Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/CygW530ypWle4KjEFhxgz1ALRa8.roa
File: CygW530ypWle4KjEFhxgz1ALRa8.roa (raw, json)
Hash identifier: Sw8pyWQea3x6WngFGuMRrFy2zh/UQqx7J6Lwftfm5nI=
Subject key identifier: 0B:28:16:E7:7D:32:A5:69:5E:E0:A8:C4:16:1C:60:CF:50:0B:45:AF
Certificate issuer: /CN=8ab5b9a9368797a86baebc81f623b3f4e786f51a
Certificate serial: 018570FBDB0E519F33FA25D0722DDA4ECB21
Authority key identifier: 8A:B5:B9:A9:36:87:97:A8:6B:AE:BC:81:F6:23:B3:F4:E7:86:F5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/irW5qTaHl6hrrryB9iOz9OeG9Ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/CygW530ypWle4KjEFhxgz1ALRa8.roa
Signing time: Mon 02 Jan 2023 05:37:11 +0000
ROA not before: Mon 02 Jan 2023 05:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9150
IP address blocks: 185.65.124.0/24 maxlen: 24
2a04:f840::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:db:0e:51:9f:33:fa:25:d0:72:2d:da:4e:cb:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ab5b9a9368797a86baebc81f623b3f4e786f51a
Validity
Not Before: Jan 2 05:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b2816e77d32a5695ee0a8c4161c60cf500b45af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a2:e2:8d:45:2d:68:f3:01:75:d3:98:4b:71:
0c:e6:ad:a8:a8:f3:8d:8a:95:30:48:40:bc:41:6f:
bc:ff:bf:3b:a6:74:49:e8:21:fe:00:16:ae:61:d1:
78:f6:72:2b:87:22:4a:df:b2:1c:be:53:aa:55:01:
72:f1:40:33:0c:97:3e:56:35:36:d6:1d:56:e8:e9:
3f:e7:cd:54:af:36:6c:e5:cb:41:49:c1:2d:0e:ff:
b9:2f:9d:d4:15:66:ac:80:2c:cd:1f:c5:d2:58:65:
3d:9b:52:b1:54:05:2a:54:4d:73:4d:1a:f1:99:df:
ae:3f:a6:01:be:24:6c:d8:c4:6c:87:29:67:3e:15:
b0:b2:1e:b1:c2:01:67:e0:34:d7:c5:10:4a:06:0a:
9f:74:81:06:20:60:34:41:21:8e:ad:eb:be:90:3d:
e8:8f:1d:ff:14:af:bd:3d:e9:bf:bd:57:bd:da:a8:
79:4c:69:e2:ea:37:31:57:9d:1e:4d:44:e0:6a:3f:
4c:67:47:9d:8d:09:74:a9:b5:20:02:50:48:e3:8b:
11:79:2f:c0:58:7f:cd:49:04:48:78:76:cb:68:cb:
4b:d3:60:40:59:d9:63:e3:38:ef:cf:4b:cd:3d:b5:
a3:20:62:62:58:fc:fc:6d:c7:c5:e7:18:52:c6:6d:
17:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:28:16:E7:7D:32:A5:69:5E:E0:A8:C4:16:1C:60:CF:50:0B:45:AF
X509v3 Authority Key Identifier:
keyid:8A:B5:B9:A9:36:87:97:A8:6B:AE:BC:81:F6:23:B3:F4:E7:86:F5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/irW5qTaHl6hrrryB9iOz9OeG9Ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/CygW530ypWle4KjEFhxgz1ALRa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/64c431-5330-437b-b207-28fecc63398c/1/irW5qTaHl6hrrryB9iOz9OeG9Ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.124.0/24
IPv6:
2a04:f840::/40
Signature Algorithm: sha256WithRSAEncryption
99:dc:15:11:fe:e5:e5:c3:b1:bf:66:74:d5:ee:fb:80:2f:f7:
0d:00:29:b6:ab:93:85:b3:16:a2:cc:c3:7f:15:29:7c:9c:85:
b3:65:f1:25:b2:e7:c5:a5:e0:ce:ff:cd:61:75:ea:0a:33:1e:
78:dc:76:9d:de:13:eb:a7:4c:d8:91:5c:a0:d7:68:2c:42:c4:
94:de:ad:47:a9:7b:d7:0e:fc:dc:49:30:19:60:0e:6c:69:e5:
6e:e1:04:53:9f:28:cf:36:d6:44:39:93:92:9e:f1:8a:df:b1:
11:12:ee:cb:de:0a:d8:26:71:26:97:29:31:ec:56:ae:5d:f7:
8a:b2:2a:d7:ff:f4:b5:bb:87:d4:91:63:c1:b9:ef:1f:fd:8c:
f6:1e:f6:01:7c:0f:1e:04:22:a2:f4:a1:01:f0:be:c6:88:3a:
6b:5c:b9:d7:07:5b:c9:f6:97:18:c8:7d:67:e0:62:52:a1:e8:
9b:11:0c:d2:0e:f6:df:3c:8c:30:34:03:d7:48:cd:31:68:de:
1f:6a:d2:fc:4a:ee:a8:02:8d:82:b5:d8:ed:b8:fa:65:09:73:
e5:63:24:f2:56:1e:5a:20:c4:e0:83:e5:f9:84:01:4c:e7:86:
d8:06:1d:c5:81:aa:1b:63:6c:b6:1b:bc:6e:11:e3:6e:79:b5:
92:fe:be:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:58 2024 by rpki-client on console.sobornost.net