:df:d4:2c:2d:45:62:d6:e0:68:
80:cf:85:d3:01:61:3b:21:56:e3:a0:dc:21:a4:35:
da:66:22:a8:cd:e1:80:76:2c:42:12:1b:7a:d9:5c:
06:dc:0f:a0:d8:0c:24:96:77:e0:7a:da:e0:c5:1e:
83:4c:df:c9:6d:76:9b:c8:d3:91:07:74:96:5d:07:
41:58:1a:41:9b:bd:7c:f6:24:08:2c:4a:d4:c0:43:
ad:0f:98:73:69:48:f4:89:f1:df:8e:c3:74:ce:fc:
70:72:96:6f:ce:93:a3:ea:e5:9c:76:4a:3f:ce:2d:
25:33:72:af:8f:17:ec:15:14:33:d7:7f:41:db:c7:
2c:73:b7:23:c8:79:5b:fb:79:82:88:ce:a4:44:2a:
64:d6:e9:44:1a:b8:65:a2:88:db:9b:ea:34:ba:80:
91:1b:cd:c0:bd:dc:0d:32:ae:62:c8:45:e9:b1:35:
56:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:73:0A:FF:CF:D8:D3:DD:EB:ED:38:E0:33:27:9F:DF:E8:52:C5:38
X509v3 Authority Key Identifier:
keyid:2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/wXMK_8_Y093r7TjgMyef3-hSxTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.173.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e4:a3:c6:6e:2c:fc:3b:43:99:f3:0e:fb:c8:c5:12:96:cb:
8c:ab:de:64:24:fe:80:18:3e:d7:de:61:b8:ee:b2:e8:6a:6c:
38:af:47:be:3e:b7:0e:0a:48:eb:b2:3a:e7:da:4f:74:9f:aa:
65:c2:8b:8a:c8:77:c5:a0:13:c5:3f:99:26:f6:b6:77:0e:09:
99:2c:87:da:b5:d0:85:3d:1f:0b:0f:29:7b:c0:20:43:3d:4b:
46:be:7b:57:f6:25:40:5e:9e:42:e8:02:e3:85:a6:54:ae:84:
ff:04:52:6f:df:14:00:0b:44:f0:01:da:7d:91:9a:2f:7e:5c:
07:be:19:48:7d:84:4b:9b:d7:cd:34:63:95:27:18:52:79:20:
ea:7c:b1:f4:53:3d:5f:e1:9f:bd:d7:12:10:21:4e:48:96:0b:
db:1b:2f:74:51:4d:c0:e6:b1:b8:13:fb:77:8a:80:1a:44:25:
9c:b8:6e:7a:0e:06:ca:de:b0:51:5a:da:7b:44:d3:25:d7:31:
a9:e9:3a:0b:09:d8:04:21:16:42:3e:84:61:98:76:c7:69:37:
42:55:17:a5:60:d3:a2:ca:44:e7:22:48:26:9c:fd:83:ff:a4:
f2:5e:ce:3d:ca:ce:0a:15:db:87:e7:d9:cd:e5:8d:b5:c3:b0:
e3:77:54:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:52 2024 by rpki-client on console.sobornost.net