Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/d9xe2yZqufUfn5Uxq3ZVvd1l9wM.roa
File: d9xe2yZqufUfn5Uxq3ZVvd1l9wM.roa (raw, json)
Hash identifier: 59ZL5rKQ+C3N7jkHe5Gl1tibFznp7JFJwjUasMy2Fuo=
Subject key identifier: 77:DC:5E:DB:26:6A:B9:F5:1F:9F:95:31:AB:76:55:BD:DD:65:F7:03
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 01856F799C61C1AA587CF6851E347F59F941
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/d9xe2yZqufUfn5Uxq3ZVvd1l9wM.roa
Signing time: Sun 01 Jan 2023 22:35:18 +0000
ROA not before: Sun 01 Jan 2023 22:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50371
IP address blocks: 37.32.74.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:9c:61:c1:aa:58:7c:f6:85:1e:34:7f:59:f9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Jan 1 22:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77dc5edb266ab9f51f9f9531ab7655bddd65f703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3d:e9:a6:79:e4:c3:42:42:fa:08:32:3b:a6:
a2:d8:03:25:97:dc:0e:88:e0:16:3c:35:b1:0d:1e:
d4:d5:bd:24:ee:8a:37:82:b2:98:29:87:b1:ad:00:
0d:c9:c4:9c:f9:e3:88:fb:e0:3a:32:c7:94:27:34:
be:49:0e:b3:ff:ae:b9:d7:81:b2:15:16:97:d8:6b:
5f:35:5d:b3:38:68:c2:21:6f:57:af:a6:0c:c1:36:
5e:91:d9:1f:96:ca:07:2a:97:a9:b3:6f:bd:fe:41:
f4:1e:fd:ed:41:4b:29:ce:51:ad:03:7d:39:a2:31:
b9:74:4d:8b:ca:a2:de:f6:17:81:b5:18:2a:f3:89:
fa:1c:24:a0:73:63:69:6a:d8:7a:22:eb:bc:83:f1:
19:3b:6c:f4:8b:65:2c:30:21:9b:1a:66:46:e8:6a:
e6:2e:f8:74:c7:07:42:cb:5a:86:71:a8:80:6c:7d:
f2:f3:e9:bd:b8:6e:6d:fe:18:43:36:45:4f:db:df:
37:e5:27:7e:61:65:00:ba:45:82:01:c2:34:44:c7:
96:cb:91:13:2d:56:39:df:3c:d4:d8:52:8a:f2:b0:
5f:df:62:1a:aa:86:f8:27:9a:80:e5:ca:cb:e0:f6:
d1:cd:6b:a4:b8:59:57:c4:55:de:3c:0e:c8:68:ea:
1c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DC:5E:DB:26:6A:B9:F5:1F:9F:95:31:AB:76:55:BD:DD:65:F7:03
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/d9xe2yZqufUfn5Uxq3ZVvd1l9wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.74.0/24
Signature Algorithm: sha256WithRSAEncryption
65:dd:97:2e:ec:bb:c7:7a:d8:e4:ff:93:79:84:81:c0:10:99:
a7:ba:78:73:35:c7:a2:b8:32:05:68:a9:45:e0:a7:30:31:1e:
ea:25:07:66:a4:ba:eb:40:51:4a:90:ef:d4:50:1b:9b:1c:60:
68:df:b5:80:f4:4c:95:07:b0:2e:3a:cc:a7:3c:df:9a:03:fd:
9a:d7:97:4c:85:30:16:f8:bb:ca:92:38:db:ba:c8:b7:50:6f:
09:2c:b1:54:b4:7f:81:34:2d:38:a2:18:3d:ad:0f:af:7e:ad:
4c:9e:87:91:5d:b3:29:f7:6d:fb:cd:15:b0:e2:f4:06:43:52:
a2:58:9b:3b:1d:5c:79:3e:dc:45:32:c1:a6:3e:0e:89:db:25:
dc:63:6d:21:0b:d2:d2:4a:f1:42:71:19:0e:0f:ae:ee:90:59:
02:94:20:e7:97:75:a3:c2:4f:09:bf:7f:a5:ac:2d:76:a8:c9:
b6:f8:30:f3:83:fb:25:5d:25:1d:d5:dc:e2:8a:2e:30:86:13:
d8:3c:49:50:3f:55:94:99:12:d4:b9:1c:d8:5c:9e:c2:f1:2b:
b5:3d:32:34:9f:90:a5:08:91:4c:77:ff:67:25:ff:ae:ba:38:
c5:71:c7:ee:1e:e3:a8:f6:3e:58:87:82:c3:30:39:70:89:0f:
08:97:cd:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:17 2024 by rpki-client on console.sobornost.net