Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/cYOmFuWFPxjOkKas0-UwY9mUQIw.roa
File: cYOmFuWFPxjOkKas0-UwY9mUQIw.roa (raw, json)
Hash identifier: /J3Tg3vWYGjbyMqvvPcN0h7CHRBmLdSz6UwqBgh4PUg=
Subject key identifier: 71:83:A6:16:E5:85:3F:18:CE:90:A6:AC:D3:E5:30:63:D9:94:40:8C
Certificate issuer: /CN=8846405bfcc78066c5192cb3ebe72c443c557288
Certificate serial: 01862FFA8A853380169A3803D6D4C20ACA28
Authority key identifier: 88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/cYOmFuWFPxjOkKas0-UwY9mUQIw.roa
Signing time: Wed 08 Feb 2023 07:43:14 +0000
ROA not before: Wed 08 Feb 2023 07:43:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205644
IP address blocks: 185.68.182.0/24 maxlen: 24
2a13:8b00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2f:fa:8a:85:33:80:16:9a:38:03:d6:d4:c2:0a:ca:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8846405bfcc78066c5192cb3ebe72c443c557288
Validity
Not Before: Feb 8 07:43:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7183a616e5853f18ce90a6acd3e53063d994408c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:52:02:7c:2d:fd:43:b6:30:1b:5b:d1:53:cc:
01:4f:97:de:1c:c4:5c:ed:2a:77:fd:1d:6b:0b:62:
5b:fc:8a:c1:52:10:35:f3:5e:74:db:ad:25:f3:27:
ba:33:ea:3c:5c:95:17:fa:f7:a8:7e:14:94:b9:c2:
0d:c2:2c:86:e0:42:12:25:e6:02:a1:e9:43:84:a4:
6b:dd:15:f0:0c:be:ff:60:a0:ae:34:3a:2f:a5:a4:
db:d7:a9:18:4a:b9:ce:e0:f8:b4:25:eb:db:59:dc:
58:b6:78:08:cf:5d:8c:a1:54:90:3d:a2:f3:28:13:
6d:21:a5:04:be:a6:b2:50:bb:b1:c9:63:5c:29:5c:
14:6e:36:df:b8:b6:91:10:d0:3e:d1:1a:8a:b9:9e:
91:21:e2:3c:48:1c:db:3a:b7:5e:ea:82:37:95:98:
98:a0:ad:2b:6d:b4:91:ee:34:05:b3:fa:cb:2f:cf:
dd:dd:e9:13:13:b5:3c:6a:48:48:81:40:52:38:5e:
34:42:d3:3a:6a:96:f8:58:37:bb:09:8f:90:71:2c:
ad:c9:20:03:1c:75:a6:a4:76:5e:60:26:31:40:9d:
71:2a:88:65:ec:4f:0e:b9:62:c6:de:3e:c0:10:b9:
01:72:c9:9e:3a:9b:c0:cf:06:c3:d2:57:aa:60:97:
7a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:83:A6:16:E5:85:3F:18:CE:90:A6:AC:D3:E5:30:63:D9:94:40:8C
X509v3 Authority Key Identifier:
keyid:88:46:40:5B:FC:C7:80:66:C5:19:2C:B3:EB:E7:2C:44:3C:55:72:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEZAW_zHgGbFGSyz6-csRDxVcog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/cYOmFuWFPxjOkKas0-UwY9mUQIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/9073ba-88e2-4a45-9daf-5a0a1d0ac58c/1/iEZAW_zHgGbFGSyz6-csRDxVcog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.182.0/24
IPv6:
2a13:8b00::/29
Signature Algorithm: sha256WithRSAEncryption
93:a3:85:fe:89:28:fe:4a:3c:33:9c:36:4f:e3:b7:05:e3:24:
6d:78:5d:fb:c3:3b:4c:e9:be:b3:8b:61:d4:58:1f:9a:4c:7d:
e2:11:d3:d2:bf:fc:cd:43:ad:8c:79:05:b8:c4:e7:c3:a1:0c:
55:e0:ed:c6:c6:2d:46:84:57:1e:7f:b7:c6:9a:c4:43:01:81:
2c:37:55:d7:aa:96:d5:db:7c:58:bd:3c:dd:2d:5c:9b:c0:5b:
1d:34:91:e0:be:ec:4c:39:20:a2:5b:05:49:d5:27:42:20:1b:
1d:d8:e3:d7:62:c1:e3:db:a7:a8:c6:25:3a:cf:8e:ae:11:36:
ba:d7:30:a6:a2:d5:69:c9:35:fc:3a:24:73:24:07:05:de:4a:
f3:7f:63:f6:9f:cd:11:e4:f8:35:3a:f3:07:0b:c0:d2:a8:8e:
75:a9:fe:c1:92:87:6e:e0:11:7d:dd:a0:1b:f6:79:79:fb:06:
2c:af:38:c1:17:3f:c2:39:bf:91:43:c4:09:47:82:f8:60:e2:
aa:75:c7:3e:35:ea:e6:69:13:20:52:68:d1:37:2f:d8:bf:41:
eb:09:55:04:02:89:af:90:f3:26:c6:70:6a:b8:c0:29:3d:57:
d9:73:3f:99:da:98:29:3c:d7:a9:67:ac:23:74:9b:2f:46:1e:
7b:5c:e0:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:02 2024 by rpki-client on console.sobornost.net