Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/73c3e3-81e6-4eb4-a946-609fa4e54067/1/z9WbGbhb2DzbjtIBO8ABQKKjD_M.roa
File: z9WbGbhb2DzbjtIBO8ABQKKjD_M.roa (raw, json)
Hash identifier: 3dzHaJtJn+1uuxe47xYJUqgSgNoVzatCSTrVMYD4i+g=
Subject key identifier: CF:D5:9B:19:B8:5B:D8:3C:DB:8E:D2:01:3B:C0:01:40:A2:A3:0F:F3
Certificate issuer: /CN=1a753613b4220f68f2b546d092a230bed6edacb8
Certificate serial: 0186B3DB52E3727CAA0B6F469688664547C5
Authority key identifier: 1A:75:36:13:B4:22:0F:68:F2:B5:46:D0:92:A2:30:BE:D6:ED:AC:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GnU2E7QiD2jytUbQkqIwvtbtrLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/73c3e3-81e6-4eb4-a946-609fa4e54067/1/z9WbGbhb2DzbjtIBO8ABQKKjD_M.roa
Signing time: Sun 05 Mar 2023 22:19:00 +0000
ROA not before: Sun 05 Mar 2023 22:19:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57247
IP address blocks: 194.116.230.0/24 maxlen: 24
2a02:4680::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b3:db:52:e3:72:7c:aa:0b:6f:46:96:88:66:45:47:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a753613b4220f68f2b546d092a230bed6edacb8
Validity
Not Before: Mar 5 22:19:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfd59b19b85bd83cdb8ed2013bc00140a2a30ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:15:32:cb:d0:3f:17:4a:66:3f:c1:ae:1f:a9:
cb:dd:96:54:0e:13:be:9a:56:e3:0c:7a:2d:74:fc:
58:b0:bc:ca:e7:6e:9a:98:0e:50:17:98:24:b3:35:
a9:fb:9c:a2:b9:da:c2:09:96:8b:cd:11:dd:90:58:
65:a8:f1:c6:d0:33:ef:ee:b5:81:5f:e3:22:3a:27:
90:36:31:0f:69:77:94:37:86:d1:c9:c6:df:2c:36:
05:d1:27:e7:0c:cd:f8:e6:35:3a:58:45:97:5d:17:
22:84:3b:32:fe:e6:b5:85:2c:3f:48:e9:3a:0f:4b:
c8:9e:c5:9f:1b:62:de:f1:49:2d:98:e4:be:51:51:
7a:dc:c1:d6:5d:94:5f:d9:83:44:97:b7:62:c5:13:
b0:5a:e4:7a:0c:a8:55:1e:5f:02:3f:ba:f6:b7:f3:
bf:34:7f:8f:a5:bb:82:50:ea:ea:f8:bc:e2:2b:3c:
09:57:dd:be:48:d9:99:02:b8:30:a5:d5:f7:0e:86:
8e:57:d0:cc:b9:ef:2b:92:27:04:8d:44:39:4e:e7:
c8:ee:e4:64:b8:15:1d:83:14:20:a3:43:79:81:8a:
47:cc:10:88:f9:b4:36:4a:96:47:47:84:e0:8e:89:
78:d7:70:e1:9d:38:09:5a:49:3a:cd:b3:3e:c7:02:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D5:9B:19:B8:5B:D8:3C:DB:8E:D2:01:3B:C0:01:40:A2:A3:0F:F3
X509v3 Authority Key Identifier:
keyid:1A:75:36:13:B4:22:0F:68:F2:B5:46:D0:92:A2:30:BE:D6:ED:AC:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GnU2E7QiD2jytUbQkqIwvtbtrLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/73c3e3-81e6-4eb4-a946-609fa4e54067/1/z9WbGbhb2DzbjtIBO8ABQKKjD_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/73c3e3-81e6-4eb4-a946-609fa4e54067/1/GnU2E7QiD2jytUbQkqIwvtbtrLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.230.0/24
IPv6:
2a02:4680::/29
Signature Algorithm: sha256WithRSAEncryption
7b:66:72:7a:c5:ca:66:00:2b:04:4c:7b:e5:0d:ce:0b:57:0b:
ec:f7:3b:ee:d8:13:ed:62:55:17:62:c1:d3:79:4a:0e:d4:c3:
4a:99:b7:86:82:61:9e:be:65:c0:b7:e6:7d:86:84:e5:c4:b9:
5a:3e:c5:2b:fd:42:cb:0c:89:f2:ae:0a:56:61:be:bd:b8:5b:
d1:88:77:17:5a:3a:31:44:ee:f7:eb:e8:51:8d:f1:16:7d:02:
80:d5:b9:7c:c3:e1:f9:84:61:6a:93:23:34:9c:83:4f:2f:37:
3a:22:1b:e5:49:2a:26:2f:51:08:a1:19:9f:b8:ad:18:c1:b8:
8e:16:f3:f8:b8:61:1e:fe:01:28:87:01:50:41:fd:c1:d6:0c:
af:e3:b9:d8:de:24:81:ec:c1:a1:a1:04:c1:51:2d:34:92:87:
b7:89:a1:58:98:bb:2a:29:f2:4b:c6:8e:9e:1b:e3:7a:13:69:
f9:15:c6:50:4e:54:21:b4:85:b2:70:e5:90:9f:a9:dd:51:e2:
21:f8:9d:61:2e:f8:aa:24:e4:df:b3:44:e5:8e:3a:44:30:fc:
2c:92:f0:fa:86:4a:05:af:d9:55:a3:78:36:8a:2b:47:72:26:
08:2d:45:c3:fa:cb:3c:75:4d:9f:73:32:37:52:58:c0:83:00:
88:dd:b5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:55 2024 by rpki-client on console.sobornost.net