Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/GrnS4Ea4xBKpzM2e-c5fhIbQTHc.roa
File: GrnS4Ea4xBKpzM2e-c5fhIbQTHc.roa (raw, json)
Hash identifier: cKfHJdL84HCNcfXsjxA9KahJDqw8TnDdI8vFX+TnpSk=
Subject key identifier: 1A:B9:D2:E0:46:B8:C4:12:A9:CC:CD:9E:F9:CE:5F:84:86:D0:4C:77
Certificate issuer: /CN=c22d553b28c5d0ea5b1ef60c9bce33df50bcb493
Certificate serial: 01856D787FC752833BD56E299A373AF0ABE8
Authority key identifier: C2:2D:55:3B:28:C5:D0:EA:5B:1E:F6:0C:9B:CE:33:DF:50:BC:B4:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wi1VOyjF0OpbHvYMm84z31C8tJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/GrnS4Ea4xBKpzM2e-c5fhIbQTHc.roa
Signing time: Sun 01 Jan 2023 13:14:51 +0000
ROA not before: Sun 01 Jan 2023 13:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48367
IP address blocks: 91.210.220.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:7f:c7:52:83:3b:d5:6e:29:9a:37:3a:f0:ab:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c22d553b28c5d0ea5b1ef60c9bce33df50bcb493
Validity
Not Before: Jan 1 13:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ab9d2e046b8c412a9cccd9ef9ce5f8486d04c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9e:07:b2:7b:2d:0f:86:a4:4e:76:61:74:94:
27:0e:5f:4c:89:9b:1b:c1:1f:8a:db:4f:fc:57:30:
b5:f5:d8:29:43:58:e4:0d:8c:eb:58:36:6e:e1:d6:
a6:66:db:87:81:c2:a8:b0:bf:84:e4:6a:12:6b:a2:
dc:d8:42:7d:b3:8c:1c:a1:80:7b:6f:af:91:02:e5:
cd:e3:8e:f1:23:7e:da:6d:88:8e:28:7a:45:e8:61:
2a:b1:25:9f:1f:35:a6:7e:61:2a:59:06:78:ad:df:
65:96:02:6f:ea:ff:b5:dc:8d:c6:ab:7e:0b:ff:24:
4f:d5:01:35:c8:94:0a:3a:f4:82:d9:cd:34:12:67:
c1:e1:0f:8c:64:bd:d1:18:5a:87:5b:54:e3:98:62:
f7:e6:e7:86:16:ff:11:4d:62:e6:f4:3b:c2:92:15:
03:c9:cb:a6:c1:2f:c9:ad:eb:a6:9f:2e:29:58:2c:
e6:f9:e0:8d:6c:20:9e:91:b9:04:69:bf:85:bf:1a:
76:b2:30:7c:86:34:4e:a3:a5:c2:97:e7:39:4e:ce:
df:93:63:b7:c7:56:ba:8f:a5:30:33:5b:13:0e:7b:
20:de:ef:d0:2e:20:09:64:b0:96:e3:58:30:cb:c7:
65:ab:06:38:72:f7:7b:9f:10:fd:39:22:73:e1:f8:
66:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B9:D2:E0:46:B8:C4:12:A9:CC:CD:9E:F9:CE:5F:84:86:D0:4C:77
X509v3 Authority Key Identifier:
keyid:C2:2D:55:3B:28:C5:D0:EA:5B:1E:F6:0C:9B:CE:33:DF:50:BC:B4:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wi1VOyjF0OpbHvYMm84z31C8tJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/GrnS4Ea4xBKpzM2e-c5fhIbQTHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e17644-93d4-4457-8e5e-9675068857f1/1/wi1VOyjF0OpbHvYMm84z31C8tJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.220.0/22
Signature Algorithm: sha256WithRSAEncryption
85:a4:9c:f5:46:ea:20:5d:73:41:4a:65:f4:67:d9:e7:e1:8f:
84:15:6c:4c:4a:fe:7c:a9:04:0f:50:cc:45:92:f7:6f:69:58:
b0:d7:aa:32:ba:b2:37:ae:80:c5:be:2b:48:16:af:e9:a5:35:
c5:c5:d6:ea:98:6f:f4:41:8d:8e:2f:cb:ac:6f:80:dc:ee:f4:
b7:11:2d:47:6e:fe:30:e6:eb:9a:4f:61:c6:7a:0c:92:09:a6:
31:53:49:b0:cb:67:a2:8a:ec:21:0b:f8:e2:36:ed:05:3a:81:
c7:0d:ca:d6:6d:a4:97:ca:3c:b8:23:de:44:41:ca:95:1c:74:
92:a7:f5:58:7f:fe:9c:47:9c:82:a3:48:af:c4:38:f7:2b:ee:
54:38:8d:fe:6c:19:68:33:6e:81:7a:39:15:70:c2:e0:18:cc:
50:84:54:10:05:c9:de:46:07:28:a7:7d:25:d6:96:4b:fa:22:
21:78:02:fa:4e:5f:df:8b:67:e9:68:b1:65:ac:d7:d2:e1:29:
f9:28:29:8e:19:50:87:05:8c:ee:63:de:06:57:8b:e9:57:d8:
31:4b:c9:f6:6c:48:b4:90:6c:fd:3a:ac:c1:c8:26:db:37:a8:
56:52:6c:fc:d9:41:22:a1:dd:c3:95:5b:35:56:5f:65:d7:21:
5c:83:9c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:03:06 2024 by rpki-client on console.sobornost.net