Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/1v4Ny-S5zhherD3Wo1tnqNxRqIU.roa
File: 1v4Ny-S5zhherD3Wo1tnqNxRqIU.roa (raw, json)
Hash identifier: RmWN5zTpnj7iJPIHHQzJPciPJtu4OrREjqMGE+TpbBk=
Subject key identifier: D6:FE:0D:CB:E4:B9:CE:18:5E:AC:3D:D6:A3:5B:67:A8:DC:51:A8:85
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 01856C0A52245AF06C673391521B9754CFE0
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/1v4Ny-S5zhherD3Wo1tnqNxRqIU.roa
Signing time: Sun 01 Jan 2023 06:34:53 +0000
ROA not before: Sun 01 Jan 2023 06:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203008
IP address blocks: 2a0e:3302::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:52:24:5a:f0:6c:67:33:91:52:1b:97:54:cf:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 06:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6fe0dcbe4b9ce185eac3dd6a35b67a8dc51a885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:51:de:24:66:e3:eb:94:52:24:99:6e:c6:4e:
52:07:01:a1:cb:bb:d9:ac:2f:8f:67:a1:e3:54:2b:
f3:b2:36:bf:e3:15:82:c4:17:b0:9e:32:56:72:7a:
d2:9c:ab:3e:70:87:2f:a7:f0:59:69:b6:6f:62:97:
20:fa:a0:11:e5:bb:0b:c5:2e:15:ff:91:96:98:72:
d4:7e:6a:70:ef:8c:ef:40:91:b3:97:7b:d3:41:b7:
2d:5c:c4:5c:74:ff:55:6d:36:d5:db:46:8e:84:f6:
3f:07:e1:f8:cd:27:35:3a:a7:e2:29:25:e4:9e:24:
37:3e:1c:c7:62:42:dc:45:96:b0:4f:7d:ca:46:ff:
09:04:c8:f8:4c:8b:0d:bc:73:e0:42:69:09:ee:81:
dc:4e:34:a8:38:88:35:17:e6:8c:9f:da:9d:5b:6d:
5b:fe:77:2d:72:f4:78:e0:e5:b7:e8:6b:67:31:c3:
ee:f3:80:06:ae:cb:d2:2b:a4:bd:78:b1:0b:99:8b:
88:dd:bb:6e:cd:3f:32:48:e3:fb:16:59:df:c4:fc:
c9:64:0c:cc:50:51:23:0f:20:c6:16:07:bc:1c:47:
0c:71:ad:62:a5:69:70:60:e3:7b:08:70:9f:12:55:
3b:05:b0:56:f6:08:ee:7b:f0:8d:5d:a6:a3:1d:05:
6d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FE:0D:CB:E4:B9:CE:18:5E:AC:3D:D6:A3:5B:67:A8:DC:51:A8:85
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/1v4Ny-S5zhherD3Wo1tnqNxRqIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3302::/32
Signature Algorithm: sha256WithRSAEncryption
16:28:59:ba:a3:22:3b:01:a1:ea:2c:4a:9c:0f:96:f4:88:cb:
1a:2d:b1:a0:1f:46:20:f3:09:89:e8:b5:8f:63:68:8a:dc:58:
61:4f:ad:0a:10:03:42:c3:f1:53:dc:a6:53:b0:12:1a:37:51:
41:ab:d6:cc:56:0c:b8:cd:a8:55:64:d8:8b:d5:f8:35:29:61:
b2:a0:96:13:46:d2:63:96:18:06:81:39:0c:d6:47:d8:08:e4:
4a:19:f5:84:52:83:f8:d3:5f:e5:05:9c:f2:cd:43:6b:d5:31:
f0:77:2c:34:2c:0c:54:d6:da:66:e7:90:68:f2:c9:a3:c1:aa:
fe:12:fd:e3:19:6a:1a:90:43:7c:5c:ec:dc:c2:e8:24:f7:d7:
08:79:18:30:2a:ee:e8:d6:6f:e5:f3:97:7f:f0:62:7e:aa:e4:
a7:fe:3d:d3:60:0f:44:e3:ad:46:7d:ea:b1:64:e0:12:4e:91:
b7:a9:f8:29:a6:e7:15:98:c5:b3:4a:86:fa:01:f5:09:60:31:
8d:a9:07:ae:c7:38:cc:cf:06:79:94:22:76:c5:a2:17:c8:25:
99:0b:43:7b:6f:cc:8c:ad:21:a9:c4:da:0d:aa:b7:34:51:33:
19:07:41:5c:a6:d7:9c:31:55:d3:28:66:a0:ae:20:38:81:04:
00:cf:17:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:52 2024 by rpki-client on console.sobornost.net