Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/YDlhUz0JXyENbmbDXAvkKZPRqqw.roa
File: YDlhUz0JXyENbmbDXAvkKZPRqqw.roa (raw, json)
Hash identifier: e5ZncNrwCw3f6tTGFc85zjYyPn7avloQQA2JyGtVseY=
Subject key identifier: 60:39:61:53:3D:09:5F:21:0D:6E:66:C3:5C:0B:E4:29:93:D1:AA:AC
Certificate issuer: /CN=44af4b76312680e9d40a23b3ca2f19abf2f6c73b
Certificate serial: 0187748509B06C297F8CD97861B5E7A92F88
Authority key identifier: 44:AF:4B:76:31:26:80:E9:D4:0A:23:B3:CA:2F:19:AB:F2:F6:C7:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RK9LdjEmgOnUCiOzyi8Zq_L2xzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/YDlhUz0JXyENbmbDXAvkKZPRqqw.roa
Signing time: Wed 12 Apr 2023 08:11:28 +0000
ROA not before: Wed 12 Apr 2023 08:11:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 185.70.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:85:09:b0:6c:29:7f:8c:d9:78:61:b5:e7:a9:2f:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44af4b76312680e9d40a23b3ca2f19abf2f6c73b
Validity
Not Before: Apr 12 08:11:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=603961533d095f210d6e66c35c0be42993d1aaac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:12:18:d1:83:5f:60:ca:a4:9b:b4:42:f6:
e7:8d:4d:23:c1:67:9e:fd:01:7c:8f:56:cf:bd:db:
d7:31:bb:9c:61:85:2b:9f:61:eb:d9:32:6c:61:2b:
cd:e8:35:b4:82:4c:14:8f:51:7e:15:cf:86:ff:f6:
49:7d:8c:36:c1:21:bb:16:34:11:76:a9:aa:59:74:
22:98:78:2d:54:15:6a:82:c7:09:2d:94:f6:7c:92:
af:77:63:b9:c5:55:29:00:bc:60:54:3e:a5:5c:b9:
dd:e5:ed:c0:24:58:77:fa:fe:f1:16:67:fe:14:1f:
08:89:ee:35:d7:65:da:a7:ce:9d:51:88:16:df:50:
da:71:6b:36:af:2c:ae:13:f5:29:a9:aa:cc:2b:06:
c0:e9:5e:d4:46:cf:c9:9b:f8:f4:a8:7f:ad:91:05:
5f:e1:05:ae:cc:f8:eb:b1:27:60:3e:5e:d6:e3:f3:
51:82:ac:98:c7:12:4a:33:c1:89:25:ac:83:e2:28:
71:d3:5b:e9:7c:b0:85:07:10:f0:3a:52:f1:44:33:
35:cd:1d:4c:b5:a4:11:10:e8:1a:46:b8:7b:df:eb:
04:0f:f0:d2:eb:a5:5e:6f:c8:78:53:c2:d7:10:50:
96:16:10:a7:46:33:5f:b6:71:d6:36:c5:d2:8e:22:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:39:61:53:3D:09:5F:21:0D:6E:66:C3:5C:0B:E4:29:93:D1:AA:AC
X509v3 Authority Key Identifier:
keyid:44:AF:4B:76:31:26:80:E9:D4:0A:23:B3:CA:2F:19:AB:F2:F6:C7:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK9LdjEmgOnUCiOzyi8Zq_L2xzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/YDlhUz0JXyENbmbDXAvkKZPRqqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/RK9LdjEmgOnUCiOzyi8Zq_L2xzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.96.0/24
Signature Algorithm: sha256WithRSAEncryption
93:9c:0f:fd:3f:a0:e5:46:fe:5d:79:30:e2:98:57:ea:53:2b:
9a:67:e2:a7:9a:d8:c7:00:42:81:2c:ff:a4:4b:d2:13:c7:b5:
f5:ee:42:69:d6:86:86:e3:3c:2f:db:52:9e:cf:b6:b7:10:86:
5d:54:27:2f:8c:45:ed:e9:da:98:21:0a:59:2c:1c:6c:05:58:
80:d8:fe:46:d6:42:43:c5:0e:e8:81:2f:45:3c:10:e6:4c:00:
80:d8:5d:16:7b:83:5a:45:85:fe:6c:f4:3c:ca:40:52:5a:60:
a7:41:2c:21:e4:78:02:6e:0b:e0:e7:95:65:85:de:5c:14:ea:
96:70:28:f3:22:0f:a3:5d:4b:9e:81:0e:ca:43:93:fb:41:85:
d3:a6:53:f8:cb:ad:e8:5c:ce:6f:ea:14:4e:b6:4e:4d:4e:f2:
0b:ab:8e:ad:ce:ad:78:b7:00:7d:05:23:51:dd:47:e2:d7:f6:
7c:d3:bd:3c:3f:3c:46:82:39:16:2d:bb:72:6f:7d:4f:f8:d0:
bf:6d:29:02:48:86:cd:68:0f:25:ea:84:8f:bc:47:02:fb:c6:
fc:14:d4:6e:fe:b2:d7:ba:38:a7:fa:1b:2b:e3:fa:44:e5:db:
99:47:b5:03:1e:bb:90:67:70:c4:2f:68:2d:67:7b:20:8f:25:
14:b9:d3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:24 2023 by rpki-client on console.sobornost.net