Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/81a0df-04b5-47ef-8695-4b5864b9d1d9/1/Ix71cyncqCn35pOthf38b62IxTE.roa
File: Ix71cyncqCn35pOthf38b62IxTE.roa (raw, json)
Hash identifier: e5DpjmIOikIWqLFJr/KH+LwFpuoBxHfMlS9k6vJujFY=
Subject key identifier: 23:1E:F5:73:29:DC:A8:29:F7:E6:93:AD:85:FD:FC:6F:AD:88:C5:31
Certificate issuer: /CN=56f2666f6da410b35a40b77265fafed6f1b9426c
Certificate serial: 01856BDC7B0640DA843F5C08DDB9C0004CC4
Authority key identifier: 56:F2:66:6F:6D:A4:10:B3:5A:40:B7:72:65:FA:FE:D6:F1:B9:42:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvJmb22kELNaQLdyZfr-1vG5Qmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/81a0df-04b5-47ef-8695-4b5864b9d1d9/1/Ix71cyncqCn35pOthf38b62IxTE.roa
Signing time: Sun 01 Jan 2023 05:44:49 +0000
ROA not before: Sun 01 Jan 2023 05:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51626
IP address blocks: 91.220.13.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:7b:06:40:da:84:3f:5c:08:dd:b9:c0:00:4c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f2666f6da410b35a40b77265fafed6f1b9426c
Validity
Not Before: Jan 1 05:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=231ef57329dca829f7e693ad85fdfc6fad88c531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:13:37:2a:c1:cd:43:c9:25:a0:1f:b7:e3:89:
8c:df:6a:4e:74:13:d6:ca:8b:85:d6:df:f2:32:ce:
41:bd:98:c5:f7:e9:3f:89:80:36:1c:65:82:55:38:
2c:dc:61:c5:ed:40:d2:da:bf:25:b0:30:d9:79:08:
8d:ae:87:f9:e3:23:90:e5:73:2c:9e:01:11:af:08:
20:6a:80:b3:5e:8c:91:b6:b6:a9:67:99:00:45:6e:
4a:1c:66:b0:a6:bc:4b:1a:dd:ab:25:4c:27:2b:c7:
ab:df:16:05:1d:13:f9:57:66:56:db:11:7e:9f:e1:
22:d4:d6:e4:87:c2:e3:24:50:25:71:fd:69:bf:0c:
29:53:ae:60:3e:b4:86:19:78:fd:65:97:8d:46:d0:
9f:88:32:14:f8:dd:35:ce:a0:ae:c2:70:83:8e:f3:
29:2b:bf:18:ba:1c:f3:05:65:39:c3:c5:ed:cc:41:
b8:6a:2b:d9:33:1e:b5:c5:02:93:b0:60:bf:07:bc:
66:81:44:db:e1:cd:64:0b:67:72:8d:04:48:f0:ff:
c0:49:bb:a6:d0:ab:8c:bb:8f:5b:79:21:d3:c9:ed:
06:cf:a8:9e:72:ac:df:d8:5f:18:fa:55:03:8a:4a:
1a:52:ca:cc:4b:5b:49:5b:32:09:61:ea:3c:70:1a:
be:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1E:F5:73:29:DC:A8:29:F7:E6:93:AD:85:FD:FC:6F:AD:88:C5:31
X509v3 Authority Key Identifier:
keyid:56:F2:66:6F:6D:A4:10:B3:5A:40:B7:72:65:FA:FE:D6:F1:B9:42:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvJmb22kELNaQLdyZfr-1vG5Qmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/81a0df-04b5-47ef-8695-4b5864b9d1d9/1/Ix71cyncqCn35pOthf38b62IxTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/81a0df-04b5-47ef-8695-4b5864b9d1d9/1/VvJmb22kELNaQLdyZfr-1vG5Qmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.13.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:a6:19:db:97:4f:3f:c5:cc:e8:05:d3:64:8a:93:02:8d:cb:
d3:c0:7f:a3:ca:a6:45:e0:fc:07:78:80:45:72:52:e2:9a:9a:
a9:06:b5:67:aa:28:73:c6:cb:70:9a:24:77:a2:a9:35:2f:98:
f5:2b:03:72:ff:7d:d7:47:83:93:af:49:4b:71:5a:12:2f:7d:
a4:a8:02:b6:bc:22:f9:fb:3f:2b:2b:4f:18:0a:99:dd:1d:7f:
78:65:8d:39:b8:28:9c:f5:4b:98:58:24:15:c9:a9:f8:73:73:
b0:52:9b:8f:15:13:d4:ff:6a:26:44:4e:7d:65:df:f0:6c:65:
18:0b:c3:a4:f8:e0:b7:b5:6a:e4:2c:84:6d:ea:f9:6b:93:f7:
a7:44:02:21:17:42:ef:29:83:d1:d6:24:a9:28:8d:27:4d:3c:
a0:41:b7:f8:91:1e:2f:43:41:ef:bd:9c:f0:f3:ee:5b:9a:0c:
13:f4:b3:30:34:7d:40:4e:27:b1:5b:83:01:b0:34:57:32:53:
b6:a4:27:88:c5:f6:7d:68:ae:6e:73:25:e3:fd:d9:89:01:8e:
25:f6:63:81:5c:4d:a4:75:61:2d:cb:6a:3c:fc:91:5a:09:38:
dc:1f:2b:46:82:42:62:c4:fe:bd:fc:16:7e:f8:1c:d6:b9:13:
c1:51:5c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:33 2024 by rpki-client on console.sobornost.net