Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/9FNX9P0RIHSUVS19gKo1VhWPESg.roa
File: 9FNX9P0RIHSUVS19gKo1VhWPESg.roa (raw, json)
Hash identifier: oITVdFDEqxOlrmQu4JLklKPxpMiyoM2DCtxeb8jRX7Q=
Subject key identifier: F4:53:57:F4:FD:11:20:74:94:55:2D:7D:80:AA:35:56:15:8F:11:28
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 018B4734D53FF8469A285BDEB8715EEF0791
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/9FNX9P0RIHSUVS19gKo1VhWPESg.roa
Signing time: Thu 19 Oct 2023 09:12:06 +0000
ROA not before: Thu 19 Oct 2023 09:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42055
IP address blocks: 45.66.92.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:34:d5:3f:f8:46:9a:28:5b:de:b8:71:5e:ef:07:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Oct 19 09:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f45357f4fd11207494552d7d80aa3556158f1128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:23:68:da:2f:c0:46:49:0c:e0:eb:60:19:ac:
29:af:69:b8:df:5d:12:0c:2e:46:97:82:4f:76:d6:
ad:1f:d0:9c:b6:e4:c4:7b:b7:d1:85:d3:69:f5:f5:
80:e7:e1:a2:a6:f5:b6:42:cf:e6:d9:9b:1f:79:47:
eb:8a:07:d2:a2:54:3c:2b:c1:fe:d7:90:95:38:27:
6a:9b:04:4d:ca:f9:e9:14:d9:2f:52:7c:1d:63:c2:
86:fc:c2:9c:c5:f3:3c:f9:ab:d8:b6:3b:fa:0c:20:
28:24:19:dc:fe:1f:30:2d:40:4f:e7:8b:af:7e:4e:
ee:38:4c:f2:41:79:9e:0d:b3:57:a4:a3:10:fa:de:
fe:62:dd:70:62:31:7c:3b:eb:c3:b0:a6:29:90:c9:
7b:19:1d:c7:a8:44:79:fe:11:c0:a6:63:a2:d6:18:
d6:85:6a:25:0c:59:03:bd:34:f0:10:80:d4:ce:da:
0e:5b:02:93:fa:b6:db:9c:06:1a:8e:6f:a1:6f:c4:
e7:ca:a6:ad:2f:7d:d3:5e:2b:cb:6e:d4:9f:b2:ec:
59:73:60:8b:96:87:75:75:cc:0c:7a:38:41:cc:57:
93:b2:9d:98:70:94:e6:7b:6a:bf:5b:3d:20:e0:f5:
81:ac:53:75:56:4d:d1:20:9d:fd:9a:17:8a:05:88:
00:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:53:57:F4:FD:11:20:74:94:55:2D:7D:80:AA:35:56:15:8F:11:28
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/9FNX9P0RIHSUVS19gKo1VhWPESg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.92.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:30:43:a2:49:12:e8:65:c0:9b:2e:6a:d9:a8:1e:46:1b:20:
8f:cb:de:7b:ec:08:92:ba:85:20:e0:c5:85:ee:c3:72:ce:9c:
1e:d9:b6:89:6f:6a:90:cc:db:2e:38:47:ea:f1:d0:d5:b1:05:
88:61:c8:e8:66:bb:5b:63:e4:6a:b0:ad:06:30:2e:3c:ca:6d:
43:33:ce:07:3b:3c:a7:5b:70:ac:94:d1:40:13:d4:f8:78:39:
82:b5:cb:6c:35:7b:de:e9:66:b4:ce:c1:5e:23:c6:55:09:3f:
b2:1c:d9:25:81:3d:9d:32:47:10:4a:1f:25:ab:f4:06:ab:a0:
29:b4:c2:65:8e:af:24:b1:73:f3:aa:d4:49:e7:57:6a:6b:c1:
73:ba:55:be:1e:b6:f1:76:53:fb:42:72:0b:d2:c9:0f:40:cb:
66:79:be:94:b6:f5:4e:29:cc:06:5b:9a:8e:3d:1e:f1:9a:39:
1b:f4:18:ce:c5:b3:ad:f9:36:fc:92:a3:e3:0e:b2:63:ce:36:
39:94:18:fc:a6:49:5a:e1:c5:c7:cd:c9:e1:cd:73:c3:49:8d:
f8:39:2e:4c:03:c8:33:bd:64:92:43:da:94:c4:73:d2:4d:fd:
04:8f:e0:03:40:7c:c5:30:6e:19:82:c3:30:f2:19:a0:8b:ea:
b0:68:44:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:12 2023 by rpki-client on console.sobornost.net