Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/m8HoqoXVFYeKo2D8_CFYlo_7yBw.roa
File: m8HoqoXVFYeKo2D8_CFYlo_7yBw.roa (raw, json)
Hash identifier: 7QPidd94n9aveTu0RgoRmClJNSCIfMmIkGohMkDKpGk=
Subject key identifier: 9B:C1:E8:AA:85:D5:15:87:8A:A3:60:FC:FC:21:58:96:8F:FB:C8:1C
Certificate issuer: /CN=cfeace714c29568ef197007b141d12758cc415d5
Certificate serial: 01856FA6D4215A9277A29FB56C9894B27E76
Authority key identifier: CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/m8HoqoXVFYeKo2D8_CFYlo_7yBw.roa
Signing time: Sun 01 Jan 2023 23:24:42 +0000
ROA not before: Sun 01 Jan 2023 23:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49409
IP address blocks: 45.137.208.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:d4:21:5a:92:77:a2:9f:b5:6c:98:94:b2:7e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfeace714c29568ef197007b141d12758cc415d5
Validity
Not Before: Jan 1 23:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bc1e8aa85d515878aa360fcfc2158968ffbc81c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1d:bc:ac:ec:ef:f6:81:cb:d9:cf:a5:b2:a1:
04:7a:95:2c:e8:5f:9d:ff:89:18:e4:45:4d:28:05:
f6:24:7e:2d:f9:2c:6b:a4:1d:c1:8e:6b:ac:43:f0:
b5:f7:bc:35:1e:05:6b:e4:34:ef:05:95:7d:65:d9:
d9:f0:a9:fb:33:3a:3b:32:17:14:b0:dd:af:dd:64:
08:c7:c0:45:55:6d:e6:46:14:be:0b:c6:8e:b4:7e:
5f:1b:69:21:c0:9b:19:13:d6:22:37:a0:1c:1e:e5:
81:aa:d8:9c:49:23:a5:bf:c8:cc:40:1d:5b:84:74:
36:36:17:61:73:51:1e:22:8d:de:2b:8f:1d:0d:4b:
f3:e8:69:19:bb:d8:a5:04:4f:55:5b:42:24:4b:4b:
12:da:ff:dd:aa:a3:5a:a1:f5:02:0b:8e:d2:69:7e:
09:f1:dc:f2:68:a4:71:85:b7:44:2e:d2:ff:e5:4a:
91:05:6e:f2:ce:a8:d7:72:ef:ed:cb:df:3b:63:45:
06:26:c4:e6:9c:c3:18:00:19:5c:5d:f2:f3:9a:43:
0d:e6:cf:3d:45:01:70:f4:7c:68:b3:95:33:bf:65:
bf:9f:10:53:2a:46:48:d6:bc:16:5f:d9:ae:7e:86:
2d:c9:84:c8:bf:ec:54:01:cc:0c:18:10:d6:22:b7:
40:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C1:E8:AA:85:D5:15:87:8A:A3:60:FC:FC:21:58:96:8F:FB:C8:1C
X509v3 Authority Key Identifier:
keyid:CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/m8HoqoXVFYeKo2D8_CFYlo_7yBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/z-rOcUwpVo7xlwB7FB0SdYzEFdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:54:df:f5:d4:78:3e:63:70:dd:02:c7:b3:d9:e7:7a:5f:e3:
f4:b7:0f:ed:36:a7:76:f3:87:09:98:91:af:4a:89:ed:d8:39:
31:19:56:08:fd:6e:9f:1c:ad:e7:8d:7e:5c:75:1c:fc:12:82:
d0:12:70:ad:bb:38:1b:c1:a4:7b:3a:c0:59:39:0f:65:30:38:
cb:e8:92:c7:a1:dc:4a:f0:08:6b:aa:5b:6d:3e:c8:e0:7d:db:
b7:59:53:86:4a:5e:49:40:97:ea:53:2f:47:27:40:e7:74:13:
96:45:d4:f8:b0:f2:02:5c:eb:21:a7:c8:3f:24:20:43:15:30:
a3:3d:bc:26:e2:60:db:35:78:d7:44:45:6e:92:a0:93:ad:48:
8f:2c:44:37:3e:ae:32:96:74:b3:fe:c4:83:84:e3:80:9d:71:
63:bb:e2:e1:aa:65:16:1a:ac:81:44:2c:09:64:f1:f5:d9:34:
81:8b:36:3d:49:b6:5a:98:57:9b:d8:70:68:d2:34:86:24:84:
c1:2f:a1:aa:21:e2:d6:91:d8:37:eb:2b:f5:6f:9c:7d:d9:af:
84:07:cf:8c:cc:ee:74:4e:9d:51:d5:48:91:be:e6:a9:a3:fb:
19:84:6f:97:15:76:df:de:1a:88:4f:05:49:49:dc:ff:af:01:
f5:52:7f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net