Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/deolfuN210BEuxam-g_XHDxFRY0.roa
File: deolfuN210BEuxam-g_XHDxFRY0.roa (raw, json)
Hash identifier: Qik5CylAEuzPN01VCVXT8nFOQfWQ2OjTuRHPJG6w+q4=
Subject key identifier: 75:EA:25:7E:E3:76:D7:40:44:BB:16:A6:FA:0F:D7:1C:3C:45:45:8D
Certificate issuer: /CN=e29f4964009c74bb81aed9c67078013dc868ef17
Certificate serial: 01856C413F4E5AC2E50E3A51BC3D08712911
Authority key identifier: E2:9F:49:64:00:9C:74:BB:81:AE:D9:C6:70:78:01:3D:C8:68:EF:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4p9JZACcdLuBrtnGcHgBPcho7xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/deolfuN210BEuxam-g_XHDxFRY0.roa
Signing time: Sun 01 Jan 2023 07:34:53 +0000
ROA not before: Sun 01 Jan 2023 07:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34086
IP address blocks: 193.222.200.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:3f:4e:5a:c2:e5:0e:3a:51:bc:3d:08:71:29:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29f4964009c74bb81aed9c67078013dc868ef17
Validity
Not Before: Jan 1 07:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75ea257ee376d74044bb16a6fa0fd71c3c45458d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ad:4a:99:62:37:b9:90:04:d9:5c:7e:ab:ab:
db:63:7a:87:83:b9:61:85:56:38:af:39:e0:02:1d:
3b:51:de:48:42:c3:2e:0e:2b:3e:dd:b2:a4:21:8d:
86:73:ae:fd:f1:93:e5:1a:55:5c:14:7a:47:74:96:
84:ee:0c:9b:14:cf:16:ae:e5:8f:e3:d3:ea:de:ad:
3e:81:7f:26:3f:d3:00:a7:c8:b6:3c:68:69:7a:76:
1e:fc:50:64:87:0f:ae:44:26:19:6c:e7:ab:13:50:
37:7c:b4:db:9b:81:38:be:04:bf:b7:71:dd:21:a0:
e5:c8:19:1b:82:25:cd:d3:c3:1f:8c:96:80:c4:40:
b8:2d:3f:da:fb:b8:89:40:2a:6a:75:47:da:2f:f5:
dd:a2:e2:22:4e:2e:25:85:ec:c8:92:ca:8d:2e:15:
cd:23:3c:c7:77:00:10:0e:61:7c:25:45:20:ff:4c:
63:c7:08:ab:b9:ef:92:0d:1a:15:20:e4:ed:4a:95:
fc:ac:ad:8e:f2:a7:36:cd:b5:7e:f3:e1:cf:59:a8:
16:fd:99:ae:d3:42:56:e1:12:22:2d:ef:bd:2f:78:
6e:5f:b6:7c:df:85:43:77:54:5b:62:63:3c:8f:b8:
5a:91:75:c4:70:75:ff:e2:4b:d8:67:6b:5e:f3:87:
ad:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EA:25:7E:E3:76:D7:40:44:BB:16:A6:FA:0F:D7:1C:3C:45:45:8D
X509v3 Authority Key Identifier:
keyid:E2:9F:49:64:00:9C:74:BB:81:AE:D9:C6:70:78:01:3D:C8:68:EF:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4p9JZACcdLuBrtnGcHgBPcho7xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/deolfuN210BEuxam-g_XHDxFRY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/4p9JZACcdLuBrtnGcHgBPcho7xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.200.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:81:d1:2d:7f:4f:1d:2d:cb:97:dd:b3:ba:82:cc:a4:bb:18:
0a:31:11:70:4a:77:cf:b5:9f:d7:8a:1a:41:32:d6:fb:be:a4:
65:d1:ac:bc:09:7c:57:80:c1:bf:f4:28:de:d3:55:75:de:05:
79:a5:6f:c5:86:77:2e:0f:54:4a:7a:00:88:7a:21:66:7d:b5:
85:4f:b7:e4:f0:e2:25:c3:b9:8f:d7:0e:46:44:5c:77:68:1b:
5a:c8:d8:36:b3:9f:68:e2:9d:f6:a6:8e:be:85:32:7c:b0:55:
2b:59:0d:e2:05:94:17:e2:f3:ed:17:7b:ef:74:6d:43:d8:3c:
e6:fa:8d:23:0d:2b:e0:85:3b:52:8b:e8:be:c7:44:8f:a8:86:
cb:13:f2:c2:fe:d2:62:86:80:47:c6:37:03:ee:85:5d:b2:97:
37:dd:fa:4c:d7:da:5f:ff:1b:44:c0:6a:ee:39:c8:ef:4f:af:
ca:13:e1:15:59:94:3e:71:7f:cd:13:eb:d7:ee:52:9a:63:25:
2f:6c:60:bd:fc:a3:05:89:00:f0:05:b3:d3:af:92:fb:a2:7b:
14:c2:7a:82:3e:ef:c7:d7:cd:57:fa:f7:d6:b7:0b:f0:4f:e9:
0e:b4:28:e9:29:c9:9a:1a:0e:1a:47:ee:13:03:15:03:40:c9:
ff:ca:09:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:58 2024 by rpki-client on console.sobornost.net