Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/85UYICOFYqeEqhC3_0_B_zcHdQA.roa
File: 85UYICOFYqeEqhC3_0_B_zcHdQA.roa (raw, json)
Hash identifier: ee6ZMn9gwfflrBdaZF/OdKQ1BaP/Hv5Qx8IPLk9HsnM=
Subject key identifier: F3:95:18:20:23:85:62:A7:84:AA:10:B7:FF:4F:C1:FF:37:07:75:00
Certificate issuer: /CN=75a5a9e8ef27e3027293ef84fb8f8d30fab6e6d6
Certificate serial: 018572D5AF59965408D26568A895C8076E4F
Authority key identifier: 75:A5:A9:E8:EF:27:E3:02:72:93:EF:84:FB:8F:8D:30:FA:B6:E6:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/daWp6O8n4wJyk--E-4-NMPq25tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/85UYICOFYqeEqhC3_0_B_zcHdQA.roa
Signing time: Mon 02 Jan 2023 14:14:44 +0000
ROA not before: Mon 02 Jan 2023 14:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64426
IP address blocks: 109.206.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:af:59:96:54:08:d2:65:68:a8:95:c8:07:6e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75a5a9e8ef27e3027293ef84fb8f8d30fab6e6d6
Validity
Not Before: Jan 2 14:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3951820238562a784aa10b7ff4fc1ff37077500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:92:5d:28:5a:c3:9a:ac:b0:ff:33:fd:7e:b4:
7d:e5:00:12:20:d5:03:1e:d9:fc:21:82:b1:09:b7:
dc:26:ab:58:8f:91:7d:5b:82:43:f3:8a:f1:c2:c3:
6e:45:15:cb:4b:ef:1b:40:c2:98:67:c4:22:a6:e8:
e4:bf:e8:5d:95:65:da:84:f8:ed:58:5d:47:dd:2d:
91:70:4d:6a:1e:16:f1:be:7d:9b:67:53:06:39:8b:
aa:4e:43:eb:45:76:0c:30:29:0e:55:85:bf:47:4b:
f0:e0:a1:8e:a0:5f:37:f7:84:e6:b3:c2:ff:3c:34:
77:a5:40:9a:48:66:8d:40:8b:71:0c:87:0a:75:c3:
6a:13:fb:2b:79:4c:96:97:b6:ca:9f:ff:b9:4c:0b:
c3:0b:79:2c:a4:da:a2:56:38:b6:ea:4e:6c:9b:f5:
16:17:dc:56:75:e4:5e:9f:8a:8b:61:c8:2a:b0:19:
c0:cf:ff:40:d5:49:45:81:b7:73:bf:2b:c5:ac:9b:
ff:b0:d6:c3:e6:ca:1d:73:d0:cd:d0:83:49:a1:95:
c3:52:e7:c9:5b:f5:7d:3d:bf:13:e4:ca:13:b6:ba:
a7:33:2e:d2:1f:59:4f:76:e3:b7:b3:fd:1d:03:3b:
0b:c2:54:09:d9:52:e6:00:8c:d7:19:f1:73:08:f2:
3d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:95:18:20:23:85:62:A7:84:AA:10:B7:FF:4F:C1:FF:37:07:75:00
X509v3 Authority Key Identifier:
keyid:75:A5:A9:E8:EF:27:E3:02:72:93:EF:84:FB:8F:8D:30:FA:B6:E6:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/daWp6O8n4wJyk--E-4-NMPq25tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/85UYICOFYqeEqhC3_0_B_zcHdQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/ca6f69-6fec-4753-ad77-eb6f9df045b2/1/daWp6O8n4wJyk--E-4-NMPq25tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.206.232.0/22
Signature Algorithm: sha256WithRSAEncryption
07:a3:29:88:98:ac:b5:84:51:13:b3:38:66:61:38:87:69:f0:
f2:af:81:7d:45:79:b1:86:9e:4c:67:41:75:c5:7d:98:ca:ed:
64:9d:52:c3:0c:45:3a:5a:ee:64:32:d6:00:0d:3d:3a:b7:11:
03:8f:56:c0:1c:31:38:1b:04:21:52:73:f6:93:60:54:b5:49:
17:7d:a0:af:ca:ee:9e:6c:58:3a:50:6c:b2:bf:09:79:53:9a:
a8:68:aa:2e:5c:d4:59:4e:33:f3:7f:bc:27:94:78:72:7f:a4:
d4:77:92:3c:58:96:a8:df:b9:cf:de:00:08:b2:80:a5:45:2a:
7d:01:19:7a:f5:08:da:15:4e:62:fa:e4:b6:f2:f4:6f:75:38:
cd:ab:66:7e:4d:05:22:43:c9:fb:e6:e7:af:f7:fd:a1:ec:11:
13:1b:b6:c6:99:fe:7e:2f:cd:f2:07:da:e9:44:86:a9:d7:b1:
b0:65:63:fb:c0:72:00:b6:39:a5:09:da:a7:c4:2f:6c:8e:12:
0d:e3:09:ff:5c:57:d9:7c:4e:a8:bc:8c:99:2d:e3:27:c4:b3:
7f:e1:98:e9:98:69:62:d7:53:c2:d6:ac:af:c4:72:0c:02:6c:
ba:ba:73:dc:c2:03:aa:e8:5d:75:08:0b:67:ed:21:d3:5b:63:
89:3c:13:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:11 2024 by rpki-client on console.sobornost.net