Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/WF10yw9UOG9c8KQbuQwT3Z_cpIo.roa
File: WF10yw9UOG9c8KQbuQwT3Z_cpIo.roa (raw, json)
Hash identifier: 15keUaL7RJ6dTGXjP3OnQFmxp8OzVMopBEVUaeXPKeo=
Subject key identifier: 58:5D:74:CB:0F:54:38:6F:5C:F0:A4:1B:B9:0C:13:DD:9F:DC:A4:8A
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0189065234C25A3240674C27FAB5D5E5CD82
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/WF10yw9UOG9c8KQbuQwT3Z_cpIo.roa
Signing time: Thu 29 Jun 2023 08:43:18 +0000
ROA not before: Thu 29 Jun 2023 08:43:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47959
IP address blocks: 89.22.196.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:06:52:34:c2:5a:32:40:67:4c:27:fa:b5:d5:e5:cd:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jun 29 08:43:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=585d74cb0f54386f5cf0a41bb90c13dd9fdca48a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:67:76:8d:80:c0:f4:1b:17:f4:5c:b2:49:
4b:17:18:c9:a3:7c:22:b3:eb:88:df:9c:44:ae:8f:
98:f8:a5:df:7e:df:ab:fa:03:16:ae:da:af:30:90:
79:65:f6:d0:a9:ca:7c:0e:a5:de:3b:70:79:5e:b5:
00:3f:3e:a6:e7:e7:fb:36:d6:e1:61:94:48:14:b6:
ac:e7:d2:cd:87:5a:a1:d2:e9:9b:2a:89:9d:45:a0:
51:e6:16:b9:92:14:05:53:d8:41:6e:48:b7:70:95:
23:13:1b:84:42:42:51:c1:d7:f7:bd:10:ea:ef:eb:
52:65:81:1f:3e:71:0d:e3:95:a0:6d:04:78:a0:08:
b1:f2:96:bc:e0:1f:8c:c8:ee:da:06:46:d2:21:47:
6d:93:66:ca:eb:7a:c4:96:8e:c0:57:6d:88:df:77:
42:be:27:2d:cf:d9:1b:91:a2:eb:4a:c2:24:ad:26:
87:58:af:18:dc:82:57:16:ec:32:1f:b1:b7:cd:e8:
c4:9c:5d:b9:b3:e2:86:7e:d3:7e:30:c3:21:e8:76:
95:9f:96:3d:7a:ee:dd:95:84:db:b5:8c:e9:42:f6:
aa:e4:5c:24:55:b0:17:17:ea:66:e9:e5:ca:0e:e3:
2b:23:2e:40:af:f4:d1:d9:3e:a3:7a:49:0c:47:ac:
58:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5D:74:CB:0F:54:38:6F:5C:F0:A4:1B:B9:0C:13:DD:9F:DC:A4:8A
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/WF10yw9UOG9c8KQbuQwT3Z_cpIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.196.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:26:cc:c3:d4:8b:c4:e7:6c:16:2d:aa:6d:bd:f7:3f:dd:2b:
ad:4a:e0:07:fa:2c:95:ba:15:fb:24:d2:50:11:15:f6:aa:7c:
4c:df:7a:7a:3b:7f:9b:7d:e6:c6:fc:5e:bf:73:b2:ae:25:4a:
70:b2:d7:2a:08:03:07:4a:d7:65:ee:fe:85:e7:59:ee:b7:fe:
48:89:d8:e9:bb:2c:90:eb:ab:a4:85:ef:22:40:79:4d:af:85:
93:ff:2c:79:d0:d4:f0:17:f9:98:dd:aa:09:5d:f0:9d:09:41:
cd:54:f5:13:66:ee:51:c4:66:32:22:7b:0f:26:a1:9b:31:a3:
d5:b3:36:14:63:e3:9b:8c:c0:25:d8:54:c1:c0:f1:8f:a1:23:
c9:be:80:94:b1:74:7f:bf:3d:65:5f:5c:fa:40:9c:4f:01:aa:
fa:1c:a6:91:03:bd:7a:4f:ef:d9:75:4b:ec:a6:fa:7e:7d:02:
c2:90:f6:6e:46:42:8b:cd:65:fd:ed:28:d0:17:e0:45:b8:fb:
e3:3e:53:96:72:18:12:84:32:51:ae:01:0c:98:60:82:51:a7:
8a:71:d2:f6:39:6f:c9:65:69:cb:f3:eb:e4:b0:d0:05:6f:0b:
1a:f8:e0:7d:8b:2d:c9:02:8c:44:d5:53:9e:9d:6a:25:64:35:
9f:ba:47:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net