Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/wydjGVWG3gOSb_zVe9U7u_lXTNc.roa
File: wydjGVWG3gOSb_zVe9U7u_lXTNc.roa (raw, json)
Hash identifier: FDyAwYTjBlCnUwrUPSDIxd9hALa0Y6Nyo/7eN0MRlX4=
Subject key identifier: C3:27:63:19:55:86:DE:03:92:6F:FC:D5:7B:D5:3B:BB:F9:57:4C:D7
Certificate issuer: /CN=44af4b76312680e9d40a23b3ca2f19abf2f6c73b
Certificate serial: 01875AA2A81FF5525D9F30E131CF7667F298
Authority key identifier: 44:AF:4B:76:31:26:80:E9:D4:0A:23:B3:CA:2F:19:AB:F2:F6:C7:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RK9LdjEmgOnUCiOzyi8Zq_L2xzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/wydjGVWG3gOSb_zVe9U7u_lXTNc.roa
Signing time: Fri 07 Apr 2023 07:33:42 +0000
ROA not before: Fri 07 Apr 2023 07:33:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 185.70.96.0/22 maxlen: 24
185.70.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5a:a2:a8:1f:f5:52:5d:9f:30:e1:31:cf:76:67:f2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44af4b76312680e9d40a23b3ca2f19abf2f6c73b
Validity
Not Before: Apr 7 07:33:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c32763195586de03926ffcd57bd53bbbf9574cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7c:83:bb:18:24:31:45:3c:3f:d8:c5:5f:b9:
22:92:67:35:71:1e:ae:a6:59:86:da:27:8f:8d:db:
2e:a6:55:42:cc:86:2b:50:42:46:4f:4f:e7:dd:7d:
a1:1d:c6:23:01:45:32:1a:ee:f8:97:3f:d8:af:a4:
09:d0:7d:cb:f3:42:16:41:87:ef:3f:31:24:ee:59:
ad:c6:68:91:20:ac:a8:28:88:4c:d3:06:65:50:e6:
3c:5a:66:8b:dd:d6:3b:55:26:e3:ca:4b:5a:7d:e6:
14:88:e0:85:8d:f3:28:fb:42:12:00:6d:d9:dc:d3:
11:20:a5:7a:07:72:4b:47:0c:1a:00:61:48:a6:1c:
c8:72:fa:a5:af:36:9c:dd:31:e9:90:0f:1f:9d:87:
32:fe:e1:4d:29:19:0f:6b:64:bc:4d:2f:ad:85:ea:
9d:57:de:ab:dd:7f:e4:af:9d:4a:04:4e:d2:bf:15:
91:f2:65:13:55:8a:e6:bd:7c:04:c8:79:6e:9b:00:
e7:95:28:7e:71:96:d8:19:03:4f:ad:3a:7d:1e:2f:
77:85:53:46:f6:db:dd:9a:43:ba:5b:50:fa:59:a7:
ff:3d:c4:27:a9:ac:d3:f0:04:9a:ec:54:be:b6:8b:
cf:eb:75:12:b9:7f:63:87:b2:7c:03:cf:9b:97:0e:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:27:63:19:55:86:DE:03:92:6F:FC:D5:7B:D5:3B:BB:F9:57:4C:D7
X509v3 Authority Key Identifier:
keyid:44:AF:4B:76:31:26:80:E9:D4:0A:23:B3:CA:2F:19:AB:F2:F6:C7:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK9LdjEmgOnUCiOzyi8Zq_L2xzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/wydjGVWG3gOSb_zVe9U7u_lXTNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/685aa1-ef22-48a5-b70a-5ea8f53ab491/1/RK9LdjEmgOnUCiOzyi8Zq_L2xzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.96.0/22
Signature Algorithm: sha256WithRSAEncryption
be:5b:97:c6:77:1a:11:29:49:cc:0b:aa:be:81:38:0b:4e:48:
61:23:93:93:9d:4e:5d:00:51:c6:95:6f:19:eb:51:6f:3d:ea:
5f:4e:d8:3d:c0:ea:2d:3c:5a:2b:57:7b:61:2f:7a:20:47:b4:
bb:6b:9b:41:7c:f8:73:a3:2c:76:31:af:2e:56:bf:82:18:7c:
7e:2b:c8:85:6f:ff:0a:39:b3:63:c7:1b:12:79:90:97:d8:c0:
c8:86:9e:f8:bc:f4:ae:42:c3:95:11:5a:44:21:8a:35:93:a0:
3a:ab:43:eb:64:ac:6c:9e:60:e6:82:53:01:e2:1f:fa:97:04:
ae:a5:f8:76:fb:39:89:bf:ee:36:1f:df:d6:36:bd:97:dc:4b:
da:3a:47:47:b2:70:e1:dc:26:97:07:55:ad:ee:14:bf:d8:27:
fc:c3:a4:d4:25:dc:da:5e:06:eb:25:2b:79:6c:27:2f:b7:aa:
53:a8:5e:7f:2e:0d:23:ef:71:c5:a0:b7:0f:db:db:8b:c7:e9:
d7:f5:a4:75:22:e5:b7:72:e8:b1:d7:8d:34:7f:64:f2:cd:fd:
dc:57:59:a8:76:45:1e:d9:c4:26:d7:ec:be:56:09:5b:10:8e:
de:00:88:29:f7:9b:36:dc:c5:52:c2:08:a0:5f:4c:4f:1c:07:
9c:d1:70:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:24 2023 by rpki-client on console.sobornost.net