Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/vqAG_1aBU-thMiNUOAwF0Jh2_xY.roa
File: vqAG_1aBU-thMiNUOAwF0Jh2_xY.roa (raw, json)
Hash identifier: XelAWFtIRttTuZpaHxdW7EnshdDX8ZwKG+79VtN60U0=
Subject key identifier: BE:A0:06:FF:56:81:53:EB:61:32:23:54:38:0C:05:D0:98:76:FF:16
Certificate issuer: /CN=699c581aff3d0a90178cfab565a388ccd9bc01ce
Certificate serial: 018571B0C657A7DF1B54E66D0F3BAEE2AFDA
Authority key identifier: 69:9C:58:1A:FF:3D:0A:90:17:8C:FA:B5:65:A3:88:CC:D9:BC:01:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZxYGv89CpAXjPq1ZaOIzNm8Ac4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/vqAG_1aBU-thMiNUOAwF0Jh2_xY.roa
Signing time: Mon 02 Jan 2023 08:54:48 +0000
ROA not before: Mon 02 Jan 2023 08:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208708
IP address blocks: 109.110.192.0/20 maxlen: 20
109.110.208.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:c6:57:a7:df:1b:54:e6:6d:0f:3b:ae:e2:af:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699c581aff3d0a90178cfab565a388ccd9bc01ce
Validity
Not Before: Jan 2 08:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bea006ff568153eb61322354380c05d09876ff16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:89:44:b9:bc:8d:96:5d:de:cd:f8:65:d4:20:
85:07:9d:8c:45:36:45:83:fb:a9:aa:e7:83:13:ca:
79:03:bd:a1:28:82:41:30:fa:91:8d:73:0b:33:43:
17:67:7f:75:35:17:e9:96:59:df:6f:32:ea:ed:08:
aa:aa:6b:74:52:41:0c:8f:2f:6c:f5:67:6c:33:4a:
49:35:3a:49:60:2a:dd:d7:16:c2:5e:72:50:d3:c7:
1e:14:68:5c:54:c9:4f:91:32:c5:da:23:52:cb:6c:
b0:91:ba:14:a8:07:22:26:3c:fb:af:1d:c3:35:b1:
32:38:4e:d7:44:85:8e:a3:45:60:f4:06:e1:41:7d:
a1:80:00:84:00:58:3c:7b:38:2b:7f:b1:28:23:5d:
26:02:b5:6f:05:4b:1e:60:fc:e7:65:27:8f:83:00:
e5:64:ef:20:1f:8d:d7:25:d9:90:ab:35:7b:72:3d:
f6:8f:c3:51:9f:23:63:1b:22:40:d9:27:26:55:49:
e6:d7:61:ca:46:0d:26:6f:ed:48:4a:02:cc:04:f6:
1a:7a:02:6b:f4:94:f6:71:7d:8b:30:c7:3f:f3:92:
1e:f8:7b:01:8b:da:82:c8:9c:67:14:e0:dd:01:8d:
c3:3f:e3:f4:b6:a4:ba:0e:26:87:9d:10:ef:b9:96:
05:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:A0:06:FF:56:81:53:EB:61:32:23:54:38:0C:05:D0:98:76:FF:16
X509v3 Authority Key Identifier:
keyid:69:9C:58:1A:FF:3D:0A:90:17:8C:FA:B5:65:A3:88:CC:D9:BC:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZxYGv89CpAXjPq1ZaOIzNm8Ac4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/vqAG_1aBU-thMiNUOAwF0Jh2_xY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/fb9d5e-a628-4f23-88a5-e5ddd2bb51c5/1/aZxYGv89CpAXjPq1ZaOIzNm8Ac4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.192.0/19
Signature Algorithm: sha256WithRSAEncryption
1f:fe:9a:53:4c:05:c3:f4:a8:09:9f:05:ec:0a:c9:34:3c:03:
57:dc:c3:a2:20:e0:1a:6b:12:46:36:90:84:67:61:f0:67:c6:
63:db:70:e9:93:ec:8e:90:4e:07:b7:59:0b:f4:a2:b7:20:4c:
f6:9d:20:b4:54:81:62:db:21:2c:1e:30:c0:0a:74:53:f2:ba:
ec:17:83:46:26:af:9c:01:d1:a2:0b:d9:c4:6a:d3:d3:ef:cd:
cb:41:f7:b6:14:66:85:b9:3a:02:01:52:cd:1b:8d:44:87:cb:
5c:d5:b6:d1:6d:ee:7a:88:dd:a4:7f:85:ce:63:e2:5c:e8:3b:
2f:ea:80:59:7d:36:df:91:d7:1b:ca:a4:92:42:65:fa:a9:a3:
d9:5b:0e:ce:0e:30:12:9d:99:f9:08:38:fd:8a:68:ca:d3:c9:
51:27:91:fb:59:92:a1:81:2d:d4:84:df:6e:61:ad:64:ab:fe:
da:24:cd:ce:e5:49:f1:87:dc:fc:78:99:98:51:47:a1:f0:77:
96:a1:30:6e:d5:0a:f4:dc:ae:d4:7e:fb:f1:40:4b:d1:9b:25:
28:c4:ed:d1:38:80:ae:e5:f0:5b:9a:ca:78:d9:12:55:ca:19:
4f:7e:9b:0a:22:98:f8:39:17:8f:b8:96:a4:49:30:99:b3:b5:
37:b7:df:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:37:14 2024 by rpki-client on console.sobornost.net