Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/e5a629-8f68-432e-9e5a-c419e7129928/1/_Y0mzR7gYJUzrhaUvCCZS1VOMV4.roa
File: _Y0mzR7gYJUzrhaUvCCZS1VOMV4.roa (raw, json)
Hash identifier: +lJDwpvzG6eNI7p89o9PiS73bHtGlfvgwLhkjZNYLuU=
Subject key identifier: FD:8D:26:CD:1E:E0:60:95:33:AE:16:94:BC:20:99:4B:55:4E:31:5E
Certificate issuer: /CN=e758524459f91350bf3a70bddea02bb7f198f627
Certificate serial: 0186F11DCC9C31208F468FAE827DEABF7951
Authority key identifier: E7:58:52:44:59:F9:13:50:BF:3A:70:BD:DE:A0:2B:B7:F1:98:F6:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51hSRFn5E1C_OnC93qArt_GY9ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/e5a629-8f68-432e-9e5a-c419e7129928/1/_Y0mzR7gYJUzrhaUvCCZS1VOMV4.roa
Signing time: Fri 17 Mar 2023 19:48:27 +0000
ROA not before: Fri 17 Mar 2023 19:48:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203039
IP address blocks: 185.153.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f1:1d:cc:9c:31:20:8f:46:8f:ae:82:7d:ea:bf:79:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e758524459f91350bf3a70bddea02bb7f198f627
Validity
Not Before: Mar 17 19:48:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd8d26cd1ee0609533ae1694bc20994b554e315e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fc:62:d7:41:af:1b:b3:f2:c1:a5:e1:04:9e:
c4:0d:b9:df:46:c2:4b:1e:5d:6f:99:9d:3f:6b:65:
f4:a3:17:44:a7:25:89:54:1a:e8:a4:cf:9f:53:55:
72:91:8d:db:6c:7c:90:63:3f:1a:29:24:ea:a7:c4:
75:18:3a:9f:42:3c:71:5a:d3:10:42:73:fd:e3:f7:
ba:91:a3:72:a5:2c:2f:cc:78:70:fe:3f:2e:6d:ef:
2a:ed:ce:19:4a:c8:fd:fc:db:d9:4f:42:c0:f6:ec:
19:92:3d:85:54:34:2a:e7:7f:57:e3:55:2c:5b:f7:
4e:48:82:b8:89:9c:2c:6b:70:21:b7:4d:60:a7:ab:
92:fe:cc:86:da:9e:65:76:4c:49:9a:99:32:4e:ce:
73:c2:f8:04:7b:e0:c4:b4:84:5d:3b:26:93:01:f9:
a5:25:ec:af:65:24:5f:9d:66:ca:9a:3b:42:6b:d6:
d1:09:2e:db:42:a0:13:ac:98:d2:5f:7b:46:4d:bd:
25:b4:08:bb:16:58:5c:8f:d9:83:89:d1:ea:5a:ba:
1b:24:ff:35:92:08:b0:36:9a:3b:ee:0a:47:25:47:
42:5a:6f:b1:e6:f2:fe:78:80:63:ea:23:44:90:f9:
7a:76:45:c2:96:9d:c4:66:a6:5a:3c:e1:61:d0:0f:
1e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8D:26:CD:1E:E0:60:95:33:AE:16:94:BC:20:99:4B:55:4E:31:5E
X509v3 Authority Key Identifier:
keyid:E7:58:52:44:59:F9:13:50:BF:3A:70:BD:DE:A0:2B:B7:F1:98:F6:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51hSRFn5E1C_OnC93qArt_GY9ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e5a629-8f68-432e-9e5a-c419e7129928/1/_Y0mzR7gYJUzrhaUvCCZS1VOMV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e5a629-8f68-432e-9e5a-c419e7129928/1/51hSRFn5E1C_OnC93qArt_GY9ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.52.0/24
Signature Algorithm: sha256WithRSAEncryption
42:34:9b:8f:05:d2:ec:40:da:26:9b:a1:21:17:bd:58:84:b5:
40:e4:89:ed:e2:5d:71:f4:aa:e0:49:b5:0b:27:49:33:11:54:
a8:97:b4:8c:82:0e:b2:13:5e:2c:42:45:28:57:4b:53:14:1a:
dc:37:f4:0f:72:cf:93:8f:10:80:2b:1a:e9:7b:5c:89:44:b6:
26:65:34:24:85:59:e8:b2:a7:9d:24:ba:f6:e3:4a:09:f9:f2:
21:4e:3f:f8:21:78:96:83:24:ea:71:1e:3c:93:97:8d:ef:63:
5e:19:0d:78:49:24:16:4a:0d:7d:7d:e7:4c:39:e2:bd:7b:9c:
15:96:9b:4d:7d:a1:2f:96:e2:88:19:c4:a7:6d:ec:06:af:2d:
f7:9a:8a:36:85:3f:a6:24:16:a9:d5:3c:32:f1:08:3d:2e:9d:
b5:d9:3d:c9:79:5c:73:9a:e9:23:01:d1:ea:53:9e:99:92:09:
11:d7:55:bd:99:d0:f4:2a:0f:1f:00:0a:cc:c2:3b:1e:36:9e:
0e:19:bd:37:64:21:2a:50:7a:7b:5f:7b:1f:2d:8b:3d:bf:ce:
8e:38:c9:5e:83:3b:6f:52:0f:f6:a0:40:ca:cf:c6:73:93:c4:
c6:09:34:3d:ea:59:d4:5c:2d:e2:b0:f0:d1:47:e1:86:76:1b:
0a:2d:49:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:38 2024 by rpki-client on console.sobornost.net