Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/XhOTA8fC6D2_6MZ2XarIRKXERzk.roa
File: XhOTA8fC6D2_6MZ2XarIRKXERzk.roa (raw, json)
Hash identifier: qMjDLrjFfClVq+tgcCKdUrW7BqfUwC/3GWYJfS+CDnA=
Subject key identifier: 5E:13:93:03:C7:C2:E8:3D:BF:E8:C6:76:5D:AA:C8:44:A5:C4:47:39
Certificate issuer: /CN=9a5f0d912b5e747ae568d808a04029b4ebc66e47
Certificate serial: 01856BDCA074746594C79AD8DE79F46FF5B3
Authority key identifier: 9A:5F:0D:91:2B:5E:74:7A:E5:68:D8:08:A0:40:29:B4:EB:C6:6E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ml8NkStedHrlaNgIoEAptOvGbkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/XhOTA8fC6D2_6MZ2XarIRKXERzk.roa
Signing time: Sun 01 Jan 2023 05:44:59 +0000
ROA not before: Sun 01 Jan 2023 05:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12637
IP address blocks: 185.228.250.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:a0:74:74:65:94:c7:9a:d8:de:79:f4:6f:f5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a5f0d912b5e747ae568d808a04029b4ebc66e47
Validity
Not Before: Jan 1 05:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e139303c7c2e83dbfe8c6765daac844a5c44739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:19:3c:53:b1:28:85:28:2d:d4:79:bb:d0:f8:
d8:f3:77:54:45:e2:7d:03:41:0b:e7:82:51:f4:3d:
ce:67:15:22:0a:54:55:76:1c:f9:70:be:58:56:b9:
30:a2:25:44:1c:9c:70:90:08:8c:75:26:ad:1e:b7:
07:25:23:74:03:19:b5:85:ec:50:2c:b3:45:bc:39:
0f:2a:f0:d6:64:3a:a9:15:bc:20:21:06:40:56:42:
1d:43:e8:c4:3a:d5:b5:e5:fc:80:44:7d:f5:dc:f4:
f6:f0:be:ee:7d:72:d4:89:99:5a:50:0b:cf:66:bb:
a9:1f:a8:37:6f:ed:87:26:5e:06:d3:5b:97:e5:e7:
b6:42:6c:2e:9a:60:84:4d:cc:55:04:30:4c:20:21:
1f:86:dd:d2:fd:68:16:c8:32:61:ff:b1:a4:55:14:
63:40:21:2d:4e:d3:17:b2:86:44:ef:54:b5:33:0b:
06:c3:24:5e:a5:27:5c:eb:1e:45:1a:01:5d:b9:f9:
8a:eb:ed:37:73:a8:a0:c3:bf:34:b1:0d:7b:3a:e7:
bb:69:2f:75:15:a9:67:cd:c5:14:4f:ef:91:2b:ea:
eb:e0:c6:7b:a8:89:6e:46:b9:25:01:12:f1:95:13:
9e:15:3b:c8:a8:c8:06:b2:cc:60:ab:76:0c:81:1e:
35:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:13:93:03:C7:C2:E8:3D:BF:E8:C6:76:5D:AA:C8:44:A5:C4:47:39
X509v3 Authority Key Identifier:
keyid:9A:5F:0D:91:2B:5E:74:7A:E5:68:D8:08:A0:40:29:B4:EB:C6:6E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ml8NkStedHrlaNgIoEAptOvGbkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/XhOTA8fC6D2_6MZ2XarIRKXERzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c533b2-ae9d-4470-b982-f540439a4ae2/1/ml8NkStedHrlaNgIoEAptOvGbkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.250.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:43:ee:cd:47:18:d9:1b:59:bb:f4:7b:d3:9f:eb:83:d2:f1:
a2:34:27:ba:9c:ae:34:93:6b:39:6d:23:30:9c:c6:96:20:07:
6a:57:40:49:17:91:05:84:73:3d:85:5b:c5:bf:10:18:3b:3e:
7d:21:1c:4d:0b:1b:a1:ac:b7:01:c4:fb:1a:77:f7:7e:0b:c0:
5f:03:02:7a:fd:e2:78:5e:4d:76:4b:97:70:61:72:2a:48:94:
f0:be:d9:98:6a:6e:c5:a9:aa:d6:80:79:5a:f4:56:14:59:9e:
8e:d1:a4:f4:3d:9d:eb:f5:9b:34:05:e8:fb:51:8a:0a:11:f9:
c7:fb:ca:07:b4:42:76:21:cc:93:53:2f:71:9a:bc:c8:3b:fe:
de:25:02:d4:e1:32:cc:6b:fb:60:cd:f4:27:78:df:b2:54:3d:
1f:d9:d4:c2:3a:a3:af:83:77:ff:ff:0c:bc:94:86:9f:55:14:
a0:ae:64:ef:79:16:b9:62:b0:5c:20:9b:b6:a6:6b:f1:d2:85:
0e:d1:6e:fd:03:ea:32:41:16:a6:93:8a:f2:bd:3b:18:4f:99:
df:b0:69:70:63:53:b1:9e:14:c1:60:24:95:85:77:00:fa:12:
2b:c6:9f:a8:ce:5b:d7:02:5e:a7:10:86:19:4d:35:87:d7:f3:
36:b7:bb:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net