Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/dAfrpk__kh-bNqE-rpTTfzKC4gw.roa
File: dAfrpk__kh-bNqE-rpTTfzKC4gw.roa (raw, json)
Hash identifier: v303jLIGddP/Tqe0mn0MFyayZQbr6v+ScPi73xUGDaw=
Subject key identifier: 74:07:EB:A6:4F:FF:92:1F:9B:36:A1:3E:AE:94:D3:7F:32:82:E2:0C
Certificate issuer: /CN=6810aa89239242dacc9d03e3af22d4e87a783414
Certificate serial: 01856CC160242100219CB1BB2353A8FD2C2D
Authority key identifier: 68:10:AA:89:23:92:42:DA:CC:9D:03:E3:AF:22:D4:E8:7A:78:34:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/dAfrpk__kh-bNqE-rpTTfzKC4gw.roa
Signing time: Sun 01 Jan 2023 09:54:50 +0000
ROA not before: Sun 01 Jan 2023 09:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200624
IP address blocks: 212.48.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:60:24:21:00:21:9c:b1:bb:23:53:a8:fd:2c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6810aa89239242dacc9d03e3af22d4e87a783414
Validity
Not Before: Jan 1 09:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7407eba64fff921f9b36a13eae94d37f3282e20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:26:2d:13:03:14:7d:23:30:c0:9e:b0:84:4a:
49:ac:6c:2f:64:28:1e:87:2a:e4:6c:aa:07:58:a1:
fe:b4:5c:68:5e:3d:fb:78:af:4a:e1:c4:de:e3:66:
d0:a7:fd:a6:9d:de:61:d4:6a:79:83:4d:18:4c:c0:
ba:dd:e9:3c:a3:d3:a3:06:43:ed:c7:5e:df:11:3f:
43:ca:89:d9:a3:cd:c0:fe:15:28:bc:83:07:82:9a:
3c:d1:50:63:3a:19:ec:88:d3:0d:35:f2:e0:a0:44:
83:be:3b:84:43:97:05:d4:58:38:68:f3:3f:ca:65:
61:f4:8e:44:4a:93:b6:45:1c:6a:20:c4:63:b7:88:
c8:6b:be:2e:11:b2:91:d0:82:30:01:8e:26:38:20:
ca:e8:a2:ed:21:52:7f:40:6e:f1:ab:f2:63:c0:2d:
9a:ef:a1:7f:1d:71:c9:b0:94:61:c6:87:4c:14:03:
5d:93:ce:f2:57:ad:75:a4:14:a9:66:bf:2d:56:92:
c2:85:bb:bc:af:c3:e0:63:8e:63:d1:40:75:18:a7:
56:60:42:d0:96:d9:33:89:29:ef:a0:2b:17:18:74:
33:6b:22:77:0f:d9:a2:65:2a:0f:f6:b7:a8:cd:b5:
33:a7:d6:db:6f:1e:01:e7:9a:3a:ff:7d:5e:12:c4:
36:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:07:EB:A6:4F:FF:92:1F:9B:36:A1:3E:AE:94:D3:7F:32:82:E2:0C
X509v3 Authority Key Identifier:
keyid:68:10:AA:89:23:92:42:DA:CC:9D:03:E3:AF:22:D4:E8:7A:78:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/dAfrpk__kh-bNqE-rpTTfzKC4gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0244e4-73e3-449d-a06a-1f689935b90f/1/aBCqiSOSQtrMnQPjryLU6Hp4NBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.48.235.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:7f:37:f1:1c:38:7b:19:60:aa:9a:d9:ab:20:f5:30:4b:7a:
ff:8f:35:df:26:7c:2d:9e:0a:4a:25:49:bc:de:cc:22:81:67:
fe:5c:e3:70:fc:45:2c:fa:e5:d0:da:75:f1:95:36:d9:d2:ad:
ed:3d:b7:ca:a9:42:2b:ce:88:8b:d6:05:43:d2:8d:bb:e1:1e:
35:2b:88:c7:56:be:20:54:2c:86:6c:5f:c2:31:0a:36:4c:4f:
ec:fe:41:ab:75:3d:c9:61:33:66:08:31:05:6c:41:ff:8d:87:
16:0f:0d:ee:cf:57:4b:1f:60:40:99:61:25:43:56:ed:59:fc:
a3:8a:14:da:91:f7:b7:b9:11:df:a8:9b:9f:1a:cc:09:8d:74:
0d:2a:96:10:22:65:6e:32:05:8c:26:6b:64:c4:2d:b6:40:b3:
79:bf:38:4d:a0:ae:f8:0d:ad:e9:3a:97:3a:d1:1b:de:38:4d:
bb:8c:02:ae:17:05:58:b5:38:24:18:49:4a:5d:b9:c4:2b:1b:
a3:ba:e6:8b:5e:87:b5:b7:08:e3:a7:4c:5f:72:fe:87:92:83:
a3:4e:be:8c:f9:c6:70:ce:10:1f:a4:99:76:27:26:bc:20:56:
61:7e:c9:26:32:6c:01:ae:4b:4b:3c:79:58:ea:e0:52:03:95:
b0:6b:e5:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:53 2024 by rpki-client on console.sobornost.net