Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/EFmc77GrhOK05vdlYI9IAozbAzU.roa
File: EFmc77GrhOK05vdlYI9IAozbAzU.roa (raw, json)
Hash identifier: mgrSGg4b1CSBz+3e6LG8X+TPcVBHH8a1+MizZtHFKW0=
Subject key identifier: 10:59:9C:EF:B1:AB:84:E2:B4:E6:F7:65:60:8F:48:02:8C:DB:03:35
Certificate issuer: /CN=9bed36af13da482fdf79fb5403e5074860eecd0d
Certificate serial: 01856D818C776B6794934D3FBA5AC12DD878
Authority key identifier: 9B:ED:36:AF:13:DA:48:2F:DF:79:FB:54:03:E5:07:48:60:EE:CD:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/EFmc77GrhOK05vdlYI9IAozbAzU.roa
Signing time: Sun 01 Jan 2023 13:24:44 +0000
ROA not before: Sun 01 Jan 2023 13:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207251
IP address blocks: 109.235.194.0/23 maxlen: 23
109.235.196.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:8c:77:6b:67:94:93:4d:3f:ba:5a:c1:2d:d8:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bed36af13da482fdf79fb5403e5074860eecd0d
Validity
Not Before: Jan 1 13:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10599cefb1ab84e2b4e6f765608f48028cdb0335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9d:71:5a:91:c8:99:86:1c:75:99:40:89:60:
88:aa:a2:11:2a:c9:92:80:ee:af:fb:e9:24:3e:b2:
be:00:4c:6a:86:f1:01:f3:e9:cc:60:00:12:fb:02:
8a:07:32:89:fa:a8:a1:94:b6:cc:9b:d0:ab:47:8a:
d8:6f:ea:c4:63:2d:59:ab:75:d9:f1:06:5d:10:67:
50:5b:f8:a3:da:8d:7a:41:fc:a5:8f:06:3b:c7:e7:
02:ae:36:16:1b:9e:6b:b5:ad:76:59:70:23:db:a8:
d0:8f:a6:6e:2e:f6:f2:2d:b9:fb:18:bc:a8:de:89:
4b:e5:4c:05:27:ae:72:5c:be:5c:da:94:5c:b9:8a:
e4:aa:21:ed:b9:4f:47:64:e6:88:64:16:00:03:ea:
7e:fb:93:c8:48:a7:58:af:51:fe:b3:64:e7:c4:7b:
7e:93:ff:15:99:b0:bb:4e:8c:fa:2f:c3:4b:4b:e1:
7d:bb:2a:9e:e3:ce:88:af:8c:52:79:e0:cf:f2:5f:
cb:e9:6a:31:b9:7e:3d:60:43:a0:38:1c:2d:a1:93:
9e:e0:af:a8:30:2a:2e:14:27:ec:5d:7c:93:3c:5c:
2c:6f:af:79:64:b3:50:e4:e3:c3:9c:9c:53:6f:72:
14:a5:14:bd:74:8f:b8:cd:c9:2a:8f:f3:6b:50:92:
68:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:59:9C:EF:B1:AB:84:E2:B4:E6:F7:65:60:8F:48:02:8C:DB:03:35
X509v3 Authority Key Identifier:
keyid:9B:ED:36:AF:13:DA:48:2F:DF:79:FB:54:03:E5:07:48:60:EE:CD:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-02rxPaSC_feftUA-UHSGDuzQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/EFmc77GrhOK05vdlYI9IAozbAzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4b0283-a90c-4d64-8301-d221ebd0818d/1/m-02rxPaSC_feftUA-UHSGDuzQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.194.0-109.235.196.255
Signature Algorithm: sha256WithRSAEncryption
1c:fe:e8:2f:4a:32:e3:5d:2c:3d:e5:c6:eb:1f:03:f0:0b:26:
c4:32:00:d0:36:4f:49:73:1b:bb:e8:01:f1:b8:d6:a4:27:1f:
f3:da:9d:15:18:4b:79:a2:ac:60:f5:98:1d:f2:ad:e7:4f:f3:
51:4b:50:a1:58:47:55:43:df:a6:f9:d9:02:ff:4c:78:a4:c1:
66:58:c2:6d:d0:64:3e:0e:ce:d5:a3:26:ea:99:91:4c:c3:50:
38:c2:05:a6:19:cb:17:58:ef:e1:dc:da:0d:6a:54:30:86:22:
f6:04:f5:d1:b3:57:f1:86:61:53:4d:84:26:d5:ec:c8:7b:a0:
dd:38:47:39:58:ca:ba:a2:c3:5b:e6:db:fe:6f:f5:a5:41:7b:
96:ec:35:aa:1c:b4:6f:e8:32:b0:d7:d3:1f:94:29:ff:d6:32:
f2:47:47:80:1a:f3:83:c9:db:e7:fa:e9:36:ec:b3:49:04:b3:
1f:28:c1:2c:fb:dc:61:33:d7:f1:5e:cf:21:30:c0:7c:f2:1a:
f4:df:de:51:88:18:54:69:b2:11:fa:35:c9:21:34:ba:30:03:
bb:cf:51:4a:64:2a:7f:1f:e9:32:c0:20:92:29:48:70:2d:52:
4e:3d:ea:d5:d9:75:c6:00:8c:5e:56:65:78:5c:da:ff:31:13:
66:78:d0:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:30 2024 by rpki-client on console.sobornost.net