Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/OGgorEJFuuST3gh6rZqeD7rXx0s.roa
File: OGgorEJFuuST3gh6rZqeD7rXx0s.roa (raw, json)
Hash identifier: r2to6fQiVIaVL7HgF0uX0i4veokuCx4w+YzhckD6knc=
Subject key identifier: 38:68:28:AC:42:45:BA:E4:93:DE:08:7A:AD:9A:9E:0F:BA:D7:C7:4B
Certificate issuer: /CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Certificate serial: 01857142E4CE09EA58DC4A20041D3DE6979D
Authority key identifier: D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/OGgorEJFuuST3gh6rZqeD7rXx0s.roa
Signing time: Mon 02 Jan 2023 06:54:47 +0000
ROA not before: Mon 02 Jan 2023 06:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212398
IP address blocks: 91.194.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:e4:ce:09:ea:58:dc:4a:20:04:1d:3d:e6:97:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1065f4fb6b679e7f1cbdd8035f967467010ea99
Validity
Not Before: Jan 2 06:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=386828ac4245bae493de087aad9a9e0fbad7c74b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c1:82:89:5f:a3:ee:a0:64:b3:13:85:39:d2:
a2:ae:a5:9b:7b:ba:80:31:92:76:66:dd:5e:33:0d:
0f:68:df:a7:9e:fc:5c:ef:7f:07:e9:b1:70:86:fe:
e6:9a:17:de:2e:b1:13:0f:31:6e:7b:a2:3a:b2:6b:
88:32:8b:b5:a3:d2:26:79:99:48:e3:85:88:17:a4:
f1:ef:50:62:58:ad:33:42:01:11:98:9a:35:9c:79:
94:af:e7:bf:a5:46:3f:13:0a:2d:79:6c:0b:6c:e3:
9d:3a:3a:3c:a1:99:2b:d8:41:06:7a:4f:8c:e0:79:
76:53:be:99:07:a2:f1:54:82:51:90:61:30:36:41:
de:1a:3b:e4:15:6d:66:3e:81:66:41:ad:59:9d:0b:
e3:95:0e:b4:27:ce:4f:42:88:59:e5:cf:2f:85:61:
61:d4:95:93:6a:ca:f2:7a:dc:c1:ce:08:94:13:fe:
e9:bd:a8:9a:bd:0a:5d:d3:0a:5d:5c:aa:cb:99:9f:
19:78:83:ba:4f:92:b3:c5:d4:de:6a:48:56:bb:9b:
83:29:d7:96:ef:c9:4c:74:c5:27:47:33:d5:b7:a3:
63:65:42:04:ab:1a:06:8b:68:9a:c9:d9:aa:31:74:
33:ce:33:45:75:5d:7a:a9:3f:c4:c8:02:cc:b9:58:
c9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:68:28:AC:42:45:BA:E4:93:DE:08:7A:AD:9A:9E:0F:BA:D7:C7:4B
X509v3 Authority Key Identifier:
keyid:D1:06:5F:4F:B6:B6:79:E7:F1:CB:DD:80:35:F9:67:46:70:10:EA:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QZfT7a2eefxy92ANflnRnAQ6pk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/OGgorEJFuuST3gh6rZqeD7rXx0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/78f49f-247d-4888-af8d-a1f040e8e8d4/1/0QZfT7a2eefxy92ANflnRnAQ6pk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.7.0/24
Signature Algorithm: sha256WithRSAEncryption
96:56:42:82:dd:09:56:19:ef:dd:f8:3b:d0:e5:e0:a6:67:72:
7b:0e:1c:b2:3d:df:9f:a4:16:09:8d:2d:66:b1:eb:73:80:9f:
61:ed:53:85:fb:39:17:f0:25:c1:29:12:e6:12:91:d4:e2:40:
e3:46:ef:4a:ea:85:ef:93:72:65:50:96:b2:e2:5b:32:4e:34:
c0:2f:c1:57:3e:3c:f2:6e:cc:ef:2f:b7:35:5c:21:d9:10:1d:
8c:fb:4b:01:b1:1e:1d:9f:4f:8e:a7:42:e0:e7:ae:42:dc:68:
e8:4e:95:56:b1:6e:6d:ff:36:e0:b1:bf:69:19:0d:54:9c:8c:
7b:3b:e8:de:dd:fe:e2:2c:ff:5b:37:b1:46:9a:07:8c:12:04:
c7:26:68:af:7b:7e:be:5b:ad:8b:a7:1b:da:ab:0b:c9:9f:8c:
b4:e7:7b:ba:a0:f6:da:df:a7:07:33:ac:7b:d0:12:b8:cd:0c:
a0:41:37:2a:3c:0d:ee:19:d2:c6:12:b4:02:e9:a2:07:c0:1a:
6b:02:31:45:14:fc:08:45:67:f7:69:be:d6:20:2d:c9:ff:0d:
64:a6:3b:97:45:b8:76:83:12:a0:05:1f:e1:1e:1e:92:2c:0d:
c7:bf:e4:e3:55:56:99:93:a9:39:95:38:1a:c2:c0:e4:34:d0:
61:e9:9c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:09 2024 by rpki-client on console.sobornost.net