Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/DznqoE0KH0M_K16mvBOxbvVG19U.roa
File: DznqoE0KH0M_K16mvBOxbvVG19U.roa (raw, json)
Hash identifier: 4qZMVSiMpldV8GrVmHd6pnx34Narr1MU8Hm+XuzypoI=
Subject key identifier: 0F:39:EA:A0:4D:0A:1F:43:3F:2B:5E:A6:BC:13:B1:6E:F5:46:D7:D5
Certificate issuer: /CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Certificate serial: 01856E78FC25B888FC4C8F9AEFB75040DC22
Authority key identifier: 4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/DznqoE0KH0M_K16mvBOxbvVG19U.roa
Signing time: Sun 01 Jan 2023 17:55:00 +0000
ROA not before: Sun 01 Jan 2023 17:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39661
IP address blocks: 194.50.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:fc:25:b8:88:fc:4c:8f:9a:ef:b7:50:40:dc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2ec0a9b9e60e8652168ca69d9239f27307c372
Validity
Not Before: Jan 1 17:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f39eaa04d0a1f433f2b5ea6bc13b16ef546d7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:be:1a:6d:7e:ec:44:90:36:09:b2:5c:32:aa:
c1:d5:44:e2:db:5e:89:c6:81:1b:2b:eb:ce:25:65:
ca:ff:41:39:ec:65:ce:2b:20:b0:21:0b:f8:d6:23:
73:cc:ca:46:9a:37:9a:47:9b:a4:1d:68:08:c6:ff:
9d:5d:84:80:bd:56:0f:de:be:93:8b:6c:77:bb:d9:
8c:40:27:ee:ca:14:19:d8:14:c2:9f:bf:7b:ef:00:
50:ef:66:b6:1c:aa:75:e4:bf:1c:81:0c:10:b6:e0:
87:a9:f3:32:7c:bc:26:c6:a0:ad:a8:cb:1b:b6:06:
7c:51:ab:e6:b4:94:00:6b:96:ff:90:38:11:a7:48:
61:11:84:aa:b3:a7:8e:c9:04:60:b2:ca:8e:2b:be:
68:f1:86:6e:58:f3:ef:bd:f5:d2:a7:24:7a:2f:20:
93:a0:ed:04:16:8f:4c:02:6c:42:74:7e:4a:98:c8:
06:4a:26:c2:63:d3:b4:9d:ed:97:b9:ab:f1:d1:3a:
0c:5a:12:ea:4a:1c:14:42:35:b6:78:bb:d0:73:ae:
ff:ff:fb:db:cd:a8:23:5b:b0:96:d2:56:88:af:68:
03:9a:88:2c:4d:24:9a:1f:05:bb:31:fb:c0:35:ed:
fa:bb:50:f6:60:9d:d3:39:d3:9b:e1:2d:4b:db:be:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:39:EA:A0:4D:0A:1F:43:3F:2B:5E:A6:BC:13:B1:6E:F5:46:D7:D5
X509v3 Authority Key Identifier:
keyid:4B:2E:C0:A9:B9:E6:0E:86:52:16:8C:A6:9D:92:39:F2:73:07:C3:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sy7AqbnmDoZSFoymnZI58nMHw3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/DznqoE0KH0M_K16mvBOxbvVG19U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fd53f7-8315-40d2-915b-cd0f59c28d2d/1/Sy7AqbnmDoZSFoymnZI58nMHw3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.110.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ed:17:87:15:e5:16:19:56:d2:a7:c3:24:a7:4a:52:cd:99:
3b:b2:fa:5e:e8:75:4f:ce:52:86:d9:e5:5f:d4:2d:73:4e:37:
09:12:e7:8d:67:47:49:25:75:85:38:f2:c7:30:34:66:d4:9e:
ef:09:6f:f5:6b:70:80:fd:62:c9:6c:74:b4:3a:90:b9:ae:71:
be:7b:8e:8a:7c:ac:63:19:19:ff:1c:ca:02:be:95:4e:56:5e:
89:ca:a7:9f:11:21:99:b4:c0:3c:22:b2:43:ce:1f:65:56:a2:
9c:97:c8:ef:13:37:79:78:7b:c4:cb:f0:be:d8:fe:26:d9:11:
e6:90:a1:7b:45:3d:6d:b0:5a:b2:ad:a2:75:ca:f1:55:7f:3b:
34:e7:cd:48:bd:53:7b:f8:e3:1f:a3:21:bc:e3:14:13:bd:23:
30:9a:87:80:14:bc:ee:96:88:ba:23:ef:9b:82:d4:5c:d5:59:
cb:93:2f:a2:5a:3f:95:a3:5b:c8:24:bc:0e:37:aa:9d:dd:1e:
ef:fd:ca:69:ac:31:15:e9:65:3e:fd:c1:68:94:dc:cc:24:e4:
a5:66:13:2e:54:13:58:81:41:bb:b9:b1:26:de:f9:e5:a2:d1:
15:0b:4e:68:fa:0e:77:77:c9:67:e4:d9:85:33:bc:23:ba:8a:
5a:83:6f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:27 2024 by rpki-client on console.sobornost.net