Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/zvfbVqcQQ9uBjEz9-iJQIvFBx-4.roa
File: zvfbVqcQQ9uBjEz9-iJQIvFBx-4.roa (raw, json)
Hash identifier: 3eyKSzEI6E/na5WADziv6bzamhRDr5X/wWp2MBCdkhQ=
Subject key identifier: CE:F7:DB:56:A7:10:43:DB:81:8C:4C:FD:FA:22:50:22:F1:41:C7:EE
Certificate issuer: /CN=8549d92e2dd97a615244d549ca3f5cc615932c3c
Certificate serial: 01856FB12541C04B84C5495E170F136E7DF7
Authority key identifier: 85:49:D9:2E:2D:D9:7A:61:52:44:D5:49:CA:3F:5C:C6:15:93:2C:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUnZLi3ZemFSRNVJyj9cxhWTLDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/zvfbVqcQQ9uBjEz9-iJQIvFBx-4.roa
Signing time: Sun 01 Jan 2023 23:35:58 +0000
ROA not before: Sun 01 Jan 2023 23:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.214.164.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:25:41:c0:4b:84:c5:49:5e:17:0f:13:6e:7d:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8549d92e2dd97a615244d549ca3f5cc615932c3c
Validity
Not Before: Jan 1 23:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cef7db56a71043db818c4cfdfa225022f141c7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:08:c4:3f:18:7e:f8:72:37:17:33:1b:dd:70:
36:fe:f6:25:a6:d6:79:26:f2:93:d0:f6:c5:63:18:
a8:c5:dc:70:ef:83:9b:8d:0f:43:a8:1d:7a:34:3d:
0e:3d:a6:f1:70:47:e2:4f:19:97:ad:ff:d2:43:e3:
86:84:91:e5:5a:ca:9b:ee:8f:1c:6e:f7:0c:0e:25:
d3:96:fa:2a:06:de:9b:41:18:d6:80:12:c7:3b:f5:
30:7e:9a:aa:ab:22:55:1c:c8:54:7d:d8:55:5a:1f:
9d:08:17:f5:e9:4f:c4:54:a9:ac:0e:54:75:85:88:
8e:37:c3:af:42:3e:f2:ff:85:9d:61:96:d0:65:06:
44:a1:3b:c0:50:af:cd:ff:51:2d:03:42:4a:f3:a8:
ef:24:89:32:56:a6:ad:af:f9:36:06:aa:a2:e1:e8:
63:44:18:41:e9:e3:92:4d:5f:1e:da:21:30:f8:cd:
8e:14:a2:3f:c9:71:78:6c:1d:de:c0:5a:03:40:15:
82:0e:35:b2:c8:2e:aa:e6:f2:ef:85:a5:bf:86:8b:
84:5b:84:c3:fa:62:99:7f:0a:3b:81:cd:d3:4b:f0:
a5:16:ec:e9:54:ba:1e:a0:e8:24:10:31:6d:2f:34:
c8:a8:9e:6f:b5:8f:c7:e6:e8:4f:51:e4:e1:9f:b9:
ba:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F7:DB:56:A7:10:43:DB:81:8C:4C:FD:FA:22:50:22:F1:41:C7:EE
X509v3 Authority Key Identifier:
keyid:85:49:D9:2E:2D:D9:7A:61:52:44:D5:49:CA:3F:5C:C6:15:93:2C:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUnZLi3ZemFSRNVJyj9cxhWTLDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/zvfbVqcQQ9uBjEz9-iJQIvFBx-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/c8d61b-e7d0-4568-976c-8e1ca85631d0/1/hUnZLi3ZemFSRNVJyj9cxhWTLDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.164.0/24
Signature Algorithm: sha256WithRSAEncryption
83:5e:f6:72:28:c6:7a:1e:e1:23:c3:c6:61:c8:29:5b:e9:b0:
ae:15:7b:85:99:a1:fb:d8:96:12:37:e5:3e:fa:09:ea:29:36:
47:6d:42:28:7b:94:df:5c:0e:82:41:12:97:f7:23:67:c4:fa:
42:8a:74:a4:1a:3c:fe:96:b7:58:dc:1e:bc:43:1c:06:e7:30:
d9:3a:76:3a:dc:52:14:9a:c8:ee:f5:1b:a5:cb:a3:c5:bb:ba:
87:2a:53:d5:7e:16:9a:b0:f4:b1:42:f8:cf:f5:bd:af:5e:e7:
08:cb:53:a8:fe:6a:60:cf:c1:02:02:c1:1a:61:48:bd:f7:d4:
99:a4:97:81:c0:76:45:09:6f:a8:f9:de:28:5f:49:b8:ee:a8:
18:9a:03:ee:fb:5e:b2:31:2d:e2:b0:f0:f2:8a:a3:7a:7d:93:
92:b1:59:e4:fb:c1:52:4b:f3:b8:97:ff:ce:45:b5:31:1d:f6:
8c:a5:20:17:9d:77:3d:65:d0:f9:22:0e:5a:f8:b1:6e:d1:3d:
69:f6:0c:2a:a8:c2:07:06:06:9b:0d:6f:1a:5f:a9:33:74:a0:
e5:e9:41:1b:1e:b5:a3:08:10:46:75:4a:4a:75:95:ed:2a:1b:
71:1e:4d:d5:5f:0b:b0:30:3f:c9:e2:5c:78:43:de:b4:9a:c6:
56:c6:70:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:05 2024 by rpki-client on console.sobornost.net