Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/mJoTaVmRBAFz33E7FZpgWhvPUj0.roa
File: mJoTaVmRBAFz33E7FZpgWhvPUj0.roa (raw, json)
Hash identifier: E1/fT5h9dJ6QUpQM0nFeCDYN9M7CgFjP/hfrkJKRZi8=
Subject key identifier: 98:9A:13:69:59:91:04:01:73:DF:71:3B:15:9A:60:5A:1B:CF:52:3D
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018572CC9CD1FFC648822A231498D3FDB256
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/mJoTaVmRBAFz33E7FZpgWhvPUj0.roa
Signing time: Mon 02 Jan 2023 14:04:50 +0000
ROA not before: Mon 02 Jan 2023 14:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210538
IP address blocks: 45.131.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:9c:d1:ff:c6:48:82:2a:23:14:98:d3:fd:b2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 2 14:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=989a13695991040173df713b159a605a1bcf523d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:39:f6:f4:fa:45:7e:18:c6:a2:16:ed:e9:84:
cc:25:82:66:6c:dc:e1:e2:b5:8c:3b:2f:2e:3c:cc:
54:a2:3b:0e:94:32:37:f8:ca:89:1a:fb:29:a2:22:
1e:20:7d:6c:a9:29:2e:42:2c:37:14:49:04:0a:cd:
58:33:d2:ed:69:0e:22:4c:7e:43:df:39:12:54:e3:
5c:9d:6f:2c:b9:c7:44:0c:32:bc:71:e8:ed:7a:e5:
d8:26:f1:4a:1b:0b:6e:75:6b:9c:88:1a:df:83:f8:
47:b0:b2:24:b7:be:59:21:70:dc:95:80:74:bb:5f:
ff:91:f3:35:b4:a9:71:04:fa:a7:d4:57:15:37:e0:
21:ce:c1:ce:c5:c4:b2:8e:e1:f7:00:08:f3:82:a2:
5f:71:85:80:82:54:66:23:35:36:a6:e3:3e:0b:c4:
e7:ec:27:77:1f:1e:03:3f:c8:ea:11:7f:2e:7c:a8:
7c:6b:e0:8b:b9:d7:bc:e6:a6:07:dc:af:76:7e:96:
3c:b1:09:a5:65:f3:ac:82:c7:c2:3e:53:d9:5f:48:
40:22:7d:f3:6d:13:72:8e:eb:ee:df:8c:c9:41:35:
b8:74:0f:42:56:95:93:a1:55:51:06:2e:9f:c6:de:
19:a1:8b:05:8c:70:47:dd:7e:40:a7:65:85:84:07:
98:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:9A:13:69:59:91:04:01:73:DF:71:3B:15:9A:60:5A:1B:CF:52:3D
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/mJoTaVmRBAFz33E7FZpgWhvPUj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:37:07:93:2e:f4:18:ae:31:22:ee:4c:51:b8:c9:26:a4:9b:
73:2b:64:6c:44:3e:e7:d5:54:2a:2b:92:4f:16:af:19:03:bf:
28:28:61:c3:09:2a:f8:c3:56:5f:87:10:b9:41:34:5b:37:01:
52:d9:dd:25:43:ba:3b:f0:84:64:d1:b0:89:a2:b3:13:ba:15:
0b:19:4d:33:ff:4e:dd:9b:58:eb:3f:7e:1c:63:f2:ac:e2:73:
74:ae:9e:f9:cf:d3:7f:db:4b:2f:1d:ee:a5:32:31:ef:cd:d6:
cc:7d:65:66:32:35:4a:b5:15:d4:64:cb:a6:b1:e8:4c:12:85:
d1:f8:0d:8c:0a:67:ce:5b:cb:e7:48:7e:d5:3f:7e:f4:d5:26:
10:93:6a:c5:a6:66:94:25:46:2e:83:04:a4:88:6e:70:36:4f:
8e:9f:4a:8d:93:19:0e:5a:b7:b2:15:10:9d:6b:9b:37:6f:09:
28:11:2d:c3:84:a8:e2:fa:fb:40:d4:f8:8e:b5:d9:0e:e5:eb:
d5:11:83:83:2a:11:9f:b2:93:5d:07:ac:e0:f4:d8:0b:ba:3d:
ea:fb:9d:a3:5c:20:4a:2f:6f:3f:71:c2:9a:9a:7a:84:da:8e:
22:c8:b0:e5:7f:a6:15:8c:c7:23:e0:ee:f0:74:12:39:f9:51:
5d:f2:92:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net