Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/d55683-fec2-47fd-ac6e-9e82da7315cf/1/jLpJSW-BHE5FkZN_sDwnllGLRo4.roa
File: jLpJSW-BHE5FkZN_sDwnllGLRo4.roa (raw, json)
Hash identifier: aIdKWYy6F24Vo5zWtsR8j62BYpLTExOmzEdCXlK6Y4o=
Subject key identifier: 8C:BA:49:49:6F:81:1C:4E:45:91:93:7F:B0:3C:27:96:51:8B:46:8E
Certificate issuer: /CN=3c1b83888696fc44478c693d6e7803e9516250e6
Certificate serial: 01856D663F8981FE7ABE2DAE76730DD874F5
Authority key identifier: 3C:1B:83:88:86:96:FC:44:47:8C:69:3D:6E:78:03:E9:51:62:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBuDiIaW_ERHjGk9bngD6VFiUOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/d55683-fec2-47fd-ac6e-9e82da7315cf/1/jLpJSW-BHE5FkZN_sDwnllGLRo4.roa
Signing time: Sun 01 Jan 2023 12:54:55 +0000
ROA not before: Sun 01 Jan 2023 12:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39326
IP address blocks: 185.51.172.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:3f:89:81:fe:7a:be:2d:ae:76:73:0d:d8:74:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c1b83888696fc44478c693d6e7803e9516250e6
Validity
Not Before: Jan 1 12:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cba49496f811c4e4591937fb03c2796518b468e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:64:e4:0f:f2:98:92:68:fd:fb:c7:32:10:4b:
a1:9a:b9:72:56:fa:03:ff:df:8f:d8:96:f2:60:fb:
06:ec:87:ee:17:18:c4:cb:f9:4d:36:4c:74:4a:ab:
be:50:c4:65:c6:95:5d:08:6e:60:0f:be:b2:85:50:
9c:a4:25:5d:e9:64:b2:de:36:10:09:2f:25:fa:71:
5a:44:a6:15:f4:59:91:c2:a4:27:4a:c7:7a:8e:3a:
58:08:2a:e3:fd:c1:0a:7b:dd:9d:d7:65:0f:fb:a3:
d7:aa:1d:5f:3c:06:39:87:cf:c3:45:c1:0d:18:d3:
34:e2:3a:32:1c:05:bc:37:60:22:ed:f0:0a:7f:38:
44:cf:6a:05:fe:f9:e2:95:38:77:3c:1b:fb:c7:02:
1b:db:6d:5b:59:30:0a:0c:14:81:f1:ca:a6:5d:b1:
57:dd:79:65:7e:93:67:b6:1e:08:0a:62:4e:c6:50:
be:1e:c4:ff:47:b0:98:ee:18:98:67:d3:6c:aa:8a:
73:01:f8:90:8c:de:45:77:5a:97:30:89:b3:9d:8d:
84:dd:89:7c:a1:0e:35:60:88:ba:10:cb:12:d0:2f:
19:a3:a1:e5:da:e5:30:d5:da:e7:84:3a:ea:17:ea:
c2:96:27:b0:79:d2:11:ba:7f:b4:eb:69:88:b6:e0:
f4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BA:49:49:6F:81:1C:4E:45:91:93:7F:B0:3C:27:96:51:8B:46:8E
X509v3 Authority Key Identifier:
keyid:3C:1B:83:88:86:96:FC:44:47:8C:69:3D:6E:78:03:E9:51:62:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBuDiIaW_ERHjGk9bngD6VFiUOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d55683-fec2-47fd-ac6e-9e82da7315cf/1/jLpJSW-BHE5FkZN_sDwnllGLRo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/d55683-fec2-47fd-ac6e-9e82da7315cf/1/PBuDiIaW_ERHjGk9bngD6VFiUOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.172.0/22
Signature Algorithm: sha256WithRSAEncryption
35:aa:bc:74:16:6f:ce:eb:17:eb:3e:c0:16:4a:e6:65:57:c8:
55:dc:bf:69:17:20:0d:e7:66:88:61:63:47:33:d6:08:1f:53:
78:51:88:16:34:e0:bf:fe:3d:4e:8c:0d:f8:76:39:64:1b:0f:
5b:df:ff:10:c8:1f:78:3b:28:2e:08:e8:7e:d9:79:ff:51:57:
73:b1:3b:7d:ba:2c:1b:04:c2:04:e3:7e:69:e9:b8:c3:96:9b:
b3:d9:af:b0:09:82:ff:a0:f8:af:1a:c4:b3:8a:6a:ce:01:cc:
07:a4:f3:8e:a2:06:61:c2:26:b0:37:94:25:0b:ce:2f:7e:0a:
50:d2:f4:78:d7:7a:09:38:eb:4f:bd:47:53:4c:5c:b8:8b:b5:
be:54:47:58:99:bf:d1:a1:d1:dc:10:dc:f7:02:52:db:ed:a3:
84:13:9e:3a:0e:03:57:58:e2:f2:d4:4c:61:d3:4c:9c:df:4c:
d4:44:70:48:50:5e:4b:89:94:51:fb:d7:f4:20:0f:57:a8:f6:
76:d2:8d:85:10:78:33:d0:9d:ff:a0:b7:ee:8c:57:bd:d1:00:
f3:f2:55:ce:7a:20:80:68:0d:54:26:7d:3e:6c:7d:d1:01:d9:
46:ee:fb:f1:11:87:b4:fe:87:aa:97:c6:9d:df:e5:5a:c7:c1:
33:27:65:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:21 2024 by rpki-client on console.sobornost.net