Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/Q56MvRqji_lkP9smJw5X_WsdOLk.roa
File: Q56MvRqji_lkP9smJw5X_WsdOLk.roa (raw, json)
Hash identifier: DAiu80MNIaEnNjNel7iah+pyQYPLWXpmS0TLVxfQGhM=
Subject key identifier: 43:9E:8C:BD:1A:A3:8B:F9:64:3F:DB:26:27:0E:57:FD:6B:1D:38:B9
Certificate issuer: /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial: 0187565BB0215E6179DA94654D226541E3A8
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/Q56MvRqji_lkP9smJw5X_WsdOLk.roa
Signing time: Thu 06 Apr 2023 11:37:42 +0000
ROA not before: Thu 06 Apr 2023 11:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43766
IP address blocks: 79.170.120.0/22 maxlen: 22
79.170.124.0/22 maxlen: 22
77.232.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:5b:b0:21:5e:61:79:da:94:65:4d:22:65:41:e3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Validity
Not Before: Apr 6 11:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=439e8cbd1aa38bf9643fdb26270e57fd6b1d38b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:72:19:ec:d0:0e:c4:18:46:5a:ca:20:6b:14:
24:0f:c9:2b:7a:78:b3:0a:3f:0a:ab:ad:86:bb:9b:
f1:28:ce:ef:e7:e4:a2:96:91:33:e6:70:a1:e7:f1:
bf:89:0b:f6:98:83:86:6d:7a:74:b3:a7:1c:29:a8:
8a:d4:cb:84:36:24:ba:ca:d1:41:9a:5d:7f:64:57:
ef:ef:6a:fc:9b:5e:f7:54:75:68:95:67:6f:ab:37:
6f:46:6e:df:fa:c2:0e:03:2a:0b:39:43:56:d8:f8:
be:90:5b:b7:89:10:90:e1:18:51:34:e7:8a:06:4b:
f7:45:ba:7b:a6:90:2a:38:61:fa:93:22:ae:a5:bf:
56:4f:15:c1:ec:b8:46:fa:3e:85:fc:04:a5:1e:77:
73:a1:c6:51:64:3f:62:7c:f9:d7:2b:84:84:b3:60:
43:33:c8:6c:17:d3:f1:dc:26:46:e0:d5:a0:35:0f:
40:1a:a0:47:a9:2e:2b:4f:71:a2:15:da:e0:26:c8:
95:f2:e5:e1:5b:b2:58:0f:76:ee:6e:ae:74:d7:82:
0a:49:eb:d2:6d:63:83:98:c8:da:bd:90:3e:a4:1d:
4d:d5:89:cd:60:2c:f2:64:a1:f7:f3:aa:1c:f1:eb:
8d:7b:b3:fa:a3:aa:f0:8d:a9:4a:8a:77:9e:8f:db:
22:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9E:8C:BD:1A:A3:8B:F9:64:3F:DB:26:27:0E:57:FD:6B:1D:38:B9
X509v3 Authority Key Identifier:
keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/Q56MvRqji_lkP9smJw5X_WsdOLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.232.102.0/24
79.170.120.0/21
Signature Algorithm: sha256WithRSAEncryption
52:25:02:8c:c7:ae:7d:d8:8d:bb:92:dd:4c:04:19:52:b8:62:
d9:44:24:9c:06:c2:6a:73:a3:15:b8:a5:8c:f2:c5:a1:5d:d5:
73:38:95:b8:19:c3:f4:e1:82:69:7c:d1:19:b0:86:ae:04:dd:
27:65:97:56:d7:35:9e:da:77:ce:d5:62:b4:ea:1f:fb:e8:b6:
dc:12:9c:a3:5b:40:7b:cc:ce:e8:ec:7a:ef:3f:19:bb:44:49:
ad:da:7b:bc:a3:c4:b7:59:50:31:33:22:46:22:be:52:8e:b2:
56:88:3f:80:6b:fa:7a:9a:73:d2:1e:4f:b5:2b:1b:a8:3f:f5:
11:79:6c:5d:4b:d2:46:1f:20:a4:ef:cf:b3:b5:b8:a2:b5:c5:
82:92:5e:c6:2b:d5:2c:14:03:43:78:39:0f:9e:15:5b:71:b4:
c8:e4:42:c0:9d:b2:b7:d5:e2:96:29:6a:ad:24:4e:f3:12:62:
11:9e:6b:64:06:7a:68:4a:fc:d0:22:66:8b:3e:f1:0a:dc:55:
ce:cf:a8:0a:35:45:fc:55:59:36:cf:e0:8a:ed:37:32:0f:db:
67:ae:28:24:b9:7c:42:14:eb:32:e0:de:9f:0d:12:41:c3:9f:
2c:49:b4:06:cd:df:9f:4c:f9:e5:33:a3:79:dd:c4:d4:9c:74:
d0:62:70:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:23 2023 by rpki-client on console.sobornost.net