Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/4NeOh2lqCUZyf_LvNmAn37dHh4Q.roa
File: 4NeOh2lqCUZyf_LvNmAn37dHh4Q.roa (raw, json)
Hash identifier: PAPj9rOMtnG7QtZjuqYUgyMS0M8RVOxmbp+dEMjliKU=
Subject key identifier: E0:D7:8E:87:69:6A:09:46:72:7F:F2:EF:36:60:27:DF:B7:47:87:84
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 01886C6259C8DC1712C039C9F3DEAA619FC9
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/4NeOh2lqCUZyf_LvNmAn37dHh4Q.roa
Signing time: Tue 30 May 2023 11:19:24 +0000
ROA not before: Tue 30 May 2023 11:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12548
IP address blocks: 212.68.160.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:62:59:c8:dc:17:12:c0:39:c9:f3:de:aa:61:9f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: May 30 11:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0d78e87696a0946727ff2ef366027dfb7478784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:28:6c:ce:57:d6:7b:7c:a0:0a:5b:b3:a5:
c4:47:98:3e:1d:be:be:b2:71:b1:89:3d:67:a4:d5:
13:c0:35:e3:57:e1:7b:92:75:d4:d3:1b:d8:12:b7:
b8:f2:bd:e7:19:03:be:f8:c9:49:e7:1f:4f:49:88:
2a:8b:ad:8d:76:4e:62:d7:b0:c2:2c:96:34:ec:bf:
01:93:f8:c6:f2:3a:bd:a8:ea:5b:63:3c:42:22:bf:
0f:1c:95:80:8a:1f:69:d3:de:43:2c:82:fb:d7:fc:
72:8c:88:84:29:40:4e:57:7b:6f:01:1e:77:ca:12:
6f:3b:ab:4d:2c:04:40:c5:db:bc:46:39:74:39:d1:
15:e1:6c:03:41:4c:33:88:d8:34:e5:95:63:8a:b3:
95:38:6d:7b:4b:57:24:96:6f:fe:71:25:c3:4c:11:
58:c8:92:a6:d3:36:f9:21:4c:bb:3d:79:91:77:e5:
cb:ee:56:26:28:7d:e0:b4:5d:06:a4:c8:11:3e:2b:
d6:60:b3:2f:ec:21:13:b4:de:c9:74:57:6c:1d:df:
59:a8:c7:3d:cd:d7:71:d7:96:ad:e1:0d:d9:aa:23:
c0:3f:8c:5f:c6:65:b9:ef:01:35:ef:34:54:df:ee:
eb:53:d6:f8:ce:be:e3:82:75:a0:57:44:14:81:bf:
32:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D7:8E:87:69:6A:09:46:72:7F:F2:EF:36:60:27:DF:B7:47:87:84
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/4NeOh2lqCUZyf_LvNmAn37dHh4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.160.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:29:e2:d6:e2:c6:eb:19:fe:88:02:96:f9:b1:51:67:86:7d:
bc:a4:cc:96:a3:1c:45:f9:ed:d2:71:c0:77:f6:57:68:1a:17:
4c:92:f0:ed:51:b3:85:a2:70:1f:da:8d:90:71:2c:7e:1b:94:
b5:8a:bf:8e:fe:ce:84:82:c1:f0:64:cb:ec:75:cb:d9:fa:0e:
f7:45:6a:75:9c:05:f0:31:2b:46:c0:42:ab:58:71:11:c3:e6:
37:17:91:99:67:dc:4c:4f:a5:13:ed:10:45:ab:52:a0:da:0e:
b9:5a:44:7a:bd:14:81:db:7b:3e:8a:12:8d:16:40:78:ed:00:
99:fe:56:49:27:b5:ab:d0:e8:1c:96:a4:c5:f9:62:62:49:67:
5b:fa:57:fc:33:fd:68:df:bc:15:73:8d:7a:9b:3d:8e:89:5c:
ba:ca:c4:3d:d1:76:8e:e0:f1:ce:ad:02:da:bf:98:54:52:8c:
67:21:8c:24:a9:f3:48:3f:2d:80:86:4f:f0:ec:ab:3e:bd:23:
8b:02:53:8d:31:9a:36:ca:3d:11:a7:ad:d4:1f:45:72:9a:f0:
bf:f2:ee:51:49:b3:62:3c:a5:2a:b3:01:01:44:2e:d5:93:b0:
19:20:70:dc:35:18:71:a2:a7:ff:a6:da:c5:c2:ee:33:e6:e0:
8c:21:27:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:58 2024 by rpki-client on console.sobornost.net