Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/xvHQKdM11SxqfdoXTgOJVVZ2QbE.roa
File: xvHQKdM11SxqfdoXTgOJVVZ2QbE.roa (raw, json)
Hash identifier: 642TKUgzfU/aH/zfjt11nPmwJ2YKwjgqFm7GILgoCQs=
Subject key identifier: C6:F1:D0:29:D3:35:D5:2C:6A:7D:DA:17:4E:03:89:55:56:76:41:B1
Certificate issuer: /CN=1d0c7e7bb27c533a997d277cadd417ec7bd284f0
Certificate serial: 018BCD8B8E77967F495456724FA527A0BC07
Authority key identifier: 1D:0C:7E:7B:B2:7C:53:3A:99:7D:27:7C:AD:D4:17:EC:7B:D2:84:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQx-e7J8UzqZfSd8rdQX7HvShPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/xvHQKdM11SxqfdoXTgOJVVZ2QbE.roa
Signing time: Tue 14 Nov 2023 11:15:57 +0000
ROA not before: Tue 14 Nov 2023 11:15:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203324
IP address blocks: 185.238.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:8b:8e:77:96:7f:49:54:56:72:4f:a5:27:a0:bc:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c7e7bb27c533a997d277cadd417ec7bd284f0
Validity
Not Before: Nov 14 11:15:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6f1d029d335d52c6a7dda174e038955567641b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ef:a2:89:49:c1:7d:77:71:8a:cf:ed:7f:5d:
82:d1:21:61:13:9e:ac:30:d0:f3:3b:ef:03:30:52:
dd:83:9a:59:ed:4a:40:65:27:7d:18:e1:89:38:3b:
bd:77:6d:3e:72:21:7c:c9:c1:4b:c6:76:35:6e:db:
2a:1a:a7:db:26:57:fc:49:cd:b8:c9:4d:eb:e6:87:
dd:d5:2c:33:cd:7e:74:cd:d9:22:1f:79:eb:94:2d:
3e:b4:60:cb:a6:78:82:23:e3:5c:e8:1f:4c:41:1e:
28:da:aa:22:51:ed:32:d5:63:1e:a7:6c:9f:7e:47:
0a:f0:f8:6e:5b:9d:86:6d:e2:69:87:35:09:53:09:
79:3f:43:7d:0d:82:a7:89:b8:3d:6d:e8:e8:5e:b9:
35:65:2f:6e:73:23:a5:b0:71:ea:00:48:d5:1e:29:
e0:3b:9a:85:9c:05:0c:5c:b4:13:32:a4:b2:a3:cf:
a7:80:0f:4d:2a:e9:95:b9:7b:ee:4e:a4:d1:34:5e:
50:a2:b4:fd:c3:b9:c6:6b:38:1e:7a:6c:c5:2f:68:
df:cc:40:81:21:1b:87:67:29:ae:a7:17:0f:21:2f:
3a:94:24:f5:37:23:43:a0:e2:79:00:34:cc:10:41:
57:90:8e:a9:34:81:ed:5b:d0:d3:ec:18:68:a9:3e:
ae:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F1:D0:29:D3:35:D5:2C:6A:7D:DA:17:4E:03:89:55:56:76:41:B1
X509v3 Authority Key Identifier:
keyid:1D:0C:7E:7B:B2:7C:53:3A:99:7D:27:7C:AD:D4:17:EC:7B:D2:84:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQx-e7J8UzqZfSd8rdQX7HvShPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/xvHQKdM11SxqfdoXTgOJVVZ2QbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/HQx-e7J8UzqZfSd8rdQX7HvShPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.86.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b5:61:46:72:c8:88:4a:52:21:79:42:e6:45:06:93:1f:90:
f2:1b:2b:bd:30:81:5a:f3:85:24:d5:13:29:2a:a3:00:f8:74:
3b:5a:d5:f0:44:1d:78:c4:1a:38:6c:5c:dd:8c:1d:9e:5a:68:
11:13:bc:d7:01:cf:48:a4:c1:47:3a:49:45:44:52:57:10:51:
0c:46:e0:7a:26:ad:6b:ff:16:86:f7:0b:5c:e7:97:10:7e:ae:
7f:87:d6:a6:9a:35:32:a7:af:ff:1a:a3:b5:ef:71:50:49:ea:
ec:dc:39:c1:e5:a7:cd:1f:44:fa:35:5c:73:ba:63:f9:3f:dc:
be:fe:13:5f:fc:f8:21:e4:42:6f:e4:b2:74:9e:df:ca:16:7c:
65:aa:79:e8:f4:27:5f:51:db:fa:9d:50:4d:78:ce:bd:1b:c3:
80:ba:0a:09:9e:9f:85:5c:3e:89:0f:65:31:4d:ca:2e:67:8e:
be:2c:64:a6:fa:7b:97:6c:1e:64:22:11:78:de:86:c1:98:51:
9b:13:4c:49:41:a0:96:73:4d:86:bc:e1:b0:af:30:db:cd:3c:
d7:47:be:18:61:1a:6b:2b:3a:24:a0:95:ff:dc:cf:5b:4a:c0:
c5:00:a6:b8:ea:45:db:40:32:58:3b:8e:18:d7:a8:33:23:99:
e3:f2:68:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:19 2023 by rpki-client on console.sobornost.net