Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/ebed7d-5090-417a-b5b8-aa995902b84b/1/5vgAkLZtAMmSnvrEPC5dWClw1N8.roa
File: 5vgAkLZtAMmSnvrEPC5dWClw1N8.roa (raw, json)
Hash identifier: tsmzYFGT4xA262vBKZq4x3+eMSgQ/5mkn9PQqoVicbs=
Subject key identifier: E6:F8:00:90:B6:6D:00:C9:92:9E:FA:C4:3C:2E:5D:58:29:70:D4:DF
Certificate issuer: /CN=64753d20b98a0ee770c3b5166a3f4a07f0515bdd
Certificate serial: 01857079B8BAC15952E4028B08E670EFC55C
Authority key identifier: 64:75:3D:20:B9:8A:0E:E7:70:C3:B5:16:6A:3F:4A:07:F0:51:5B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHU9ILmKDudww7UWaj9KB_BRW90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/ebed7d-5090-417a-b5b8-aa995902b84b/1/5vgAkLZtAMmSnvrEPC5dWClw1N8.roa
Signing time: Mon 02 Jan 2023 03:15:03 +0000
ROA not before: Mon 02 Jan 2023 03:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9023
IP address blocks: 194.37.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:b8:ba:c1:59:52:e4:02:8b:08:e6:70:ef:c5:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64753d20b98a0ee770c3b5166a3f4a07f0515bdd
Validity
Not Before: Jan 2 03:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6f80090b66d00c9929efac43c2e5d582970d4df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6e:20:a3:f7:92:cc:f9:8a:34:65:8d:92:8f:
fd:69:6e:e5:78:cc:ad:5e:56:ae:7e:d8:26:90:91:
61:b6:88:b6:3e:64:46:6d:5a:75:83:ba:54:5c:7a:
e2:bc:59:e1:ca:9a:22:39:bd:e6:cc:e2:ce:26:80:
6d:23:c3:60:0b:f1:fc:48:39:dc:ea:cf:81:08:a4:
fc:c7:bf:49:df:43:02:3e:f4:e5:01:84:10:3f:33:
51:4a:6c:76:c0:bf:8d:c6:aa:8b:31:5e:15:b4:e0:
2a:17:ae:29:05:57:ff:07:aa:d3:8b:df:ef:5c:8f:
4c:8e:9b:51:b0:80:ff:e4:1d:89:bc:bd:2e:ab:35:
33:2b:fe:da:fe:bd:c2:41:ed:b0:2b:e7:81:15:eb:
b0:94:79:25:ec:01:9a:bc:44:5c:11:5c:c8:11:f6:
d4:53:2b:86:a6:60:69:aa:27:80:79:65:c0:0c:e0:
5b:c6:d7:ef:78:d6:ee:28:36:a7:36:7a:20:2a:68:
67:ce:bc:b4:25:8e:5c:2d:12:b4:37:5c:96:5a:9a:
69:23:01:2c:cc:3d:78:3c:21:d3:5c:96:99:d9:42:
e2:6c:20:72:13:37:0c:6b:a5:d8:53:e3:a9:a9:f8:
db:49:61:6c:70:ee:84:1a:34:45:32:55:29:07:cf:
c6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F8:00:90:B6:6D:00:C9:92:9E:FA:C4:3C:2E:5D:58:29:70:D4:DF
X509v3 Authority Key Identifier:
keyid:64:75:3D:20:B9:8A:0E:E7:70:C3:B5:16:6A:3F:4A:07:F0:51:5B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHU9ILmKDudww7UWaj9KB_BRW90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/ebed7d-5090-417a-b5b8-aa995902b84b/1/5vgAkLZtAMmSnvrEPC5dWClw1N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/ebed7d-5090-417a-b5b8-aa995902b84b/1/ZHU9ILmKDudww7UWaj9KB_BRW90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.253.0/24
Signature Algorithm: sha256WithRSAEncryption
87:27:1d:a8:8a:ee:53:e5:b9:56:d3:cc:82:00:2f:38:3c:60:
e4:f1:8c:c8:2a:4e:5e:c5:5e:4d:d8:1f:7f:a6:65:53:4f:31:
ff:75:20:f6:27:26:db:d8:c2:b7:7d:db:e6:54:17:70:61:a3:
1b:9f:14:85:2a:bb:59:fc:c6:ca:93:99:b2:40:87:4b:d9:91:
07:24:f4:41:1a:17:56:07:82:f4:f6:cb:65:c1:05:92:62:05:
b3:df:b0:2f:4a:ac:ab:6e:0d:8a:66:bc:78:93:6a:35:3a:dd:
80:32:d2:c5:02:20:27:c3:38:c2:a7:9c:d4:2e:0e:07:27:34:
3e:77:c1:51:86:d5:ac:82:b3:b6:15:ba:59:b8:f5:d9:90:f3:
56:69:ac:98:f6:55:b8:22:b0:97:6a:aa:1b:e8:d7:4a:26:a0:
58:b2:a1:9d:e2:fb:ae:50:58:78:f6:db:66:19:99:4c:2b:a8:
9b:e4:bd:e2:63:70:bd:33:43:eb:7d:62:62:74:49:4f:38:67:
b5:8d:07:a7:4a:ee:37:63:f2:a6:dc:68:f2:d3:09:03:40:bd:
30:b8:fc:b3:e2:01:2e:84:c0:e7:4a:29:7e:17:28:39:a2:41:
de:cd:39:b6:1d:11:39:2b:0d:62:66:a1:1c:c2:11:cb:40:d0:
37:97:8b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:16 2024 by rpki-client on console.sobornost.net