Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/58a19b-70c4-4a0e-b8ab-58c3f418f3fd/1/om8wYqvUvyNLwLkojHIPn7-MC2c.roa
File: om8wYqvUvyNLwLkojHIPn7-MC2c.roa (raw, json)
Hash identifier: rF57nF/K1DjcCqksH4fq25AvgrH2U2oKKb4eq2DmHZ8=
Subject key identifier: A2:6F:30:62:AB:D4:BF:23:4B:C0:B9:28:8C:72:0F:9F:BF:8C:0B:67
Certificate issuer: /CN=a65f995603663a569430ccc617287e919df144a0
Certificate serial: 01856BA574FB2327DF587C70473CD003798A
Authority key identifier: A6:5F:99:56:03:66:3A:56:94:30:CC:C6:17:28:7E:91:9D:F1:44:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl-ZVgNmOlaUMMzGFyh-kZ3xRKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/58a19b-70c4-4a0e-b8ab-58c3f418f3fd/1/om8wYqvUvyNLwLkojHIPn7-MC2c.roa
Signing time: Sun 01 Jan 2023 04:44:43 +0000
ROA not before: Sun 01 Jan 2023 04:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62269
IP address blocks: 193.56.133.0/24 maxlen: 24
2a11:5b00::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:a5:74:fb:23:27:df:58:7c:70:47:3c:d0:03:79:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65f995603663a569430ccc617287e919df144a0
Validity
Not Before: Jan 1 04:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a26f3062abd4bf234bc0b9288c720f9fbf8c0b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:06:92:cd:30:93:1f:42:f4:59:28:f9:7b:74:
c1:82:fa:6f:83:8e:95:a5:09:d7:31:8d:f4:16:b1:
49:2c:17:cd:65:e6:0b:19:1e:3f:bd:7c:63:14:b7:
e7:e1:2e:8a:f9:f5:e9:03:44:15:8f:37:d9:45:8b:
dd:b2:01:71:1a:63:e2:9a:1e:5b:35:31:88:82:ad:
8d:a5:f6:0b:c6:da:bc:98:13:76:32:ae:1c:5c:b1:
2e:20:2a:2b:15:6b:76:7b:51:a4:19:d0:03:4e:56:
07:67:ea:8f:cd:78:b2:66:a9:3b:a2:de:a6:f1:f6:
e6:02:02:f0:c2:27:79:57:92:0c:15:cf:23:dc:f2:
e4:2d:61:f6:0d:a8:d1:1f:47:ab:d7:9b:e9:32:1c:
c9:e4:b8:bc:87:26:10:a4:75:8f:cf:31:d3:2a:9b:
15:d4:1c:01:12:ef:5f:ea:5b:fd:0a:70:df:8d:90:
9c:9a:06:dd:fa:27:30:36:c4:34:ab:71:a3:77:98:
83:f5:0a:5c:f5:ef:b6:22:8e:67:90:ce:f1:f2:26:
4a:01:ea:8c:67:c9:e6:f5:bf:ed:4e:74:33:d6:0b:
c6:17:47:a3:f5:9b:83:f4:ea:20:67:0c:1c:30:b8:
9e:4e:9a:61:38:31:c8:dd:a1:c8:2b:c4:2f:36:73:
8b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6F:30:62:AB:D4:BF:23:4B:C0:B9:28:8C:72:0F:9F:BF:8C:0B:67
X509v3 Authority Key Identifier:
keyid:A6:5F:99:56:03:66:3A:56:94:30:CC:C6:17:28:7E:91:9D:F1:44:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl-ZVgNmOlaUMMzGFyh-kZ3xRKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/58a19b-70c4-4a0e-b8ab-58c3f418f3fd/1/om8wYqvUvyNLwLkojHIPn7-MC2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/58a19b-70c4-4a0e-b8ab-58c3f418f3fd/1/pl-ZVgNmOlaUMMzGFyh-kZ3xRKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.133.0/24
IPv6:
2a11:5b00::/32
Signature Algorithm: sha256WithRSAEncryption
75:6e:a8:13:1d:05:5a:9b:a8:54:d4:77:87:4c:95:00:2a:91:
42:4c:37:36:30:de:50:17:76:0b:4a:f6:83:1e:d0:4f:b3:15:
4a:e3:1b:02:35:62:0c:1a:bd:d2:f4:dd:44:f5:d0:f2:7c:ef:
48:75:8c:20:0d:b7:35:10:b0:f9:61:09:2a:9a:b1:fc:4a:cf:
18:72:3e:66:de:b1:07:b1:ee:4f:a0:e6:03:19:47:68:5c:0a:
f0:59:e9:10:db:59:d2:bd:a9:bb:b2:bf:6e:69:15:dc:1a:87:
e1:70:e6:45:d8:b0:5c:20:b5:e1:f2:6e:1f:54:f8:ef:39:7a:
a0:83:44:96:6e:99:71:58:36:b8:8b:98:65:4b:b7:51:a6:fb:
4a:39:47:36:10:2e:58:00:00:3c:03:91:1f:a2:fd:2b:08:3f:
7c:99:eb:46:3f:2f:e5:ea:44:50:a1:0e:e6:ea:bb:bf:9d:6e:
eb:c0:29:c1:b1:d2:d6:37:74:6e:ad:87:f1:43:14:bd:bc:b6:
29:34:2a:a0:8c:d3:92:e9:9a:06:09:9b:e5:12:1e:69:21:58:
5b:33:67:45:4d:ce:2f:e8:b7:f1:3e:a4:1c:4f:5e:66:89:4c:
6c:bb:5d:7b:5e:01:26:fb:00:a5:ee:04:93:65:91:06:d5:94:
ae:c2:9e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:51 2024 by rpki-client on console.sobornost.net