Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/57nVapiSLiX1t649oDAnspLddK8.roa
File: 57nVapiSLiX1t649oDAnspLddK8.roa (raw, json)
Hash identifier: MfU/WRlmMdxy/EZO5xsKTFlSmUIGyTMwbbTThCyqYJY=
Subject key identifier: E7:B9:D5:6A:98:92:2E:25:F5:B7:AE:3D:A0:30:27:B2:92:DD:74:AF
Certificate issuer: /CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Certificate serial: 018917ED59714FFD6252B52E03AA88D47828
Authority key identifier: 66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/57nVapiSLiX1t649oDAnspLddK8.roa
Signing time: Sun 02 Jul 2023 18:46:18 +0000
ROA not before: Sun 02 Jul 2023 18:46:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58259
IP address blocks: 91.210.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:17:ed:59:71:4f:fd:62:52:b5:2e:03:aa:88:d4:78:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Validity
Not Before: Jul 2 18:46:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7b9d56a98922e25f5b7ae3da03027b292dd74af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7a:aa:8a:9c:57:de:e5:00:1b:cf:a9:f8:af:
1f:be:82:87:92:01:4a:a8:4d:0a:89:ff:22:d0:6d:
cb:60:3c:c2:c7:0d:76:e7:3c:05:a9:b1:b2:74:c3:
1e:07:ce:53:f8:ff:2b:20:38:92:56:7f:bf:ef:cb:
39:2a:54:c0:bf:6b:6d:bc:40:44:da:5a:e3:70:57:
3e:b0:5d:25:71:82:50:4e:dc:12:98:09:18:38:da:
46:50:6b:94:b7:2c:ff:b3:df:63:dc:a5:22:82:68:
51:ff:4e:2b:03:0b:cd:5a:47:b6:7c:90:8f:d1:1b:
20:45:03:3c:81:07:ed:63:07:7a:7f:2a:85:63:86:
5d:a6:b0:c3:72:18:2e:13:4f:ed:e8:00:1d:a1:40:
33:ee:0e:5f:3d:0a:16:be:7d:d7:4f:4c:86:22:dc:
1b:84:d6:3b:17:12:6b:2d:de:d8:bc:d6:65:4c:db:
70:3a:41:86:c4:c8:08:79:08:ab:b7:97:ec:b4:01:
5c:d5:39:a2:4d:ac:a9:d2:eb:59:e1:e9:15:34:c5:
c4:35:16:2c:e4:d1:ab:be:26:ef:ec:b4:e5:e5:be:
25:46:d9:a7:ab:f0:ae:6f:dd:ac:47:18:d2:21:3f:
86:ae:76:df:00:6d:ed:ea:12:40:ed:c4:07:a1:82:
df:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:B9:D5:6A:98:92:2E:25:F5:B7:AE:3D:A0:30:27:B2:92:DD:74:AF
X509v3 Authority Key Identifier:
keyid:66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/57nVapiSLiX1t649oDAnspLddK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/Zt_InAeuEzG_s3E4Vo6nmof-zzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.70.0/24
Signature Algorithm: sha256WithRSAEncryption
53:59:a3:57:b5:36:28:dc:87:49:f4:bf:9c:52:14:28:b1:b7:
80:25:06:c7:33:08:8a:9d:85:fa:e0:bf:9e:a2:7d:a8:1d:f7:
1b:15:14:20:f2:e0:ac:a8:77:a7:a8:c6:85:b7:e4:3e:2a:9e:
96:71:d1:9d:03:a5:1d:ad:9d:7c:54:23:c8:02:5a:e4:4d:07:
7c:f1:1a:d5:0d:16:36:eb:f0:e0:17:20:95:ff:51:53:c1:10:
e9:87:14:10:57:2f:20:b1:98:99:6a:4e:e5:0e:1e:04:7a:81:
2f:67:2d:12:6b:13:fb:52:c6:47:4d:be:8e:0a:60:bc:9a:4b:
b1:a1:5a:ae:47:74:d6:02:70:5e:cd:e1:d4:b0:b8:06:34:58:
66:82:cc:e3:95:d5:61:a8:7b:08:6e:8e:be:cc:2c:2a:7d:45:
e4:29:5b:08:cc:ae:9d:20:92:33:4a:a7:4a:d2:b2:52:c6:fc:
46:7a:0e:43:73:16:45:57:1c:e9:6b:81:3d:67:95:01:e4:c9:
db:2d:4a:d7:fa:50:d5:ae:18:52:57:27:05:26:f8:41:34:5b:
61:53:a2:13:c2:84:e2:e6:b6:35:7a:c4:99:ee:ec:65:a8:04:
c3:28:7e:57:03:9c:b4:3e:52:da:f8:2c:b0:70:b5:2d:6a:48:
6b:32:60:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:01 2023 by rpki-client on console.sobornost.net