Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/Qm88Z-HInMvo4SU_SaraM4Q1wt4.roa
File: Qm88Z-HInMvo4SU_SaraM4Q1wt4.roa (raw, json)
Hash identifier: s9I2rdAs1yWesFfRtlWLH2LIF/j1D2mJmNPHcaA3QCQ=
Subject key identifier: 42:6F:3C:67:E1:C8:9C:CB:E8:E1:25:3F:49:AA:DA:33:84:35:C2:DE
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 01856C0A504B16DE4B43FA4FDD1E314D7A48
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/Qm88Z-HInMvo4SU_SaraM4Q1wt4.roa
Signing time: Sun 01 Jan 2023 06:34:53 +0000
ROA not before: Sun 01 Jan 2023 06:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48641
IP address blocks: 31.133.96.0/23 maxlen: 23
2a04:d040::/29 maxlen: 30
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:50:4b:16:de:4b:43:fa:4f:dd:1e:31:4d:7a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 06:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=426f3c67e1c89ccbe8e1253f49aada338435c2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d5:d9:69:49:cb:de:f5:de:b1:9e:9b:2c:91:
4a:06:29:6c:96:16:24:fb:de:f6:7d:be:b5:17:a1:
4d:39:ac:87:a2:89:bd:99:2b:a6:aa:a2:34:de:5c:
79:78:ff:74:a8:80:71:c1:27:8e:56:5e:69:7d:d7:
6f:7b:3e:f4:06:76:28:59:52:38:8f:a2:bf:a1:ae:
9e:07:d6:b5:00:6a:dc:0a:4e:45:fd:07:02:c7:56:
f6:15:0b:b2:28:cc:a1:b0:56:b8:9b:c8:b5:05:2d:
9f:a3:ce:8b:35:ab:ef:b1:d5:40:20:d0:6c:a1:4d:
1e:f1:66:82:6e:c1:77:92:18:61:80:da:d8:0d:9f:
4a:92:ef:76:2a:34:a8:e5:4b:8c:11:15:cb:21:fb:
ea:88:36:f8:f9:f1:36:70:33:96:23:b6:b4:f1:46:
47:cb:f7:5f:66:a7:06:5b:6d:3a:1e:a3:98:c5:25:
58:f1:4d:e2:2d:cf:8a:75:40:ee:3e:8e:6f:ed:a1:
60:ad:6b:f9:88:bd:1d:08:fa:49:97:68:f5:d7:b9:
b7:89:26:3f:97:6d:9a:e2:47:18:62:1c:9c:1d:6b:
fa:48:55:c9:02:40:1f:4a:42:c0:ca:3d:00:39:0e:
d7:f6:34:12:8f:5c:13:1a:92:64:b3:26:78:c1:dd:
d5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6F:3C:67:E1:C8:9C:CB:E8:E1:25:3F:49:AA:DA:33:84:35:C2:DE
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/Qm88Z-HInMvo4SU_SaraM4Q1wt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.96.0/23
IPv6:
2a04:d040::/29
Signature Algorithm: sha256WithRSAEncryption
85:9f:f9:a5:bc:77:e5:40:0d:26:44:8d:2b:fe:95:7c:36:47:
4f:ea:ce:b9:f0:a8:62:0e:f0:df:d7:34:45:ff:28:a9:c7:71:
a8:99:4f:95:41:db:f2:67:ab:80:3f:02:bd:bd:9f:96:d9:53:
dd:f7:78:8d:20:b8:44:2e:5c:4b:a2:36:c0:de:59:06:40:0e:
ce:ef:67:d8:0f:2c:ed:47:14:04:29:5c:2d:78:1a:bd:f5:f6:
35:e3:0e:d3:ef:15:68:49:35:f7:84:1c:d6:b8:0b:e9:f4:48:
29:f5:00:4b:82:71:35:df:88:d1:5d:51:84:43:7d:e5:c4:39:
8f:bb:f5:7b:fa:ef:a2:92:77:6b:0b:8e:57:6a:32:11:a5:b9:
db:d4:7a:db:21:25:02:fc:4f:07:4b:56:c9:7e:21:6d:92:f4:
14:f4:5c:57:cd:44:f0:b3:44:b7:5d:61:ed:18:c6:ca:7e:98:
c6:be:23:3f:ff:f2:3c:c6:26:c9:f8:16:4b:97:95:68:cf:1d:
9f:9c:58:58:86:4f:d4:b7:66:00:a4:ab:c6:94:39:49:cd:f4:
61:71:57:4a:b6:c7:e0:b6:14:f0:b1:01:95:c3:84:12:f0:97:
b4:e7:1e:da:a6:9b:63:e7:b6:28:40:3c:42:0d:a5:5a:98:a5:
82:cb:fa:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:52 2024 by rpki-client on console.sobornost.net