Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/yWCXA5pQtVXqLmSzbTeUCgtbdA4.roa
File: yWCXA5pQtVXqLmSzbTeUCgtbdA4.roa (raw, json)
Hash identifier: qwu3TicjJE5Vc8VazkZCdfibCwzBpv0lzss7RWj53FA=
Subject key identifier: C9:60:97:03:9A:50:B5:55:EA:2E:64:B3:6D:37:94:0A:0B:5B:74:0E
Certificate issuer: /CN=770d35d7566ee7246e4d2133cbde48a774423c77
Certificate serial: 0188B99B010D9D6759C095A2A40A5228DB13
Authority key identifier: 77:0D:35:D7:56:6E:E7:24:6E:4D:21:33:CB:DE:48:A7:74:42:3C:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dw0111Zu5yRuTSEzy95Ip3RCPHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/yWCXA5pQtVXqLmSzbTeUCgtbdA4.roa
Signing time: Wed 14 Jun 2023 11:12:03 +0000
ROA not before: Wed 14 Jun 2023 11:12:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60579
IP address blocks: 185.164.162.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:9b:01:0d:9d:67:59:c0:95:a2:a4:0a:52:28:db:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=770d35d7566ee7246e4d2133cbde48a774423c77
Validity
Not Before: Jun 14 11:12:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c96097039a50b555ea2e64b36d37940a0b5b740e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:21:74:ce:08:d8:6f:2b:65:73:c3:5f:2f:80:
90:1f:1f:ef:fd:0b:6b:24:09:8d:67:b5:60:b5:6e:
fc:2f:ae:a4:cf:9c:02:41:33:c7:af:75:80:2c:bb:
fe:f4:ce:74:a6:8a:ea:98:e2:74:5e:2e:aa:7d:80:
a6:db:85:8b:c5:61:f9:32:d7:64:20:67:7e:db:15:
28:df:80:47:3c:b4:99:4e:35:02:08:35:7f:4a:fb:
e5:5b:83:01:15:2d:2c:bb:80:c1:35:96:56:72:84:
ba:bd:9e:fe:ef:f3:f9:fa:7f:5f:7f:4d:cc:d0:7d:
94:fb:84:e3:91:30:0c:99:1c:f2:57:58:b8:3f:12:
2d:ee:e6:85:4f:15:1a:17:a9:f8:e9:a1:95:ee:31:
bb:9c:a2:d6:e2:16:79:d0:c6:d0:a8:55:68:9b:d9:
c0:94:38:c4:b1:dd:94:f1:53:cb:13:f5:7b:b9:64:
cf:23:d3:51:a5:1d:fe:80:2c:76:b9:bd:6f:4d:61:
59:dc:32:95:c9:ce:79:60:f9:8e:eb:28:a5:b4:f1:
4f:5f:de:93:91:8f:6e:c5:70:27:7e:39:66:61:da:
3d:46:87:fb:28:83:80:fa:69:48:32:85:7d:88:f7:
eb:d0:22:36:04:85:00:51:5b:88:68:13:f4:8c:8f:
ee:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:60:97:03:9A:50:B5:55:EA:2E:64:B3:6D:37:94:0A:0B:5B:74:0E
X509v3 Authority Key Identifier:
keyid:77:0D:35:D7:56:6E:E7:24:6E:4D:21:33:CB:DE:48:A7:74:42:3C:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dw0111Zu5yRuTSEzy95Ip3RCPHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/yWCXA5pQtVXqLmSzbTeUCgtbdA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/dw0111Zu5yRuTSEzy95Ip3RCPHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.162.0/24
Signature Algorithm: sha256WithRSAEncryption
20:4c:be:0f:78:10:f9:66:9b:42:37:6a:e7:1c:5e:fd:e6:ca:
df:a9:87:15:45:7b:b9:11:4f:3e:11:6b:9f:5f:8b:e4:03:8f:
8a:be:7a:bf:06:de:08:1e:cc:ba:f5:83:82:1c:fa:b5:5a:47:
ae:0d:d9:89:2f:76:a8:ad:10:92:86:40:86:36:71:c5:50:a0:
1d:dc:68:d0:b2:d1:50:6e:aa:2e:ed:c6:f8:30:ee:75:b9:f8:
47:fb:ad:60:a8:84:85:49:b8:7b:38:91:98:48:de:87:ee:06:
28:20:02:fb:f7:6d:69:c5:f9:4a:6d:83:74:9f:c4:d6:30:5a:
80:a9:7c:60:79:9f:46:30:04:4a:a3:08:29:d3:9c:94:28:8f:
76:18:81:dd:90:ba:10:3d:b2:9b:7c:c2:a0:db:0a:4b:4a:33:
1a:fa:e2:6f:34:bd:fb:22:4c:10:93:c9:08:a3:f8:42:3a:f4:
63:0a:4d:2d:06:ac:55:74:91:05:a4:ab:73:64:08:3c:c4:40:
b4:88:c2:d4:b5:d5:13:03:2e:a4:e3:cd:b1:f3:7d:ad:7f:81:
6a:01:22:2c:e7:8d:c6:79:36:9b:5c:7d:0d:6f:7c:7e:ed:5f:
ef:ab:6c:55:1b:c5:cc:80:90:74:03:16:ec:32:ce:a5:b4:91:
47:f0:54:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:40 2024 by rpki-client on console.sobornost.net