Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/zYji0ElSBXYKQzNkaedO3QeKmdU.roa
File: zYji0ElSBXYKQzNkaedO3QeKmdU.roa (raw, json)
Hash identifier: HDCZH39tUc7wdJ/GzvkAsfoadLYbaqXw2sjaiJSKJRE=
Subject key identifier: CD:88:E2:D0:49:52:05:76:0A:43:33:64:69:E7:4E:DD:07:8A:99:D5
Certificate issuer: /CN=7961ad731c4c7525f885c5d3764d4ce0f0e8c98f
Certificate serial: 018626D1CE4B1ACA3B33B5D8081CD72C0E3A
Authority key identifier: 79:61:AD:73:1C:4C:75:25:F8:85:C5:D3:76:4D:4C:E0:F0:E8:C9:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWGtcxxMdSX4hcXTdk1M4PDoyY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/zYji0ElSBXYKQzNkaedO3QeKmdU.roa
Signing time: Mon 06 Feb 2023 13:02:09 +0000
ROA not before: Mon 06 Feb 2023 13:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 178.22.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:d1:ce:4b:1a:ca:3b:33:b5:d8:08:1c:d7:2c:0e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7961ad731c4c7525f885c5d3764d4ce0f0e8c98f
Validity
Not Before: Feb 6 13:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd88e2d0495205760a43336469e74edd078a99d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8a:6d:a5:14:3c:06:38:5a:d5:1f:39:6a:38:
6a:25:65:c1:fc:a9:99:29:0c:3f:a1:7b:da:9f:79:
25:b5:aa:de:49:1b:46:de:49:59:6f:f9:c7:9c:f8:
b3:4d:e9:bd:ee:9a:cf:6e:44:ad:07:09:7f:46:d0:
ce:98:d0:b7:3f:91:79:a8:ed:91:4e:8d:f6:ab:af:
57:b4:39:8e:36:e3:1b:d0:41:ac:27:67:0c:52:7a:
ee:9e:4a:30:09:63:38:75:b6:bf:37:66:d9:89:fd:
b4:15:85:ba:ff:6d:28:6a:97:42:89:6f:44:90:dc:
33:a6:93:4a:0c:18:ed:d2:81:48:f3:76:d0:32:f7:
38:ca:f4:06:84:70:86:28:6a:ff:5d:06:c1:d1:7e:
7c:6c:de:54:8d:35:c2:87:dd:b3:30:0e:7a:bc:24:
55:7d:01:22:ca:fc:4d:9d:10:29:3a:32:cf:89:7f:
96:b1:27:cf:89:04:5a:d5:65:b9:98:72:e6:3c:47:
bd:b9:e7:27:d1:8c:f3:2a:3c:55:20:4f:ed:78:7d:
8b:a8:44:aa:01:3b:6a:3c:f8:d0:39:a6:ac:2b:b1:
b0:31:ab:67:bc:89:11:32:4a:ec:8e:c9:53:28:18:
f2:f1:49:90:cf:72:41:a3:ed:f3:55:30:2a:ca:07:
6e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:88:E2:D0:49:52:05:76:0A:43:33:64:69:E7:4E:DD:07:8A:99:D5
X509v3 Authority Key Identifier:
keyid:79:61:AD:73:1C:4C:75:25:F8:85:C5:D3:76:4D:4C:E0:F0:E8:C9:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWGtcxxMdSX4hcXTdk1M4PDoyY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/zYji0ElSBXYKQzNkaedO3QeKmdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb17ca-d02f-4022-ad06-8aacc1f48108/1/eWGtcxxMdSX4hcXTdk1M4PDoyY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.215.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:74:ae:29:8d:a6:9c:02:c4:c1:08:a5:95:fc:8d:4b:f4:b6:
1f:44:2d:8c:15:19:42:b4:7c:e5:2a:ac:a2:93:03:86:66:33:
72:8f:12:de:fe:19:ec:99:b6:2b:8a:41:65:c1:be:6b:2c:e3:
d1:c2:aa:98:6f:db:65:3d:63:3d:85:8f:ed:94:02:fc:67:8b:
d3:44:4d:da:a4:7c:d0:37:c4:56:d3:e9:0e:53:2c:57:40:94:
85:30:84:ef:d6:2d:65:b2:96:14:5e:54:e1:0d:ea:f0:50:22:
b3:6d:4f:bb:06:7e:99:64:88:f7:fe:59:42:95:62:5b:53:b0:
33:8f:22:e9:19:9b:4b:c4:3a:89:80:31:24:1a:06:48:8f:5c:
22:14:52:75:6a:8e:62:31:01:26:d6:3d:eb:0c:a1:33:21:71:
b4:7f:c1:88:db:6c:a0:85:0d:a0:93:9c:42:7f:45:cd:37:3c:
bf:45:7f:ff:3b:c5:e5:9f:88:1b:ec:f9:e3:58:b0:31:e1:06:
1e:07:d5:e9:f5:9d:3e:1b:fa:3e:df:81:a6:15:5e:74:f7:4f:
77:b8:fc:f2:0e:be:de:87:9b:26:47:c6:b7:e7:5d:4c:cf:11:
9e:01:c6:06:25:de:66:1b:e1:bd:22:4b:99:7a:82:2d:9d:0a:
e0:2d:03:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net