Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/SKWCnX7-2062Nh-0sNk8ZgFw1PM.roa
File: SKWCnX7-2062Nh-0sNk8ZgFw1PM.roa (raw, json)
Hash identifier: NZJl4xoFFKSfKTYTbJvpHnYUtUFp15wVFV4r7BhT5P8=
Subject key identifier: 48:A5:82:9D:7E:FE:DB:4E:B6:36:1F:B4:B0:D9:3C:66:01:70:D4:F3
Certificate issuer: /CN=535a0905ad5684f414182c99e1ed998163093001
Certificate serial: 01856BB7F38F84804ABD2F81340FE8C0D322
Authority key identifier: 53:5A:09:05:AD:56:84:F4:14:18:2C:99:E1:ED:99:81:63:09:30:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1oJBa1WhPQUGCyZ4e2ZgWMJMAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/SKWCnX7-2062Nh-0sNk8ZgFw1PM.roa
Signing time: Sun 01 Jan 2023 05:04:55 +0000
ROA not before: Sun 01 Jan 2023 05:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205265
IP address blocks: 185.222.16.0/22 maxlen: 24
2a0c:f000::/48 maxlen: 48
2a0c:f000:2000::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:f3:8f:84:80:4a:bd:2f:81:34:0f:e8:c0:d3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535a0905ad5684f414182c99e1ed998163093001
Validity
Not Before: Jan 1 05:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48a5829d7efedb4eb6361fb4b0d93c660170d4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:43:01:ed:69:5b:99:51:e0:77:3a:22:58:a9:
35:38:5c:4c:ed:2b:da:9d:d7:84:b0:63:c9:53:4d:
33:60:75:da:2c:ef:24:c3:81:1d:1b:d6:e5:2d:f7:
a9:ca:70:03:91:79:81:13:fb:5b:25:32:92:ec:ae:
8f:8b:1a:f6:b1:c6:5f:44:8a:22:06:fc:a6:8a:31:
80:d2:b2:dc:bf:ec:22:48:3f:09:a8:3e:cf:ca:b3:
a9:d7:e9:bd:b0:d0:3e:e7:94:b9:6f:d7:7b:84:33:
4b:3d:3f:a5:50:f9:58:6a:3a:33:29:bc:6f:ee:2a:
ea:fa:1a:b4:8f:b4:11:44:ca:22:45:d6:7d:8e:4c:
ec:c0:22:58:1d:9d:36:f2:58:af:f0:e4:30:52:23:
4d:52:83:e4:68:eb:4f:70:ed:fb:a9:21:83:ad:d0:
fa:1e:5f:97:d9:4b:0b:04:48:d9:3d:fa:c9:ca:37:
ab:58:f6:2d:ee:80:b7:69:96:4b:6a:0e:1e:7b:10:
e1:ec:14:4f:74:fb:2f:bb:0c:51:d4:54:f8:54:fe:
44:51:2e:0c:02:e6:ce:e2:68:0c:30:aa:50:c5:a1:
70:0c:48:3a:1a:72:38:f3:77:51:85:92:a0:10:61:
ed:77:03:1c:b9:20:4f:57:c9:59:d8:6b:5b:e5:ad:
04:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A5:82:9D:7E:FE:DB:4E:B6:36:1F:B4:B0:D9:3C:66:01:70:D4:F3
X509v3 Authority Key Identifier:
keyid:53:5A:09:05:AD:56:84:F4:14:18:2C:99:E1:ED:99:81:63:09:30:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1oJBa1WhPQUGCyZ4e2ZgWMJMAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/SKWCnX7-2062Nh-0sNk8ZgFw1PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b27baf-e681-4ab6-b903-6a10c6e3222d/1/U1oJBa1WhPQUGCyZ4e2ZgWMJMAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.16.0/22
IPv6:
2a0c:f000::/48
2a0c:f000:2000::/48
Signature Algorithm: sha256WithRSAEncryption
39:40:a9:7e:61:1e:7a:63:5e:95:f5:8a:ef:6d:dd:c8:86:8f:
12:57:2b:9a:58:6b:ba:38:51:b1:1e:e4:7b:88:6f:3d:97:c6:
94:5c:43:45:3f:a5:62:39:f0:fb:76:36:f3:a7:ce:9b:4a:75:
6b:7e:76:7d:c9:f6:f1:4e:71:cc:8c:b7:d8:55:cc:4a:f7:3c:
6b:23:4e:dd:ea:7e:de:32:d2:ec:a5:31:7c:ac:aa:48:81:36:
41:42:de:12:f7:e1:85:77:c9:68:8e:81:53:63:4b:a4:67:b9:
a1:31:c9:14:7e:f3:41:95:1d:4d:38:5f:2f:85:0d:e1:fb:18:
cf:8f:fa:50:81:7d:da:b7:a0:de:1f:1e:e3:f4:b6:c7:fe:38:
b8:dc:6b:02:65:df:6b:56:bc:f1:47:50:1d:a7:9c:c6:fb:32:
e7:20:6e:46:51:f5:de:ef:45:e4:97:5c:20:3e:91:0b:0c:09:
fe:9d:04:c7:ad:29:0d:3c:7f:81:e3:9c:95:0b:9c:5d:0f:1a:
d3:ae:30:8f:f2:66:43:0c:77:94:ee:df:90:f4:fb:48:76:94:
1f:19:eb:76:f0:cc:79:01:6b:f4:ff:b3:d5:54:72:64:b2:34:
39:99:57:cd:ba:19:2f:98:0a:96:89:3d:b7:08:f2:e6:49:1b:
bc:a0:1e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:59 2024 by rpki-client on console.sobornost.net