Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/9PmpAUb9q31WMYFEvsfC97ATKo8.roa
File: 9PmpAUb9q31WMYFEvsfC97ATKo8.roa (raw, json)
Hash identifier: 10VIx2zt40EiREuh6yfAN4B9QtNfgh2snSKc7uH8K0w=
Subject key identifier: F4:F9:A9:01:46:FD:AB:7D:56:31:81:44:BE:C7:C2:F7:B0:13:2A:8F
Certificate issuer: /CN=8d89223c1f335c0cc569359fa2dda349a2236ccb
Certificate serial: 018572B426306C8CCE17123C3D73F6E2314E
Authority key identifier: 8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/9PmpAUb9q31WMYFEvsfC97ATKo8.roa
Signing time: Mon 02 Jan 2023 13:38:06 +0000
ROA not before: Mon 02 Jan 2023 13:38:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 185.213.171.0/24 maxlen: 24
185.213.170.0/24 maxlen: 24
185.213.169.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:26:30:6c:8c:ce:17:12:3c:3d:73:f6:e2:31:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d89223c1f335c0cc569359fa2dda349a2236ccb
Validity
Not Before: Jan 2 13:38:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4f9a90146fdab7d56318144bec7c2f7b0132a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0f:8a:d8:95:82:22:55:e0:93:b9:1a:3d:9e:
57:5a:6d:32:02:a0:46:5e:d7:d3:20:45:fa:01:1a:
62:a3:67:ea:b5:87:f8:22:1b:85:1d:7e:0b:b9:24:
1c:82:c6:2b:27:bc:5e:9f:a3:be:eb:e3:8a:4e:9a:
10:01:6a:c1:08:5d:dc:1f:1c:03:4a:75:4f:33:00:
79:6a:1f:ea:31:30:71:32:f9:fa:e2:7d:58:39:33:
e7:f9:ab:17:b2:8a:c7:e8:fb:30:85:e0:b8:f4:15:
b0:42:77:b0:75:36:ac:42:b9:c0:9c:e1:88:ee:ed:
4a:24:f5:3f:9c:70:ce:e6:df:f0:6b:f7:2c:ec:da:
9b:94:1b:83:1c:b3:98:0e:53:c6:e1:5a:a9:47:af:
a2:9e:e3:8f:09:3a:d3:11:64:ed:57:eb:1f:bc:d4:
20:db:54:e6:5c:61:55:e1:33:57:2e:4d:ea:46:40:
17:04:ef:fc:67:27:a1:47:8e:4f:88:4c:93:f6:ff:
9a:65:78:ac:05:1c:4d:80:e5:86:ac:fb:1a:de:db:
41:ab:5a:b3:34:42:66:3f:b5:c6:e4:8f:48:f2:15:
cc:15:28:1c:f8:34:ac:ee:ba:b8:2d:c3:eb:55:07:
3e:06:91:3f:2e:7a:65:22:88:a6:1d:d6:e7:92:b6:
b4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F9:A9:01:46:FD:AB:7D:56:31:81:44:BE:C7:C2:F7:B0:13:2A:8F
X509v3 Authority Key Identifier:
keyid:8D:89:22:3C:1F:33:5C:0C:C5:69:35:9F:A2:DD:A3:49:A2:23:6C:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYkiPB8zXAzFaTWfot2jSaIjbMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/9PmpAUb9q31WMYFEvsfC97ATKo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52a10d-d851-40ae-a8b0-a1028eda6383/1/jYkiPB8zXAzFaTWfot2jSaIjbMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.169.0-185.213.171.255
Signature Algorithm: sha256WithRSAEncryption
46:83:e5:70:5c:e8:2f:6d:f5:98:64:6f:f1:d0:8c:18:a4:26:
b0:b4:7f:24:88:5d:7e:af:83:45:d6:e0:82:2b:db:a2:c4:a3:
17:a7:d7:2d:13:2d:ff:5a:a5:8b:39:32:8d:cd:b7:7d:0c:49:
71:32:0a:f1:e7:05:f2:bd:17:ba:47:a6:c8:42:e4:60:13:f3:
1c:31:55:df:5b:ef:20:7b:6d:2a:b5:3d:37:b8:96:06:e3:a3:
ee:83:2a:17:7c:5d:1d:15:a1:18:6b:64:58:fa:5f:7a:d5:df:
5e:ac:45:80:9b:dd:62:8b:47:79:4c:14:a0:a6:fc:1b:4f:82:
ba:68:41:2e:6f:b1:8c:54:00:94:35:2a:93:b7:a1:a4:cd:10:
db:f5:a2:1e:87:7c:30:55:13:6a:65:4d:89:3d:26:2d:70:8b:
ef:12:9f:78:1d:03:21:b3:e2:73:f0:5e:b1:ed:e2:77:2a:72:
26:b5:aa:3b:f9:18:19:0b:33:42:91:dd:38:01:98:09:57:a9:
8f:04:4c:33:a9:5e:f6:a9:04:df:28:7e:b6:2d:8e:6b:75:6e:
33:cd:19:45:3a:fc:24:23:8a:fe:24:fd:76:79:a3:4e:17:70:
72:c8:0f:4a:8a:fe:18:10:3b:be:c3:80:72:af:21:ee:e2:c4:
8d:25:77:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:12 2023 by rpki-client on console.sobornost.net