Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/lNE0xsZMVIOuoahi2IUK47L4CwY.roa
File: lNE0xsZMVIOuoahi2IUK47L4CwY.roa (raw, json)
Hash identifier: VdIpV80j4fjFDcRzP3GdgJqGvCVuU1rz1BNGazl0xNs=
Subject key identifier: 94:D1:34:C6:C6:4C:54:83:AE:A1:A8:62:D8:85:0A:E3:B2:F8:0B:06
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018A1BCD2A59177363963FBFA3DD81D228D4
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/lNE0xsZMVIOuoahi2IUK47L4CwY.roa
Signing time: Tue 22 Aug 2023 05:52:25 +0000
ROA not before: Tue 22 Aug 2023 05:52:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 81.28.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1b:cd:2a:59:17:73:63:96:3f:bf:a3:dd:81:d2:28:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Aug 22 05:52:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94d134c6c64c5483aea1a862d8850ae3b2f80b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b7:32:66:32:52:88:a6:7c:54:1d:ba:8a:f4:
b0:21:43:11:a4:8a:f2:5d:a2:83:90:e8:e5:1e:56:
ce:be:88:b1:eb:47:6e:b4:50:ac:a9:52:3f:99:4b:
22:72:76:32:ff:6d:4a:19:39:ab:ae:83:58:ac:7e:
ed:be:1a:5b:f2:3c:cd:0b:93:c9:0e:53:2b:0d:36:
71:bf:79:43:e6:2c:a8:e8:62:2c:e9:41:b5:0d:52:
6f:21:4f:89:d3:de:7f:61:5f:58:cc:6f:e3:45:45:
52:6f:dc:3a:e0:ea:70:da:29:3d:be:55:84:52:99:
7e:3c:49:66:06:11:c8:d7:b3:0c:2b:18:75:dd:d7:
08:ac:b9:c5:95:37:45:a6:87:91:cb:7b:02:16:be:
6f:eb:af:d2:61:06:f8:ef:be:d5:e4:fa:e9:65:93:
ac:7f:ef:87:ab:33:93:7f:29:ff:f4:f6:12:c5:2f:
43:74:4f:59:ee:6c:60:c4:95:eb:6c:ca:f7:ea:8a:
77:b7:39:5f:09:c4:5a:14:b3:98:d4:36:13:7f:87:
06:0b:48:11:c7:48:3f:81:ca:bf:e6:4c:91:71:ef:
cc:65:f8:29:7a:da:00:ec:14:9d:3f:80:88:33:a2:
59:a1:86:6a:4e:66:ca:8f:1e:b3:29:c3:02:44:4e:
3d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D1:34:C6:C6:4C:54:83:AE:A1:A8:62:D8:85:0A:E3:B2:F8:0B:06
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/lNE0xsZMVIOuoahi2IUK47L4CwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ad:dd:b5:d7:03:d8:7d:dd:a2:db:7d:cc:d5:71:8b:9c:fd:
20:09:80:84:ed:85:32:17:31:15:b0:34:ef:a6:cb:73:93:43:
3d:b7:4a:03:2b:8e:0d:f8:f0:f1:0c:a2:e8:c7:05:d7:82:72:
fe:8f:95:a1:d7:06:6a:d4:b0:b7:a7:aa:3e:59:79:f5:d9:9e:
ed:8c:f6:76:94:80:fb:e2:b5:5b:e8:6c:d3:a8:94:f5:7e:bd:
c8:86:0c:1e:ce:95:e2:0d:0a:9b:2f:95:8f:06:d0:a2:1e:ca:
8e:dd:11:64:3f:b9:25:8a:a0:b4:b0:c0:5b:cb:af:69:2a:57:
8d:12:41:34:c3:46:54:07:bd:42:59:5b:32:fc:94:53:83:c0:
cd:24:eb:f8:9c:57:66:6f:5b:93:cd:31:c7:7e:bf:5a:4d:32:
df:cb:d1:42:7f:50:c3:1c:99:42:bd:df:a4:ff:d5:d4:11:a7:
64:60:72:36:c8:d2:e4:15:4e:7e:89:ad:45:9f:af:a6:6e:31:
ad:7d:78:62:88:60:43:22:ae:67:47:36:89:e9:1c:1d:3e:7d:
7a:d4:33:b5:4a:c7:9c:5e:51:32:f9:2a:72:64:b3:5b:1a:96:
34:29:68:44:25:d1:b7:18:f1:22:50:05:46:34:46:f0:b8:e7:
58:2c:86:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:29 2024 by rpki-client on console.sobornost.net