Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/4BGwXBGUNseOgo-3xF1C1KOdeQE.roa
File: 4BGwXBGUNseOgo-3xF1C1KOdeQE.roa (raw, json)
Hash identifier: qcBKd2/CV62U8ktB8MV19eagLD08TOONi8bVug7sRw8=
Subject key identifier: E0:11:B0:5C:11:94:36:C7:8E:82:8F:B7:C4:5D:42:D4:A3:9D:79:01
Certificate issuer: /CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Certificate serial: 018570E753B25459F8EB7D5CCD3A4B83AD0F
Authority key identifier: 6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/4BGwXBGUNseOgo-3xF1C1KOdeQE.roa
Signing time: Mon 02 Jan 2023 05:14:46 +0000
ROA not before: Mon 02 Jan 2023 05:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202588
IP address blocks: 37.77.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:53:b2:54:59:f8:eb:7d:5c:cd:3a:4b:83:ad:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b85894a84baa0eca0e6ef44a992fc2ba00f5277
Validity
Not Before: Jan 2 05:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e011b05c119436c78e828fb7c45d42d4a39d7901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bd:fa:b4:97:43:23:77:15:58:cb:c1:42:ae:
b0:73:93:ec:f9:4d:a6:aa:0a:48:9c:a8:d2:6d:77:
61:63:bf:a6:e1:e2:a8:6b:f1:b7:f3:36:af:10:c9:
9b:2b:21:d2:56:a7:b2:fa:36:f6:50:52:c9:75:0b:
24:0c:dd:b3:69:03:49:ed:8c:ef:e3:29:d5:8c:d5:
59:10:86:47:ad:12:a5:15:dd:f9:96:db:20:8c:50:
a7:de:e9:9d:66:99:4a:22:f0:00:62:f9:55:6e:ba:
87:fb:ee:0f:b7:a8:94:77:a1:e6:9a:bd:27:b9:ed:
2c:3a:1d:a1:34:ac:0f:de:d2:22:0c:55:3c:a3:ec:
2c:43:1c:a9:09:03:79:94:d0:4f:bd:cf:77:00:d5:
eb:05:78:b7:c7:df:ed:c8:9d:8f:d7:d3:1e:0f:fe:
78:82:77:54:30:dd:51:7e:7a:40:19:32:0a:f8:69:
84:5c:4d:84:e0:96:19:eb:3a:64:a1:66:51:71:52:
d7:3d:ef:34:99:9a:59:f1:62:c1:56:05:11:7b:4e:
25:b2:23:01:47:2d:c0:a4:f9:a1:46:90:4a:0b:b0:
81:02:7b:6e:b6:1b:53:a0:87:0a:ba:e1:4c:5e:2c:
0a:43:9b:94:67:08:f7:0e:02:9c:46:23:67:70:69:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:11:B0:5C:11:94:36:C7:8E:82:8F:B7:C4:5D:42:D4:A3:9D:79:01
X509v3 Authority Key Identifier:
keyid:6B:85:89:4A:84:BA:A0:EC:A0:E6:EF:44:A9:92:FC:2B:A0:0F:52:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4WJSoS6oOyg5u9EqZL8K6APUnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/4BGwXBGUNseOgo-3xF1C1KOdeQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f5c020-e1d7-4fe9-83c0-a3be63b8572f/1/a4WJSoS6oOyg5u9EqZL8K6APUnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.11.0/24
Signature Algorithm: sha256WithRSAEncryption
15:f2:57:b7:b5:80:0b:e4:23:64:02:a0:ce:39:2a:ac:ac:eb:
cf:55:10:93:9f:2f:fd:b0:96:c6:ee:e0:e3:9d:f4:5c:b1:f2:
4f:b1:b3:0a:93:9d:23:83:24:ab:c0:5f:c0:42:a8:ad:54:29:
a2:26:70:f6:1b:0e:cf:94:24:09:b5:d0:80:b8:fa:a0:8f:36:
6a:eb:c3:72:fd:2b:36:0a:91:76:77:9b:33:e8:77:51:6a:b9:
bf:76:03:39:1b:41:00:29:e5:73:e6:9d:1e:fe:39:ba:f4:59:
b6:b1:e9:b5:8b:c2:4f:7c:62:a3:db:14:de:aa:be:f8:93:3b:
48:71:75:08:39:88:6f:7f:07:69:2a:18:db:d7:c8:2a:da:06:
d9:7e:43:f1:a6:75:85:c8:12:33:4e:23:e3:25:49:79:e7:74:
e5:d9:76:9b:21:79:69:32:9e:94:48:d0:17:5e:6f:b0:2f:4e:
e4:c2:8c:22:f4:fc:6d:16:cc:c9:3e:d2:70:6c:4c:12:25:cb:
08:f5:22:20:91:11:5a:5d:e8:73:85:c4:d7:4f:80:7c:be:ce:
c3:bc:aa:ff:65:81:9a:09:ea:33:f2:d1:5f:64:85:4c:fe:d6:
fa:2e:78:37:40:2a:46:50:a5:49:e0:18:80:30:58:ba:08:a5:
f0:7c:72:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:00:57 2024 by rpki-client on console.sobornost.net