Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/EqxYqnYavirKLrvQCJudZWDYVyE.roa
File: EqxYqnYavirKLrvQCJudZWDYVyE.roa (raw, json)
Hash identifier: VPzuidKhrfWhzTuE2eg6LOuU8ABWHIkPoTU7RQRTOYI=
Subject key identifier: 12:AC:58:AA:76:1A:BE:2A:CA:2E:BB:D0:08:9B:9D:65:60:D8:57:21
Certificate issuer: /CN=77f8e7fbd4ab69507fb1fe3579af343a56639086
Certificate serial: 01857315CC6E450830F0CF7A19EAEB274C08
Authority key identifier: 77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/EqxYqnYavirKLrvQCJudZWDYVyE.roa
Signing time: Mon 02 Jan 2023 15:24:46 +0000
ROA not before: Mon 02 Jan 2023 15:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199026
IP address blocks: 5.152.128.0/23 maxlen: 23
5.152.130.0/23 maxlen: 23
5.152.144.0/22 maxlen: 22
5.152.148.0/24 maxlen: 24
5.152.154.0/23 maxlen: 23
5.152.156.0/23 maxlen: 23
5.152.158.0/24 maxlen: 24
5.152.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:cc:6e:45:08:30:f0:cf:7a:19:ea:eb:27:4c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f8e7fbd4ab69507fb1fe3579af343a56639086
Validity
Not Before: Jan 2 15:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12ac58aa761abe2aca2ebbd0089b9d6560d85721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fb:85:4b:9c:0f:9e:ea:b0:79:0b:8b:92:a8:
b1:14:a9:76:01:dd:39:b0:63:53:83:04:2b:50:84:
94:bb:8f:b1:e5:86:7f:8e:a1:19:5e:7d:2b:9e:de:
1e:45:07:ac:e3:10:99:34:85:c8:8e:c9:79:25:20:
58:69:57:e5:3b:27:26:cb:7b:d7:83:8d:0a:7a:ff:
53:de:94:58:36:c6:e6:fd:34:57:da:e6:1b:ae:35:
80:70:b3:35:ae:69:f2:5f:a4:e3:d4:04:80:1b:1c:
3d:86:1a:72:69:1a:3f:03:e0:e2:cb:2c:ae:0f:d1:
68:6e:2e:f8:10:12:27:67:46:f1:31:10:5a:c4:d8:
2b:71:52:a6:ff:91:8c:09:29:3c:82:f0:bf:c1:69:
61:67:39:d2:ab:08:3e:e5:34:78:90:c4:50:28:9a:
75:39:db:5d:e5:1f:6e:9b:dd:36:7c:38:a0:57:05:
fb:43:ff:f4:cc:a7:e3:3b:eb:2c:4a:f6:c5:22:a0:
cc:e0:04:9e:23:2e:4e:1c:49:95:99:fe:d6:df:03:
2b:c3:8e:8e:83:7a:24:1d:9b:bf:03:aa:48:62:ef:
0d:5f:c7:08:47:26:df:73:d1:c3:08:92:22:40:d9:
64:85:ff:b9:fe:3e:c3:c1:ce:c7:b2:8e:46:30:7c:
c6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AC:58:AA:76:1A:BE:2A:CA:2E:BB:D0:08:9B:9D:65:60:D8:57:21
X509v3 Authority Key Identifier:
keyid:77:F8:E7:FB:D4:AB:69:50:7F:B1:FE:35:79:AF:34:3A:56:63:90:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_jn-9SraVB_sf41ea80OlZjkIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/EqxYqnYavirKLrvQCJudZWDYVyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6c2736-ab02-4897-9568-77f6e94e3dcc/1/d_jn-9SraVB_sf41ea80OlZjkIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.128.0/22
5.152.144.0-5.152.148.255
5.152.154.0-5.152.159.255
Signature Algorithm: sha256WithRSAEncryption
15:28:90:b9:f2:7a:a8:7f:bc:04:79:87:77:dc:23:79:77:b7:
0e:cc:04:72:51:48:7f:2f:e1:f7:c3:f0:a5:2d:48:f3:3a:18:
0b:a3:38:aa:b0:59:bb:a2:e5:95:d8:c2:e2:e2:41:38:b8:06:
74:f2:7f:0e:cc:68:df:b5:05:af:87:3e:94:88:cf:23:f6:fc:
43:4e:67:04:f6:59:0a:19:09:84:90:6c:64:34:7d:65:ca:92:
4a:85:b4:ba:6c:4d:fc:62:01:d9:2b:86:f2:bb:2a:44:53:cb:
e6:3e:eb:0d:23:99:d5:b5:ce:44:cd:ec:11:38:3f:ff:52:e0:
0e:2f:7c:40:9d:45:0d:5b:e6:73:e8:1e:2f:2e:55:dd:60:23:
c9:e8:99:98:05:2a:f3:83:dd:5e:4d:09:16:f4:b8:9e:28:d0:
3d:4d:cb:28:a4:56:26:41:46:42:6a:75:01:f0:f5:fd:20:d3:
d4:c5:c2:75:81:22:d3:3a:39:35:04:05:8d:b7:7e:b2:a0:17:
21:8d:a7:14:e6:22:39:21:cb:70:bd:8c:ec:3a:dc:4c:4f:99:
ba:6a:07:30:2d:ea:ee:90:93:f4:45:23:19:7d:25:2d:7d:32:
dd:e8:e4:79:77:36:21:fe:fa:2f:e3:cc:d1:c5:16:cc:4c:53:
02:6b:cb:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:49 2024 by rpki-client on console.sobornost.net