Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/P2pfXlDSl_UWsqIR0WIcfE7orGc.roa
File: P2pfXlDSl_UWsqIR0WIcfE7orGc.roa (raw, json)
Hash identifier: MLasSWl9Jxyt47F56DXuSBd4YciDxI32W5VeAaFcWlQ=
Subject key identifier: 3F:6A:5F:5E:50:D2:97:F5:16:B2:A2:11:D1:62:1C:7C:4E:E8:AC:67
Certificate issuer: /CN=930a572c16d0c44f7766587d92d878ba30541d1e
Certificate serial: 018944C028CD0F40C37962522640BF263C31
Authority key identifier: 93:0A:57:2C:16:D0:C4:4F:77:66:58:7D:92:D8:78:BA:30:54:1D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwpXLBbQxE93Zlh9kth4ujBUHR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/P2pfXlDSl_UWsqIR0WIcfE7orGc.roa
Signing time: Tue 11 Jul 2023 11:39:51 +0000
ROA not before: Tue 11 Jul 2023 11:39:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197481
IP address blocks: 91.213.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:c0:28:cd:0f:40:c3:79:62:52:26:40:bf:26:3c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=930a572c16d0c44f7766587d92d878ba30541d1e
Validity
Not Before: Jul 11 11:39:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f6a5f5e50d297f516b2a211d1621c7c4ee8ac67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6a:96:57:37:37:2b:d3:fd:90:8a:47:ab:c7:
4e:94:6c:1f:f8:c8:d3:e3:f1:07:38:82:ad:9d:2d:
a3:a5:80:df:77:3e:32:a1:6c:12:8a:a3:78:88:12:
a8:34:5e:d5:61:60:4f:89:5a:b1:fd:1c:16:2f:da:
d9:ac:18:81:c5:3a:23:61:14:a8:da:03:cb:fa:38:
e3:51:b1:eb:a4:40:3a:06:51:b9:99:39:07:c6:18:
21:29:1c:62:d7:b9:58:7a:64:6b:2c:7e:b1:e3:59:
5f:7f:25:c7:84:97:7f:b9:fe:de:a5:57:73:33:0b:
7a:05:06:20:89:c1:de:a4:4d:c4:31:0a:6e:b1:cb:
da:9f:a0:c8:ab:99:3e:8b:53:f9:dc:81:5d:ca:c5:
af:21:41:01:8a:a2:11:69:cd:ea:91:7b:7e:6e:ce:
44:e5:fe:28:d7:cd:b7:57:09:af:9f:49:b2:55:2a:
c3:ad:3c:00:c5:c9:4d:98:31:89:1c:b4:5a:73:2f:
f1:e1:62:d9:a2:66:73:26:df:83:98:9d:b1:78:12:
a8:2a:09:db:b7:d7:8c:58:e6:a1:7e:5a:6f:ce:d5:
fd:e4:84:e6:b8:41:a8:4d:3b:80:82:d7:0c:ac:c6:
87:58:1a:8d:26:23:99:62:62:ea:e0:74:d0:12:80:
4b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6A:5F:5E:50:D2:97:F5:16:B2:A2:11:D1:62:1C:7C:4E:E8:AC:67
X509v3 Authority Key Identifier:
keyid:93:0A:57:2C:16:D0:C4:4F:77:66:58:7D:92:D8:78:BA:30:54:1D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwpXLBbQxE93Zlh9kth4ujBUHR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/P2pfXlDSl_UWsqIR0WIcfE7orGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/kwpXLBbQxE93Zlh9kth4ujBUHR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.33.0/24
Signature Algorithm: sha256WithRSAEncryption
99:3d:8f:26:6d:7e:45:7b:62:1f:91:69:ed:a5:38:b1:55:5b:
98:b3:9a:e2:4f:00:88:c6:27:50:6d:ba:e3:73:10:13:7c:02:
b7:e9:72:1c:ce:f8:ad:83:77:5a:9e:e3:bd:84:04:b6:69:a4:
48:9b:bc:b3:ba:d5:ce:0f:9c:1d:04:05:b6:d5:58:a1:bc:b2:
56:52:f4:d0:26:70:11:15:cb:52:fa:57:a8:29:2b:c0:91:6c:
6c:36:74:94:3f:f8:83:b5:d2:78:c6:bf:3a:ff:47:ee:96:15:
cb:f7:35:b3:4f:7f:f0:b9:fa:0c:55:ad:7e:9c:c0:2a:99:13:
a7:03:33:dc:a4:d9:3d:f5:9f:69:10:9e:47:55:72:bb:e1:85:
0d:d3:6f:3d:71:ff:13:05:94:07:ca:b2:2b:de:d2:30:ff:08:
bc:ee:43:9c:30:5e:67:eb:ba:e3:75:08:26:36:b9:dc:41:69:
06:b6:d4:4a:f0:f0:d1:00:1a:ae:0c:05:f6:b9:ad:54:6b:89:
3e:04:b5:1e:00:97:f4:73:af:77:db:08:69:6a:84:bc:75:c2:
93:2d:7f:cb:4d:ff:0a:13:c3:82:19:6f:02:ac:42:eb:9a:fd:
2c:81:1c:25:98:51:25:52:d3:c1:cb:ab:d1:04:ae:10:82:72:
b7:1f:6e:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:57 2024 by rpki-client on console.sobornost.net