Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/8e37d3-c632-48b8-9b0b-5012054f9d26/1/RrMj9mNwn7xWuShdcr5XK_HeasU.roa
File: RrMj9mNwn7xWuShdcr5XK_HeasU.roa (raw, json)
Hash identifier: kS2cUWTmDqijfTqcb2d48SbKJXchALxJjVPVBXBzmbk=
Subject key identifier: 46:B3:23:F6:63:70:9F:BC:56:B9:28:5D:72:BE:57:2B:F1:DE:6A:C5
Certificate issuer: /CN=a5915bc8a982fe61eb4aed5418323288329504d7
Certificate serial: 018572BA685B018924AF009BADFC90286982
Authority key identifier: A5:91:5B:C8:A9:82:FE:61:EB:4A:ED:54:18:32:32:88:32:95:04:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZFbyKmC_mHrSu1UGDIyiDKVBNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/8e37d3-c632-48b8-9b0b-5012054f9d26/1/RrMj9mNwn7xWuShdcr5XK_HeasU.roa
Signing time: Mon 02 Jan 2023 13:44:56 +0000
ROA not before: Mon 02 Jan 2023 13:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43046
IP address blocks: 195.225.58.0/24 maxlen: 24
195.225.58.0/23 maxlen: 23
195.225.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:68:5b:01:89:24:af:00:9b:ad:fc:90:28:69:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5915bc8a982fe61eb4aed5418323288329504d7
Validity
Not Before: Jan 2 13:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46b323f663709fbc56b9285d72be572bf1de6ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:61:fa:4b:f5:17:d7:56:f1:47:fd:89:fa:3d:
07:fd:7d:5a:db:2e:08:f5:3d:52:b4:d3:f9:a6:58:
5d:c1:35:c2:29:d3:c2:3d:40:db:fa:e6:cd:03:4a:
a8:a6:63:43:1e:3b:69:84:13:ce:93:4c:ac:fc:c7:
94:38:de:71:38:0a:3d:2e:19:c5:92:71:f1:2b:ce:
ea:d8:27:67:2f:4c:cf:d9:2a:91:24:46:29:73:55:
ff:57:07:aa:d5:7d:2c:d9:77:89:76:2c:47:b9:9e:
5c:d9:9c:8f:af:ac:c6:4d:49:0c:3e:6f:2e:71:1a:
c8:23:3c:55:37:66:66:c1:93:f2:f4:92:02:26:4e:
89:6c:66:07:d1:ba:44:73:f8:28:ad:c7:0a:71:e2:
df:0e:d5:31:14:d2:32:2c:88:24:8c:07:5d:3c:9d:
4e:5b:8a:67:5b:a5:be:a7:1f:8f:b8:08:5d:4b:c0:
fa:f6:1f:9e:7c:45:cc:eb:df:2c:f5:f2:eb:8a:91:
ea:99:b4:11:c7:be:7d:bd:4f:83:dc:77:65:c5:bf:
62:6d:c6:98:d9:11:92:84:f2:71:0f:64:ea:91:35:
6a:6c:60:91:9a:29:d1:0b:4b:be:f6:0d:e5:ee:aa:
86:34:b9:35:08:8b:28:2f:b7:27:9a:92:84:b5:9b:
e4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:B3:23:F6:63:70:9F:BC:56:B9:28:5D:72:BE:57:2B:F1:DE:6A:C5
X509v3 Authority Key Identifier:
keyid:A5:91:5B:C8:A9:82:FE:61:EB:4A:ED:54:18:32:32:88:32:95:04:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZFbyKmC_mHrSu1UGDIyiDKVBNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/8e37d3-c632-48b8-9b0b-5012054f9d26/1/RrMj9mNwn7xWuShdcr5XK_HeasU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/8e37d3-c632-48b8-9b0b-5012054f9d26/1/pZFbyKmC_mHrSu1UGDIyiDKVBNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.58.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:29:fb:07:49:da:e2:76:18:51:1f:e3:75:9f:0b:dd:cc:8a:
e1:fb:c6:64:88:3f:bb:2f:1a:ca:b1:b3:15:44:51:b3:ae:fe:
73:49:68:2d:1f:03:55:df:e1:df:d1:9e:e8:15:af:ca:a3:d6:
db:a0:5f:0f:5c:3b:40:a6:43:c7:b0:cd:b9:70:d0:4e:03:ae:
a3:7f:33:ad:35:56:3e:71:af:6c:f2:bb:68:f6:b3:e8:52:f5:
0f:40:ba:68:56:ef:09:6b:62:3e:a4:fe:cf:d2:f1:d1:11:46:
26:62:79:06:34:b5:94:3d:20:19:a6:02:76:52:4a:fc:3b:7d:
f7:c5:91:fe:cc:b4:fb:bb:18:c4:04:c7:24:c0:84:06:42:6e:
76:40:87:25:3e:01:45:54:2e:8e:61:b7:78:e3:27:9e:b5:fc:
6a:2a:21:c3:96:88:e5:07:8a:f2:ac:b0:c9:7c:6a:b6:b8:3f:
1d:95:65:af:36:20:b5:e8:42:67:88:6c:c4:22:38:73:25:be:
b4:f6:c1:8d:2d:87:65:b1:ae:10:6e:01:e4:c7:38:3c:43:2e:
9e:21:ba:15:18:38:ef:50:71:22:c2:d5:16:42:29:ee:41:ac:
10:e3:90:f9:70:29:c5:d9:6b:41:b4:e2:e4:70:69:be:a9:e4:
0a:c6:30:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:32 2024 by rpki-client on console.sobornost.net