Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/xPsc4pLyv1nEJX32IxbBD-2f2hE.roa
File: xPsc4pLyv1nEJX32IxbBD-2f2hE.roa (raw, json)
Hash identifier: kRhJiiRwvaVgXcXxRyUInnJsEzBmaci+3VZ8XSvVTro=
Subject key identifier: C4:FB:1C:E2:92:F2:BF:59:C4:25:7D:F6:23:16:C1:0F:ED:9F:DA:11
Certificate issuer: /CN=048dc3b923c7738f9a58ee80b49bcd0c5e7dcffa
Certificate serial: 018570FBC1303036109A324A9BC17F4F54FC
Authority key identifier: 04:8D:C3:B9:23:C7:73:8F:9A:58:EE:80:B4:9B:CD:0C:5E:7D:CF:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BI3DuSPHc4-aWO6AtJvNDF59z_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/xPsc4pLyv1nEJX32IxbBD-2f2hE.roa
Signing time: Mon 02 Jan 2023 05:37:05 +0000
ROA not before: Mon 02 Jan 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44066
IP address blocks: 79.174.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:c1:30:30:36:10:9a:32:4a:9b:c1:7f:4f:54:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048dc3b923c7738f9a58ee80b49bcd0c5e7dcffa
Validity
Not Before: Jan 2 05:37:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4fb1ce292f2bf59c4257df62316c10fed9fda11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:24:b3:32:b1:3b:4c:35:a2:1d:22:f5:37:b8:
1e:1a:ce:1a:e8:0d:75:e2:dc:75:70:15:24:f2:5d:
d9:4a:d6:25:50:44:08:72:5e:d6:e2:fe:0b:78:a3:
e7:97:b0:38:5f:c6:67:8e:e9:26:0a:a7:93:8c:3f:
98:f9:d1:f7:b8:62:31:f9:1b:52:3d:e1:69:87:eb:
5e:c3:1f:aa:5a:0b:83:33:a6:03:03:d4:af:89:54:
50:fb:02:d2:3b:70:d6:70:17:f7:5d:a4:17:69:2a:
06:fb:d5:ef:a8:fd:c3:9a:2a:d8:fe:d2:51:b7:f8:
6d:10:5e:f2:6e:9d:78:0f:19:01:c4:68:ac:34:8e:
a6:20:31:88:4b:b0:a7:63:80:28:2f:fd:3a:30:be:
38:9f:71:a9:3d:49:ef:9e:21:ef:f3:04:e3:91:a8:
04:a8:ae:36:b1:12:51:70:a3:af:64:18:2c:2e:3b:
8c:a7:5b:5d:1c:04:77:c0:93:7d:45:5e:68:25:11:
e0:e1:13:a3:45:65:ca:45:23:76:51:3b:c2:cd:4c:
1f:65:12:ae:e7:bb:ab:7d:01:54:a2:79:7f:b1:55:
5e:8b:df:0a:77:8a:91:03:ea:4f:b8:4a:62:fc:d7:
1f:54:eb:62:48:2e:78:9a:9d:3e:e3:24:78:9e:30:
5d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:FB:1C:E2:92:F2:BF:59:C4:25:7D:F6:23:16:C1:0F:ED:9F:DA:11
X509v3 Authority Key Identifier:
keyid:04:8D:C3:B9:23:C7:73:8F:9A:58:EE:80:B4:9B:CD:0C:5E:7D:CF:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BI3DuSPHc4-aWO6AtJvNDF59z_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/xPsc4pLyv1nEJX32IxbBD-2f2hE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/BI3DuSPHc4-aWO6AtJvNDF59z_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.3.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:23:af:f5:76:c1:f0:16:97:61:6c:28:9e:a3:3a:3e:a3:24:
a8:d3:5b:7d:18:60:fb:00:11:57:79:aa:30:4c:e3:0e:8b:54:
32:f5:28:0a:cf:61:77:e7:53:21:fc:89:c3:cf:e5:63:7b:5e:
2d:90:9a:51:a7:d7:22:f5:12:e3:46:36:a0:83:c9:b3:f8:52:
5e:bd:9b:0f:b0:02:36:48:35:d2:a3:87:c6:35:a8:17:05:83:
42:12:3d:98:24:cf:93:03:82:18:9c:85:b0:fa:66:98:6d:b4:
c4:32:e7:db:a1:fb:1b:5e:5f:21:a4:92:7d:be:42:e7:63:bc:
94:4f:0c:9c:85:3d:bd:a0:f7:99:c6:a3:73:70:8b:03:a9:a0:
4a:c0:db:98:e5:bb:d4:8c:30:c6:0c:63:32:43:08:89:5b:e4:
e1:ef:4c:60:d6:27:35:1d:dc:0b:4b:67:f2:34:cf:dd:87:3c:
3c:7e:7d:b4:5d:83:79:94:f9:91:63:61:70:65:89:e9:e5:1c:
fd:18:a9:23:23:91:2c:ae:d8:b7:4b:bf:38:3d:b9:95:68:a9:
db:70:3b:e3:1d:82:88:65:02:18:ee:08:40:f9:69:b9:2e:1b:
e5:17:73:72:e8:51:88:4f:bc:34:db:8e:9a:1f:c6:57:c9:61:
48:c5:26:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:48 2024 by rpki-client on console.sobornost.net