Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/bu8P5gBTK3w8o4XVA9kyHBwwPOQ.roa
File: bu8P5gBTK3w8o4XVA9kyHBwwPOQ.roa (raw, json)
Hash identifier: C2iTZHvqW0SBPGiTVwrJ5rGGRS+eYD6HCGkCTnF/6Io=
Subject key identifier: 6E:EF:0F:E6:00:53:2B:7C:3C:A3:85:D5:03:D9:32:1C:1C:30:3C:E4
Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Certificate serial: 01856FA70B87FB1B26CF9B8F39306B5CFDCF
Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/bu8P5gBTK3w8o4XVA9kyHBwwPOQ.roa
Signing time: Sun 01 Jan 2023 23:24:56 +0000
ROA not before: Sun 01 Jan 2023 23:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62433
IP address blocks: 91.228.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:0b:87:fb:1b:26:cf:9b:8f:39:30:6b:5c:fd:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf
Validity
Not Before: Jan 1 23:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6eef0fe600532b7c3ca385d503d9321c1c303ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0d:30:6f:30:8e:f7:28:78:1b:45:ba:b0:3d:
14:44:87:32:38:df:72:8d:b2:32:e3:e0:6e:ef:0e:
1c:63:ff:94:8e:7a:82:cf:ea:41:2a:91:f8:ad:6e:
f6:1b:58:29:6d:74:20:90:2a:d8:ce:73:42:ec:e2:
08:9e:66:c1:36:98:fa:05:3d:73:46:47:b9:f5:51:
a5:39:5f:fd:f0:ec:9e:dd:68:2c:48:bc:7c:02:5a:
04:bd:05:2a:eb:3f:70:1c:3d:93:71:48:78:87:fb:
06:7d:98:a0:70:bc:f4:6d:3a:d6:b7:7e:8c:96:4f:
7d:d7:e5:57:e8:65:89:3a:d8:10:bc:34:72:32:6e:
e5:2d:77:94:cf:7a:89:5d:eb:b9:56:7d:0e:c0:66:
fd:c2:5b:5e:d5:c7:ca:20:60:55:fc:44:9e:65:a9:
2a:7e:aa:be:6a:14:e6:05:f9:35:89:24:76:23:59:
7b:33:eb:a4:32:24:62:22:5c:e3:45:ff:bf:d3:19:
a1:84:9a:5a:16:97:a8:75:df:d9:39:0e:f1:b5:43:
b6:c7:31:07:f2:7e:db:25:b8:85:c5:a0:00:75:f2:
85:13:b0:4c:78:8c:9a:7f:ea:96:ab:12:2f:73:41:
8d:0f:63:6d:6e:cb:fa:b8:6d:95:e6:0f:5a:78:c5:
22:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EF:0F:E6:00:53:2B:7C:3C:A3:85:D5:03:D9:32:1C:1C:30:3C:E4
X509v3 Authority Key Identifier:
keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/bu8P5gBTK3w8o4XVA9kyHBwwPOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.255.0/24
Signature Algorithm: sha256WithRSAEncryption
17:2b:16:6d:7a:7d:3b:d9:de:7f:68:d6:e5:fb:de:23:9c:bd:
a9:78:3a:84:a7:2d:00:76:f9:13:81:6f:e5:49:1c:d7:07:8a:
31:63:24:f5:98:58:29:62:92:99:79:df:4e:19:21:f0:89:9f:
12:20:4d:c0:48:b5:06:b0:85:9a:5e:5b:85:15:2f:97:23:1a:
94:77:97:0d:38:31:3b:e8:bd:0d:9b:ef:85:9f:ca:c1:c7:99:
ff:a8:86:a2:9e:41:e4:be:14:4f:6e:0c:19:7e:20:dc:85:21:
59:7d:11:9b:2a:23:3b:19:62:ca:da:d9:38:d7:cf:4d:ef:00:
23:28:31:20:66:bf:e7:10:4d:b4:b9:74:0f:b1:0c:33:74:ed:
5b:27:10:eb:bf:76:00:a7:d3:a1:10:4b:d4:31:f1:90:b2:0a:
5c:3c:45:e0:69:37:c7:f3:e7:7f:22:d1:0d:ae:df:bb:1c:9e:
50:e8:04:1b:4d:19:ec:49:f4:e2:3a:c2:36:9b:8a:55:d1:c9:
22:21:52:aa:a3:12:bf:70:ce:89:87:1a:f7:12:c1:c8:6c:3b:
60:f0:0c:13:08:7e:11:8e:14:65:b4:e5:81:39:b3:2a:6e:06:
e5:9a:6b:74:ea:a5:ba:12:bf:b3:50:e0:8c:8e:8e:4d:70:e7:
7b:0d:1a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:32 2024 by rpki-client on console.sobornost.net