Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/jtxH7RT9GJAULQGbfHUcDIpRfZ8.roa
File: jtxH7RT9GJAULQGbfHUcDIpRfZ8.roa (raw, json)
Hash identifier: oG1cyQWLVKerAsf6uPjBhX3ZbnpXGP2vVyPQIYS8WYQ=
Subject key identifier: 8E:DC:47:ED:14:FD:18:90:14:2D:01:9B:7C:75:1C:0C:8A:51:7D:9F
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315F9677A596A523628A0548AE13F32
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/jtxH7RT9GJAULQGbfHUcDIpRfZ8.roa
Signing time: Mon 02 Jan 2023 15:24:58 +0000
ROA not before: Mon 02 Jan 2023 15:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57912
IP address blocks: 85.14.42.0/23 maxlen: 23
82.119.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f9:67:7a:59:6a:52:36:28:a0:54:8a:e1:3f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8edc47ed14fd1890142d019b7c751c0c8a517d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ee:f7:35:9e:3c:f7:d6:39:74:5f:59:8a:8b:
13:da:c0:6f:ac:c6:72:30:37:3d:5d:58:fd:35:7f:
62:f4:cf:ca:37:42:83:98:27:69:b2:4a:e8:6c:92:
a9:0e:2d:04:e1:4c:8f:0c:01:14:77:d0:60:7c:78:
4d:b8:4d:c0:05:07:e0:65:f4:8d:f8:a7:25:a8:e9:
63:2c:e7:1b:bf:a4:e4:b7:96:c7:cd:2b:b1:49:bd:
8c:47:06:3d:7d:f6:9b:ed:75:13:e3:44:c7:78:80:
ae:05:80:3c:8b:d0:47:5e:a0:ab:2b:c9:8a:22:47:
a5:5f:a2:60:69:7a:bc:09:b3:0f:eb:e8:db:f7:15:
0e:23:ff:d3:e0:33:f0:0e:fe:ac:30:1f:42:57:fb:
e7:c5:2e:73:46:05:53:47:c2:ae:96:3e:1d:42:dd:
6d:60:33:48:ea:ce:00:b3:33:87:47:44:f6:d9:c7:
ae:b5:34:7f:3b:f8:82:a7:7b:5c:98:76:c5:95:bf:
4d:33:e1:c7:d5:31:e3:85:6e:d6:38:c8:ee:eb:ed:
d0:07:bc:f3:e5:88:69:95:da:4f:d8:3d:2f:e5:e1:
db:f2:4c:3d:94:55:1e:57:a6:44:94:9a:42:6e:ec:
a3:7f:6f:11:e0:58:58:1c:33:51:65:0c:8a:08:b4:
2e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:DC:47:ED:14:FD:18:90:14:2D:01:9B:7C:75:1C:0C:8A:51:7D:9F
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/jtxH7RT9GJAULQGbfHUcDIpRfZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.87.0/24
85.14.42.0/23
Signature Algorithm: sha256WithRSAEncryption
88:46:ac:6c:c5:6f:0c:bd:e9:d2:49:37:71:1c:75:04:83:5b:
f3:58:21:6f:9d:b4:8f:e3:a5:d5:14:2d:d9:69:5e:e5:8d:51:
3b:04:1c:fa:8a:42:5d:d1:2c:f9:d3:2f:73:9b:8f:9c:44:9b:
d6:cc:1e:45:45:1c:a4:9b:cd:10:c2:45:8a:3d:06:ee:d9:12:
22:61:69:2d:82:df:3a:89:7c:07:2c:53:a5:bc:5b:78:ff:68:
2a:37:52:ab:9c:eb:ff:76:3d:bc:aa:50:67:18:88:c6:0a:d1:
51:d8:85:78:7d:d0:72:aa:5b:79:e8:76:fd:d0:b4:f7:b4:9c:
b1:fb:99:5e:16:e8:e7:6a:2d:f8:03:04:c6:f4:2b:59:e4:51:
c6:bc:68:f7:29:bd:16:44:a3:4b:a4:3c:99:4b:52:2e:78:34:
9a:21:85:ed:0f:81:bf:98:71:b0:df:1b:51:07:0a:2f:67:19:
05:b0:71:6b:c6:5a:cc:6a:d5:3b:80:20:d6:0e:b4:a3:85:db:
ce:45:4d:79:06:5e:21:c5:fb:d4:f6:c7:88:50:f3:46:63:2f:
f6:95:7f:67:5c:8c:7c:af:d1:f9:35:98:2a:51:ce:34:64:6d:
ec:21:b0:f9:b5:37:27:1e:6b:b9:34:52:7f:63:2b:1f:99:19:
f1:ef:c6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net