Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/1H4mj747tE52sazAxfAx5a8gFpU.roa
File: 1H4mj747tE52sazAxfAx5a8gFpU.roa (raw, json)
Hash identifier: jp2GAbpzqCRwkZ+rAoyk6qxk4IRL7FMr5hk1AAPsKqM=
Subject key identifier: D4:7E:26:8F:BE:3B:B4:4E:76:B1:AC:C0:C5:F0:31:E5:AF:20:16:95
Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Certificate serial: 018571FA438265FBDED3BD2969F597D6ADC4
Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/1H4mj747tE52sazAxfAx5a8gFpU.roa
Signing time: Mon 02 Jan 2023 10:15:04 +0000
ROA not before: Mon 02 Jan 2023 10:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212352
IP address blocks: 193.243.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:43:82:65:fb:de:d3:bd:29:69:f5:97:d6:ad:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce
Validity
Not Before: Jan 2 10:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d47e268fbe3bb44e76b1acc0c5f031e5af201695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7e:3e:13:17:9a:ba:79:4a:31:12:61:6e:d2:
7c:9c:2a:5d:49:c1:32:bd:35:3c:bb:9b:ca:ef:1d:
4c:d6:9e:8a:0d:66:29:98:1c:c7:da:71:88:17:bf:
72:ca:08:48:dd:10:76:31:c1:b1:4c:5b:54:df:14:
43:55:e4:d4:37:5b:ae:9e:31:1f:00:63:cc:f1:18:
ed:22:72:65:a1:54:25:d0:b5:7e:92:3b:7c:f4:24:
b2:91:73:91:91:0b:38:73:42:8e:59:ec:8c:51:8f:
4e:07:29:09:7e:2c:8d:49:b9:04:65:7c:db:bc:7e:
48:ef:fd:c9:6d:23:f4:56:b2:b5:dd:59:d4:e7:6f:
fb:c3:32:ce:d9:bd:cc:45:b1:1f:7f:be:fc:cc:0a:
00:91:3a:10:ad:f8:54:17:b4:6e:ac:3f:59:9d:b9:
07:38:ea:3d:b2:49:75:29:3d:31:19:4b:d8:91:67:
09:b1:ce:e1:66:2d:54:c4:96:8c:a0:f1:8c:9a:e9:
e9:b7:e9:a7:69:34:69:18:ba:92:81:59:dd:4f:75:
f5:25:a7:5e:4f:3c:ee:4b:da:4a:f4:55:ac:fa:ee:
78:9f:13:ac:cc:f5:db:b3:2f:50:c5:17:b0:bd:93:
80:6a:5c:97:a8:a2:65:46:a1:88:11:15:71:aa:02:
df:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7E:26:8F:BE:3B:B4:4E:76:B1:AC:C0:C5:F0:31:E5:AF:20:16:95
X509v3 Authority Key Identifier:
keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/1H4mj747tE52sazAxfAx5a8gFpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.243.166.0/24
Signature Algorithm: sha256WithRSAEncryption
20:04:d1:49:e7:09:81:03:4a:15:40:08:8f:fe:5b:5a:47:a0:
17:10:3c:67:59:d0:77:63:83:1b:12:03:21:94:eb:b0:25:0f:
9b:cc:8f:53:da:a5:ec:7b:94:a9:09:d1:fa:d5:49:8a:d8:66:
2d:a0:d4:3d:44:52:fe:5e:7d:c6:df:35:8a:d5:83:9f:95:d8:
49:ab:f3:d7:c9:fa:b3:b5:b3:31:e2:80:ec:6f:12:9c:37:2e:
21:dc:5c:56:f3:40:7a:09:34:41:5a:27:f0:a4:8d:5f:78:92:
79:1b:8e:6f:07:74:d6:52:1a:27:51:16:8b:c1:57:b3:02:8b:
50:d4:01:08:fe:82:8b:e9:a6:17:ab:43:2c:64:25:62:e6:fa:
5c:18:0b:83:a6:85:81:44:fc:50:ea:2f:28:3e:af:f3:71:de:
b7:e2:db:ca:85:a3:7d:b2:16:3d:c5:d5:0a:95:de:e3:63:ce:
9e:65:46:d1:b6:02:1f:8b:da:4c:eb:45:4a:76:56:78:82:15:
73:89:30:fb:32:3e:9e:f5:6d:21:fa:d6:a7:c6:67:c1:64:78:
3f:59:11:76:4c:3b:ec:61:88:cb:61:3e:a0:08:f0:10:cf:44:
4c:da:e8:b5:a6:35:c6:e1:f1:fb:48:eb:dd:ff:07:7e:05:80:
6e:d9:b9:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:36 2024 by rpki-client on console.sobornost.net