Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/3ljR2oaCQSHiCR5wlgebx201R2Y.roa
File: 3ljR2oaCQSHiCR5wlgebx201R2Y.roa (raw, json)
Hash identifier: EzdCP3vOY4NM+kqBLrn6INAOJuCNoNPy+uItKaDRloo=
Subject key identifier: DE:58:D1:DA:86:82:41:21:E2:09:1E:70:96:07:9B:C7:6D:35:47:66
Certificate issuer: /CN=65516ddc7331e2e269dc57d9c7632f25de7d0c6e
Certificate serial: 0185700B93C79F349630EEAB8E9C81D88A6D
Authority key identifier: 65:51:6D:DC:73:31:E2:E2:69:DC:57:D9:C7:63:2F:25:DE:7D:0C:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVFt3HMx4uJp3FfZx2MvJd59DG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/3ljR2oaCQSHiCR5wlgebx201R2Y.roa
Signing time: Mon 02 Jan 2023 01:14:44 +0000
ROA not before: Mon 02 Jan 2023 01:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8999
IP address blocks: 193.7.212.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:93:c7:9f:34:96:30:ee:ab:8e:9c:81:d8:8a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65516ddc7331e2e269dc57d9c7632f25de7d0c6e
Validity
Not Before: Jan 2 01:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de58d1da86824121e2091e7096079bc76d354766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:84:d1:fb:41:75:bb:97:30:31:30:c6:33:
d5:5e:a3:f8:8b:0f:61:23:e9:26:9f:7e:9a:33:c6:
3d:cd:45:71:d2:05:81:ab:5a:c3:13:e5:54:b4:44:
02:df:ce:41:73:e3:6c:5c:ef:d0:fa:0e:4e:68:94:
ae:7f:bf:e3:66:5c:ef:57:0b:60:4d:9c:40:bc:6e:
b2:6d:aa:7a:66:f9:21:1d:d4:7e:06:65:15:af:b2:
4a:dd:33:08:a7:fd:ef:8d:35:74:e0:36:6f:86:a2:
67:d6:c4:2e:64:c2:25:6a:c3:42:95:e3:53:dc:94:
4e:ee:9a:2d:ca:3b:e6:b7:aa:00:ba:e7:ce:1f:65:
2f:40:17:65:9f:eb:55:7b:32:c3:a7:d1:3d:58:1f:
a5:a5:02:9c:b8:96:70:ef:a8:53:bc:cf:65:f7:eb:
00:7b:54:dc:8b:23:1f:cb:64:a4:bc:95:9a:42:be:
6a:a0:5d:d8:14:88:b2:db:dc:3c:b1:fd:ee:13:01:
a0:95:c5:0b:07:87:27:92:e3:56:48:95:e6:74:93:
58:81:79:1e:8b:3f:70:24:3a:36:28:7c:d5:2d:57:
3b:86:0d:2e:df:6b:a8:d4:87:1a:e4:60:74:b1:b9:
1d:9a:2f:0a:ec:94:57:e9:9f:1e:b7:b2:ad:1f:ce:
cc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:58:D1:DA:86:82:41:21:E2:09:1E:70:96:07:9B:C7:6D:35:47:66
X509v3 Authority Key Identifier:
keyid:65:51:6D:DC:73:31:E2:E2:69:DC:57:D9:C7:63:2F:25:DE:7D:0C:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVFt3HMx4uJp3FfZx2MvJd59DG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/3ljR2oaCQSHiCR5wlgebx201R2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/8def12-897e-4e22-aa8b-834b9c10bf48/1/ZVFt3HMx4uJp3FfZx2MvJd59DG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.7.212.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:cb:d9:5f:a0:47:b8:5a:fa:40:35:0c:ce:ff:e2:fb:e8:05:
05:b6:c3:37:ba:7d:0f:a8:68:79:27:ae:78:ea:21:d1:1d:62:
fa:57:1d:47:b7:51:69:85:8f:73:de:9d:c9:28:29:ed:8a:4c:
6a:85:46:6d:52:cd:35:1b:61:e7:c6:73:c1:90:a9:e7:10:e2:
3f:a8:ab:b5:11:a9:ee:b6:af:4a:57:b0:c4:65:03:a5:be:b2:
d8:98:e1:87:e3:fb:56:3c:7f:83:2b:69:93:36:e8:ce:80:d0:
9b:20:cd:24:e0:75:12:c6:93:fe:6b:80:83:8f:e6:f0:18:44:
1e:c8:12:15:3a:93:d8:c7:32:98:ed:98:19:73:33:8f:a4:07:
8e:ec:3f:45:7f:e6:79:a3:e7:90:a7:0a:15:fc:66:33:c1:f1:
a5:3d:9c:37:cb:4c:a2:cc:d9:84:5f:46:17:14:68:41:36:fc:
94:16:ea:f7:02:51:7d:68:a9:57:6a:ae:05:47:47:c2:b2:62:
a9:f2:00:19:31:fd:fa:f3:1f:2c:d2:d9:5c:38:7e:0b:88:25:
9f:30:34:6c:69:bb:e4:da:cc:ec:a4:83:3b:5e:9c:72:df:09:
26:12:cd:90:3f:e6:4c:e0:58:33:2d:e9:08:e4:5b:02:ac:91:
41:94:85:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:06 2024 by rpki-client on console.sobornost.net