Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sJ02evMI5qaeyOVO0S2aE8DWj3M.roa
File: sJ02evMI5qaeyOVO0S2aE8DWj3M.roa (raw, json)
Hash identifier: ruDy/TgZ8PLAosKqET86c5dktI6ZMuAKuhjVXHxsllI=
Subject key identifier: B0:9D:36:7A:F3:08:E6:A6:9E:C8:E5:4E:D1:2D:9A:13:C0:D6:8F:73
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 01856F26C279E3DC19CF1320F00AA9AA8320
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sJ02evMI5qaeyOVO0S2aE8DWj3M.roa
Signing time: Sun 01 Jan 2023 21:04:49 +0000
ROA not before: Sun 01 Jan 2023 21:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5588
IP address blocks: 195.90.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:c2:79:e3:dc:19:cf:13:20:f0:0a:a9:aa:83:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Jan 1 21:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b09d367af308e6a69ec8e54ed12d9a13c0d68f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ed:a1:3b:9f:12:83:25:41:6e:21:62:62:d2:
ed:2a:b3:fc:aa:c7:26:9c:51:52:4f:ca:19:96:d9:
6c:1d:70:61:c6:ea:88:3f:87:17:e9:3c:be:c5:11:
e4:93:57:01:65:3a:75:19:e0:ba:ac:ca:49:ec:3e:
fb:94:82:4b:6b:94:d4:14:f9:69:4d:e9:f9:87:fc:
49:51:b7:14:57:f9:69:7e:45:4a:dd:7e:5c:e6:08:
98:d4:ec:34:5b:f1:18:42:68:8d:10:e5:48:18:83:
c6:17:3c:23:ef:b4:fd:98:41:cc:25:a3:53:5a:9d:
95:29:9f:14:6c:ed:7d:b2:38:f5:08:f2:9c:1f:84:
9d:fe:6c:dc:78:3c:3d:b4:00:26:d1:18:0d:88:b5:
63:2b:95:2a:6e:b9:51:ff:f4:fe:21:59:a7:7e:a0:
b2:b8:9d:71:2a:a6:41:24:01:bd:93:f9:71:02:42:
a6:f3:cf:04:53:6f:0c:c9:09:1a:62:11:6c:b9:bb:
9d:89:fe:ca:53:46:b7:5c:3a:4a:72:2c:3b:17:1e:
92:1e:06:3a:52:6b:59:34:46:dc:e6:6c:2c:91:b8:
53:f3:1e:35:26:bc:9a:36:09:46:22:51:d6:f4:e2:
eb:a9:61:4b:b3:eb:3c:98:74:32:27:69:96:87:49:
c9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9D:36:7A:F3:08:E6:A6:9E:C8:E5:4E:D1:2D:9A:13:C0:D6:8F:73
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/sJ02evMI5qaeyOVO0S2aE8DWj3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.98.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:bc:87:b5:58:d7:e4:53:c7:fd:ed:98:8e:de:d0:60:7f:32:
c6:3e:c8:19:77:9a:31:df:c6:8c:2d:63:25:15:16:42:71:14:
e6:5d:80:02:9c:e9:ee:dc:aa:23:70:40:76:04:b6:14:72:44:
54:80:fe:aa:b1:6f:f6:5f:9c:d3:f4:ac:3f:88:f9:32:35:d8:
1a:80:d8:b6:bd:5e:18:ca:2d:94:75:ec:61:53:f3:b5:1c:d1:
fa:fa:0d:79:da:c1:48:87:6d:38:7f:40:e7:06:83:45:ef:9d:
c0:4e:0c:ed:18:53:db:fd:c3:c7:42:57:ab:c8:ab:83:37:6a:
05:7f:7e:47:a8:c8:f4:f6:5c:85:8d:b5:70:33:37:9e:8a:53:
53:53:d9:43:59:75:f8:ac:81:80:8b:1b:97:bd:ff:0a:06:58:
c7:9a:a5:1a:59:c8:1e:8f:89:9b:32:94:58:b5:05:bb:48:01:
d8:3c:02:5b:3f:9e:0a:7a:98:eb:2d:17:f0:8e:09:f3:30:b2:
89:e2:74:6b:bd:99:c4:a4:62:63:e0:16:1f:2d:69:d7:48:be:
41:8f:72:9c:47:3a:5e:14:da:0c:a3:21:79:29:87:69:74:0d:
dd:20:79:a6:38:6b:95:fa:8a:f1:31:2d:42:72:e5:0e:39:e3:
76:51:d3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:00:58 2024 by rpki-client on console.sobornost.net