Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0cfa6-c446-4886-96ed-d226a3b1f42d/1/L_yKL1gJDh2BJvM0lnVfar2q3rE.roa
File: L_yKL1gJDh2BJvM0lnVfar2q3rE.roa (raw, json)
Hash identifier: H6ZS4nBKuJQwkIylgvW5U7rOJP8IZ9qtnQMBfhUbD+k=
Subject key identifier: 2F:FC:8A:2F:58:09:0E:1D:81:26:F3:34:96:75:5F:6A:BD:AA:DE:B1
Certificate issuer: /CN=cc4dc308fe6d86121026f9744add40e1173543de
Certificate serial: 01856B49F320232FB2ADFCDB4A1E59A9BA5F
Authority key identifier: CC:4D:C3:08:FE:6D:86:12:10:26:F9:74:4A:DD:40:E1:17:35:43:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE3DCP5thhIQJvl0St1A4Rc1Q94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0cfa6-c446-4886-96ed-d226a3b1f42d/1/L_yKL1gJDh2BJvM0lnVfar2q3rE.roa
Signing time: Sun 01 Jan 2023 03:04:46 +0000
ROA not before: Sun 01 Jan 2023 03:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51555
IP address blocks: 194.213.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:49:f3:20:23:2f:b2:ad:fc:db:4a:1e:59:a9:ba:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc4dc308fe6d86121026f9744add40e1173543de
Validity
Not Before: Jan 1 03:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ffc8a2f58090e1d8126f33496755f6abdaadeb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e8:61:9f:90:2b:6e:f7:ad:bf:f3:7f:6f:2f:
1e:4f:55:27:e0:25:10:91:b1:56:d1:c5:45:57:3a:
e8:a3:44:f0:40:f9:9d:2a:f4:5a:cd:c5:a4:30:ad:
99:2d:42:bb:c8:2e:89:b5:20:96:a8:0b:89:54:1c:
12:f2:7b:1d:77:66:b3:f1:4e:22:5a:75:68:3b:f2:
ab:ed:b6:33:c2:eb:6c:7d:fc:27:3a:bf:cb:07:e0:
c9:be:4b:37:51:24:9a:03:34:a0:0f:11:d0:8f:48:
a2:2e:f3:6b:52:d7:3c:c3:11:0f:d7:7f:55:23:76:
f5:66:9b:6d:db:9a:80:0e:e2:3a:d4:18:72:21:c2:
3d:ea:0c:2a:90:07:37:dd:42:73:91:48:6b:8e:3c:
2a:8d:c8:39:dc:4b:0f:d6:69:ed:fa:8f:24:51:87:
07:0d:da:68:ee:13:af:c6:ec:91:3f:b8:8e:86:01:
18:64:50:a0:5d:e5:ae:5e:d7:aa:0d:92:f8:2d:e2:
87:6b:b5:e9:b1:48:e9:e2:95:86:e1:f6:52:85:84:
1b:ff:61:31:9f:9f:4a:79:e8:03:e9:0e:a6:75:12:
63:27:55:c2:fc:66:c2:c0:94:05:40:79:d2:94:82:
01:41:64:6e:0d:f0:1b:7a:3a:14:c0:02:e4:55:58:
d2:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FC:8A:2F:58:09:0E:1D:81:26:F3:34:96:75:5F:6A:BD:AA:DE:B1
X509v3 Authority Key Identifier:
keyid:CC:4D:C3:08:FE:6D:86:12:10:26:F9:74:4A:DD:40:E1:17:35:43:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE3DCP5thhIQJvl0St1A4Rc1Q94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0cfa6-c446-4886-96ed-d226a3b1f42d/1/L_yKL1gJDh2BJvM0lnVfar2q3rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0cfa6-c446-4886-96ed-d226a3b1f42d/1/zE3DCP5thhIQJvl0St1A4Rc1Q94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.19.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:9d:25:6e:45:d3:31:26:72:c9:e1:1c:0c:0a:35:32:f0:29:
e5:e5:6e:75:6e:d7:0f:69:b2:77:a0:ef:4a:e4:c6:83:2f:67:
93:78:c2:9d:b9:44:5a:c0:98:65:38:5e:3f:b8:b9:a6:f9:24:
aa:f0:43:29:28:4e:83:47:2f:de:44:37:1b:f6:0b:02:2a:f2:
fe:e3:c0:93:a9:35:df:36:c6:3d:9c:4b:77:74:4e:45:b0:d6:
fd:ef:2b:ba:cf:83:54:40:81:cc:7a:1e:7b:f8:0c:55:2a:f1:
86:e1:b2:7b:09:80:38:97:9c:70:5b:94:fa:f2:56:73:d1:32:
95:1c:2a:ce:d1:a4:e5:64:d4:0d:bf:2c:61:1b:37:88:19:ea:
b4:13:b4:25:8c:d8:0d:4c:24:79:06:dc:81:98:d4:a2:86:87:
99:4e:6c:6b:32:30:41:fc:23:be:1e:eb:19:36:cc:ed:de:52:
a2:a9:f1:ce:66:e3:53:16:8d:d7:ea:f2:4f:70:2d:12:1b:20:
74:c1:84:29:55:48:f1:ef:c2:d1:0a:90:ea:25:d2:03:6d:74:
6c:7a:6d:9d:11:af:42:4b:ec:83:1f:b0:81:00:59:46:b3:a6:
3b:89:19:f9:71:39:3b:66:2f:71:b4:d8:33:6d:cb:fa:70:c1:
95:46:d6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:51 2024 by rpki-client on console.sobornost.net