Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/gSBzml8zov9XWdNrsQVxE7C2lGs.roa
File: gSBzml8zov9XWdNrsQVxE7C2lGs.roa (raw, json)
Hash identifier: T4wf1ArHQFtQJVWoYEbjZXW6JTA9a8dn29EF9C85TF0=
Subject key identifier: 81:20:73:9A:5F:33:A2:FF:57:59:D3:6B:B1:05:71:13:B0:B6:94:6B
Certificate issuer: /CN=e6153fcea19f1d49faf3e47e989db6bf5e6fe5a9
Certificate serial: 01856C9CBF1A2C8146FB47530CB5E2253CC1
Authority key identifier: E6:15:3F:CE:A1:9F:1D:49:FA:F3:E4:7E:98:9D:B6:BF:5E:6F:E5:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hU_zqGfHUn68-R-mJ22v15v5ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/gSBzml8zov9XWdNrsQVxE7C2lGs.roa
Signing time: Sun 01 Jan 2023 09:14:49 +0000
ROA not before: Sun 01 Jan 2023 09:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21470
IP address blocks: 81.17.64.0/20 maxlen: 20
81.17.76.0/24 maxlen: 24
91.102.0.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:bf:1a:2c:81:46:fb:47:53:0c:b5:e2:25:3c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6153fcea19f1d49faf3e47e989db6bf5e6fe5a9
Validity
Not Before: Jan 1 09:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8120739a5f33a2ff5759d36bb1057113b0b6946b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:66:02:02:6a:f5:f2:5f:c5:13:0b:83:5d:af:
a7:d7:a0:a5:a3:e6:79:54:b6:8a:8b:76:12:7f:fe:
53:ef:24:94:fd:46:51:ff:5e:3a:1b:99:b4:85:dc:
ac:e5:70:a9:c6:9e:a0:88:12:54:75:11:38:a4:77:
ce:98:0f:58:11:c6:cf:1c:1c:b0:36:00:bb:4a:7a:
67:65:ee:f7:30:20:dd:32:a0:1c:3a:9b:39:a8:1a:
25:73:36:4d:b9:46:a4:fa:6e:d6:b9:cd:93:fb:5f:
1e:fb:5a:bc:1b:d5:f9:6e:21:ae:3d:37:2b:f5:83:
b9:99:88:d7:9c:d6:e8:7e:43:9a:16:54:9a:40:b2:
4a:6c:56:dc:79:92:ec:17:79:58:2b:3b:35:3f:e2:
3b:fb:97:c7:01:df:63:5b:27:3b:5a:ad:af:f7:b6:
b1:5c:58:3c:51:ac:e0:33:8b:48:f6:59:14:92:93:
5d:98:09:88:fe:0f:0c:12:0e:9f:6c:ed:cc:8c:10:
eb:d8:9a:6b:d7:3d:b8:bf:83:0e:9a:f0:74:35:f0:
7b:02:80:ce:0d:6a:37:1d:23:8c:c6:77:a9:a8:18:
2d:c2:55:8b:5c:d5:5f:e4:aa:38:c6:87:e8:cd:23:
ac:4e:b8:4a:dd:9d:94:1b:d5:43:8b:2c:8a:ba:fa:
b2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:20:73:9A:5F:33:A2:FF:57:59:D3:6B:B1:05:71:13:B0:B6:94:6B
X509v3 Authority Key Identifier:
keyid:E6:15:3F:CE:A1:9F:1D:49:FA:F3:E4:7E:98:9D:B6:BF:5E:6F:E5:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hU_zqGfHUn68-R-mJ22v15v5ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/gSBzml8zov9XWdNrsQVxE7C2lGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/4bb0e2-c9ef-424c-93d3-f9d1f26d29d1/1/5hU_zqGfHUn68-R-mJ22v15v5ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.17.64.0/20
91.102.0.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:c5:31:8d:4d:ae:a5:5e:34:35:60:71:42:cf:27:e4:8d:ce:
b0:4e:c0:f7:00:d8:b3:a8:c0:84:2b:8e:c5:96:cf:60:9a:ca:
98:28:1d:af:b3:00:ef:16:36:74:a2:3a:bd:23:02:72:c4:6f:
62:72:df:a0:e1:0c:ef:99:2f:6f:62:1d:e7:c2:0b:43:a7:b3:
ff:ab:66:d3:ad:a8:33:ee:59:74:23:1d:32:f4:6a:43:df:b5:
c8:76:77:b9:66:51:1d:8b:fd:a6:ed:60:3b:5b:91:26:3d:84:
b9:e0:10:d3:3a:1c:14:ce:78:56:0c:c0:ed:6b:27:cb:b2:8e:
a9:cf:a8:a1:03:fd:27:46:62:41:bb:ba:09:ce:68:3d:ce:21:
d7:45:a2:a0:12:d8:35:64:32:ae:b7:7e:41:20:f0:9c:09:ee:
da:3c:31:ec:d8:4a:9a:74:f4:bc:99:87:8b:af:8a:ff:50:d4:
83:cf:61:6d:cd:fe:47:90:e5:02:ed:0b:f9:59:47:92:8d:af:
4a:68:00:69:57:c6:eb:be:a3:45:2e:28:3e:69:64:84:06:85:
12:70:8a:a0:fe:16:6f:2a:32:80:17:72:06:37:25:19:0c:f9:
c6:8e:c4:34:af:17:85:a3:36:5b:69:c2:6d:e5:a0:15:0a:7b:
9a:62:ba:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:19 2024 by rpki-client on console.sobornost.net