Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/mcouWUIe50oyPsXbbTdhOYxNm08.roa
File: mcouWUIe50oyPsXbbTdhOYxNm08.roa (raw, json)
Hash identifier: PKcVrWzE5AiiGBRSArHatctGM877kuK+KMfVzpruAfM=
Subject key identifier: 99:CA:2E:59:42:1E:E7:4A:32:3E:C5:DB:6D:37:61:39:8C:4D:9B:4F
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 01856F799EA4926659F4C43240233D061920
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/mcouWUIe50oyPsXbbTdhOYxNm08.roa
Signing time: Sun 01 Jan 2023 22:35:19 +0000
ROA not before: Sun 01 Jan 2023 22:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208410
IP address blocks: 37.32.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:9e:a4:92:66:59:f4:c4:32:40:23:3d:06:19:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Jan 1 22:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99ca2e59421ee74a323ec5db6d3761398c4d9b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:07:89:b3:99:c4:67:45:b6:16:ab:93:5c:66:
b9:6e:fa:0d:39:48:70:33:37:a3:b2:52:b8:e7:71:
1b:1f:33:fa:91:2f:10:22:f4:86:ef:81:e8:35:bd:
6e:74:24:cf:c2:6b:5b:23:a6:13:24:69:08:b1:12:
d8:90:da:f4:a9:36:e1:6c:62:90:ce:ce:3f:ef:11:
dc:66:59:5f:f9:d5:95:72:ae:44:7c:d0:b6:b8:1f:
4c:4b:b9:57:d3:66:ac:71:02:81:03:6e:1e:77:7e:
66:b1:b5:9c:bc:f9:85:c8:c4:15:0a:7c:b5:dc:ae:
af:1a:d8:b8:94:5a:29:a0:d1:17:5c:9f:0c:cb:eb:
53:28:37:52:11:1f:83:22:3c:86:58:39:3a:ba:f1:
ac:c3:d9:99:12:b8:05:f7:d5:6f:20:26:13:af:ab:
5a:c0:3e:30:a4:88:d9:d1:00:f6:2b:3f:8f:e6:e1:
d2:99:ba:a6:d7:5d:50:08:88:d9:5d:8d:ea:3a:80:
07:31:32:b5:31:93:91:ce:79:db:eb:63:45:56:9a:
2f:41:86:2b:70:17:53:27:12:33:87:d6:40:d7:95:
05:e9:72:19:03:36:cc:02:e2:ac:c0:fa:28:0a:4b:
c1:95:c4:ca:7d:34:7b:d8:67:65:72:ac:52:88:c1:
80:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CA:2E:59:42:1E:E7:4A:32:3E:C5:DB:6D:37:61:39:8C:4D:9B:4F
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/mcouWUIe50oyPsXbbTdhOYxNm08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.78.0/24
Signature Algorithm: sha256WithRSAEncryption
02:57:24:f7:34:3a:59:78:79:59:9e:f8:62:c2:ef:a8:ec:69:
8f:9b:2a:72:44:40:8a:0e:c4:a5:00:81:28:7b:2b:c2:ee:5e:
ad:35:cc:25:01:fb:46:bd:7c:c3:ed:b7:5f:16:20:32:44:9a:
a1:b0:8a:3b:69:33:c1:55:0d:6c:2e:11:57:a9:55:9b:ba:4c:
7f:9e:36:3c:c0:6e:f8:db:04:b1:1a:6e:38:02:c8:a4:4b:c4:
1f:84:6b:ba:8e:37:8d:c2:b1:3d:41:98:b8:a8:a5:0b:3c:1d:
c3:0e:59:f9:bf:78:a8:84:a0:51:ad:3d:f1:ce:9d:ea:4f:66:
7b:81:64:53:f2:d7:b7:ab:fd:10:69:42:91:ad:fb:fd:87:48:
ca:4e:ad:5b:88:86:cb:1f:86:b2:14:16:66:38:e9:e6:82:83:
3b:38:af:8f:7a:51:4d:06:de:d1:9d:f7:b9:12:3a:d1:f2:4d:
10:3e:d0:e8:7c:22:fc:85:72:61:0f:17:2c:1e:0e:5d:93:dc:
3b:b9:e6:f7:e4:3a:3e:12:5e:73:a4:51:c9:9c:c1:e3:6e:99:
7c:ac:43:43:df:a8:ae:c9:e2:e9:3f:65:b4:93:d6:e1:20:d0:
7b:a5:69:33:2f:f3:4d:62:d9:f2:5f:bb:a4:30:25:18:8b:8f:
7f:9d:51:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:17 2024 by rpki-client on console.sobornost.net