Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/Sxq41Qkm9vkh1-abid6-kGcHbF8.roa
File: Sxq41Qkm9vkh1-abid6-kGcHbF8.roa (raw, json)
Hash identifier: vKAIqX4qtGsndl9TWDJGbGFXAUP5HKQHlqIl26QLjgo=
Subject key identifier: 4B:1A:B8:D5:09:26:F6:F9:21:D7:E6:9B:89:DE:BE:90:67:07:6C:5F
Certificate issuer: /CN=33a924ad59b459357a19ee0a47f379530e2d244c
Certificate serial: 018A31BEC13E339611F0D297355E792863DE
Authority key identifier: 33:A9:24:AD:59:B4:59:35:7A:19:EE:0A:47:F3:79:53:0E:2D:24:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M6kkrVm0WTV6Ge4KR_N5Uw4tJEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/Sxq41Qkm9vkh1-abid6-kGcHbF8.roa
Signing time: Sat 26 Aug 2023 12:08:19 +0000
ROA not before: Sat 26 Aug 2023 12:08:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51104
IP address blocks: 185.169.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:be:c1:3e:33:96:11:f0:d2:97:35:5e:79:28:63:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33a924ad59b459357a19ee0a47f379530e2d244c
Validity
Not Before: Aug 26 12:08:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b1ab8d50926f6f921d7e69b89debe9067076c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bc:25:89:f9:51:d0:5f:fb:a7:89:c8:97:a9:
6f:18:86:38:99:04:6c:d9:69:d7:0b:3c:1e:47:fe:
1a:85:be:06:c9:e7:4f:d0:f8:6a:86:32:52:60:1e:
46:4f:8c:ae:f3:20:27:73:08:e1:12:77:73:f8:b6:
e1:8d:48:a2:77:d1:34:3f:64:e5:c1:d9:eb:ac:df:
90:2a:73:c5:e7:f5:79:21:b5:a7:d8:1a:47:eb:6a:
4a:ab:f4:1f:59:76:5c:a8:cd:41:16:42:2f:24:07:
a2:cf:dd:3e:47:80:cb:68:ef:af:52:59:a5:b9:fd:
f4:d8:cd:30:ea:c3:1c:5e:10:ce:4e:50:a7:06:ef:
6d:33:54:15:d9:52:19:f0:38:ce:ae:82:e1:57:e8:
3b:1c:16:7b:a5:42:71:94:07:8e:cc:65:e3:4a:5d:
64:79:d8:3c:58:07:3d:66:87:8c:5b:0a:59:89:84:
f6:78:cc:f8:ad:dc:da:96:81:b0:fa:30:bf:10:78:
99:dd:b7:23:4f:f1:86:21:a9:9b:4f:3e:13:ad:55:
19:a7:b6:ab:40:a5:75:20:2f:17:6b:24:0a:bc:16:
b2:9c:b4:30:89:78:02:ad:af:80:49:a5:7a:84:58:
e5:6e:74:17:47:b1:bb:50:b0:dd:21:e2:02:08:4a:
a0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1A:B8:D5:09:26:F6:F9:21:D7:E6:9B:89:DE:BE:90:67:07:6C:5F
X509v3 Authority Key Identifier:
keyid:33:A9:24:AD:59:B4:59:35:7A:19:EE:0A:47:F3:79:53:0E:2D:24:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M6kkrVm0WTV6Ge4KR_N5Uw4tJEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/Sxq41Qkm9vkh1-abid6-kGcHbF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/M6kkrVm0WTV6Ge4KR_N5Uw4tJEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.7.0/24
Signature Algorithm: sha256WithRSAEncryption
61:22:7a:de:e0:14:3d:30:bb:ae:75:9c:c5:9d:af:bf:d6:0b:
2b:73:2e:ce:83:c3:19:1f:17:b3:a9:bf:88:8a:29:14:f6:4b:
65:e7:2a:d0:33:7f:05:74:23:f7:dd:d7:b9:83:34:79:37:e6:
91:f1:cc:69:ac:c4:5f:17:c7:d5:dc:73:7f:b0:60:6e:ee:3f:
1a:fc:f0:fd:31:e9:41:ab:ad:9e:be:ea:2d:db:d0:3a:0f:33:
bd:c0:76:a5:80:71:f7:e4:8b:f5:f4:ca:36:f2:49:68:5b:9a:
ce:0e:0f:be:d1:c6:05:a5:89:cc:42:0d:02:96:78:98:f8:d7:
7f:f0:66:41:97:d8:25:6f:6c:46:02:1e:2f:eb:62:53:e3:56:
41:39:93:e5:31:94:7e:70:4a:cd:69:40:4c:bf:17:b0:f0:d2:
7a:61:be:97:04:2a:9e:45:47:f8:87:ce:52:0a:23:bf:67:3f:
ca:b5:dc:25:6e:86:1a:28:8d:26:53:00:c3:03:57:f4:83:90:
84:9f:04:dc:16:2a:f7:42:f2:7a:60:38:57:c8:53:31:77:bd:
3d:f6:14:b6:19:4c:10:28:41:d9:17:9e:83:5f:ee:42:a4:72:
4a:e1:4e:e3:65:78:d2:22:58:cb:2a:dc:ec:d3:f1:9e:84:21:
43:b5:bb:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:12 2024 by rpki-client on console.sobornost.net