Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/hMRl4ky3X4X7yalWRAP-ahmXtFg.roa
File: hMRl4ky3X4X7yalWRAP-ahmXtFg.roa (raw, json)
Hash identifier: r+c2RKb6H2CV200QyejKIutJZKDtdFg1QGXFl55pD4M=
Subject key identifier: 84:C4:65:E2:4C:B7:5F:85:FB:C9:A9:56:44:03:FE:6A:19:97:B4:58
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 0189F42D50213EDBDE15EAE6B7CEB836D506
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/hMRl4ky3X4X7yalWRAP-ahmXtFg.roa
Signing time: Mon 14 Aug 2023 13:12:37 +0000
ROA not before: Mon 14 Aug 2023 13:12:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12703
IP address blocks: 185.94.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:2d:50:21:3e:db:de:15:ea:e6:b7:ce:b8:36:d5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: Aug 14 13:12:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84c465e24cb75f85fbc9a9564403fe6a1997b458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ec:58:33:29:f8:3f:50:75:72:af:e2:35:d9:
62:8c:c6:2a:1d:28:0f:26:08:d1:0a:96:fa:8c:e4:
02:53:ea:e1:9b:03:e5:8e:1b:44:80:48:35:59:32:
7e:1b:8e:b8:a4:c3:a6:bd:56:ce:65:3c:34:f6:0c:
e4:58:56:ea:56:24:98:7e:25:06:03:f0:fa:e0:0a:
a6:f2:f7:11:87:be:f9:ae:63:8a:ef:47:d4:55:55:
39:4d:b9:2d:29:f0:a3:d6:10:a7:e1:13:6a:28:94:
e3:9f:08:8a:70:04:a2:ab:5e:0f:4d:65:67:72:42:
4f:fc:0a:ea:82:54:70:9f:79:13:ac:71:61:06:54:
ed:32:8f:49:a5:ad:bd:ef:8d:72:9c:bf:3b:4a:ee:
d4:ab:e9:2c:8a:28:48:cd:96:77:34:66:d4:24:99:
10:5e:66:50:81:76:c8:5b:f4:05:a7:fc:2f:b5:b5:
2a:a1:9e:3c:5d:8e:58:0d:d8:f4:d9:c3:99:28:3c:
60:81:2e:b3:15:74:ab:4d:00:f0:2c:57:7d:fb:ae:
c0:25:ab:4a:a0:82:d3:88:a8:2e:bc:f2:ee:75:7e:
e3:b8:09:2a:47:4d:bf:1b:a7:26:af:e0:bc:2e:0f:
fe:b8:a2:cd:05:3c:ff:74:85:b7:c5:81:ca:69:4e:
18:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C4:65:E2:4C:B7:5F:85:FB:C9:A9:56:44:03:FE:6A:19:97:B4:58
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/hMRl4ky3X4X7yalWRAP-ahmXtFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.184.0/22
Signature Algorithm: sha256WithRSAEncryption
65:74:fb:87:b0:65:5d:77:3c:84:fb:79:9a:f9:90:36:c8:0c:
e7:8d:3e:2f:3b:03:ee:9d:73:c5:f8:b2:44:99:43:e9:68:37:
d6:e4:3e:5b:9f:d7:a7:17:06:47:1d:ef:cd:be:51:47:9a:c4:
72:0f:20:c2:81:c7:93:b9:13:44:45:0c:e5:31:d0:b4:cf:23:
4c:ac:a7:f3:cd:74:56:d2:79:35:3f:7b:6f:e1:ff:30:19:90:
fb:62:5b:02:3e:ef:c6:f7:df:01:ff:db:6f:44:f9:42:96:1e:
2e:72:79:47:3c:b0:4b:b0:25:ad:18:ee:00:9a:f4:34:37:56:
6b:aa:49:2c:e1:51:f8:73:3f:02:28:a6:14:d9:58:ea:5f:33:
52:84:55:05:26:19:b9:1f:f4:9a:f3:ce:a2:56:fe:c6:32:54:
0b:00:c4:6d:bd:2b:86:7c:59:dd:2f:25:38:74:ff:ab:75:48:
4f:7d:b5:44:ad:d2:57:f2:12:0e:d4:48:71:ef:a3:aa:55:ee:
1a:41:40:98:2f:8d:44:ae:7a:91:0c:a2:4a:36:7f:8e:67:fe:
9d:23:37:7f:22:85:32:99:3f:7b:f9:d1:84:f1:31:8b:a3:17:
aa:5e:ca:27:31:20:3f:cc:2c:e4:b1:ff:30:33:f2:17:8e:24:
a2:03:f3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:07 2024 by rpki-client on console.sobornost.net