Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/c-RndMHTCIX_khGTlM8a4GnKyV0.roa
File: c-RndMHTCIX_khGTlM8a4GnKyV0.roa (raw, json)
Hash identifier: dP81LjZaF9+xYwXJOkNb+60Db1Oa5FL3M8qEvSVPG8c=
Subject key identifier: 73:E4:67:74:C1:D3:08:85:FF:92:11:93:94:CF:1A:E0:69:CA:C9:5D
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 0186A2C38A50312FC050557779139BC56398
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/c-RndMHTCIX_khGTlM8a4GnKyV0.roa
Signing time: Thu 02 Mar 2023 14:39:29 +0000
ROA not before: Thu 02 Mar 2023 14:39:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212846
IP address blocks: 94.124.164.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a2:c3:8a:50:31:2f:c0:50:55:77:79:13:9b:c5:63:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Mar 2 14:39:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73e46774c1d30885ff92119394cf1ae069cac95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:89:75:60:d8:b4:b3:cb:15:56:b5:d7:22:aa:
a1:a7:18:57:0d:bb:d6:13:06:98:0c:2c:5d:6a:0a:
46:72:fb:ba:6c:7c:32:b0:29:9b:ec:78:1c:59:bc:
10:6a:43:57:36:c3:6b:b6:6d:da:fd:4a:8a:56:e8:
ca:fc:b8:58:15:ae:d6:18:35:86:d3:11:2b:d4:65:
5d:99:c8:e1:fc:ae:ef:ea:7b:cb:1f:bf:57:eb:ad:
9a:4b:8a:7e:9a:39:02:22:0b:90:12:07:3a:f7:45:
a4:70:ff:43:64:d6:ef:09:90:19:d6:62:62:c6:b9:
20:20:cc:3b:26:27:17:9b:82:c7:a4:f7:c3:6f:2f:
ec:5c:12:c5:88:09:f1:c0:4d:b0:56:ad:16:b4:1e:
4a:c0:a5:ba:08:26:b4:33:7e:cf:2c:63:b3:f8:b0:
89:82:1e:e5:e3:dc:5a:95:64:fa:87:2d:9c:90:7f:
92:6f:0b:f9:db:16:47:db:8e:65:a1:4f:38:c2:65:
50:23:63:ab:05:60:66:8d:31:14:5a:32:72:51:f8:
2a:ae:a8:42:64:de:c2:0d:ab:5a:bc:1d:9c:59:09:
8a:b7:2c:b7:6e:50:af:45:29:56:71:ad:29:c2:96:
62:4a:8d:23:08:bd:08:8a:b7:98:5e:78:da:eb:58:
c8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E4:67:74:C1:D3:08:85:FF:92:11:93:94:CF:1A:E0:69:CA:C9:5D
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/c-RndMHTCIX_khGTlM8a4GnKyV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.164.0/24
Signature Algorithm: sha256WithRSAEncryption
85:72:37:20:ae:5c:3d:eb:30:f6:52:f4:91:09:e7:e3:d5:e0:
12:08:a3:fd:92:7f:81:4b:e2:9b:15:36:6c:ee:0d:de:54:a6:
be:83:ae:6d:a3:01:0a:5b:e6:11:b6:fc:2d:47:9f:14:1c:17:
4e:10:c3:60:44:08:7f:b4:76:a6:cd:d2:c7:ea:10:2b:56:4e:
ff:b9:d4:46:63:53:f5:f3:fb:46:14:72:20:8d:ac:a5:db:24:
eb:f9:0e:fe:54:39:d1:e6:62:ca:40:93:f4:87:d6:9c:ed:bd:
ff:dd:c0:d2:6a:0d:26:d4:6a:c0:d9:0b:7d:38:c1:8f:aa:c1:
f3:54:a5:9f:7c:59:95:9a:4c:df:76:9d:d7:34:11:84:7b:93:
96:84:69:03:d4:9d:7b:a2:d4:5d:9f:1d:1a:b4:58:c8:f2:5a:
1c:ca:a4:27:22:3c:37:72:bb:b6:60:9a:d3:93:ab:86:ef:5e:
c6:c5:9a:64:f6:06:e6:74:b2:47:e9:02:6e:e2:fe:d8:8a:96:
55:eb:c4:55:b5:bf:cf:fe:42:59:6e:5c:8a:29:f9:17:3a:cc:
fe:f2:a2:cc:a0:af:0c:9e:d7:82:cb:86:74:c4:73:13:37:13:
e0:0d:d6:f3:5e:ae:d2:2c:89:8e:5b:fd:c5:8d:c1:08:3e:67:
b2:06:d6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:55 2024 by rpki-client on console.sobornost.net