Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/jTeQ1jMaFofY4Cm358wSe1bHQmY.roa
File: jTeQ1jMaFofY4Cm358wSe1bHQmY.roa (raw, json)
Hash identifier: PGdDlP+j1dDHeJVJXUNbLjYcYXiv4yEyOnRoRIl/nnM=
Subject key identifier: 8D:37:90:D6:33:1A:16:87:D8:E0:29:B7:E7:CC:12:7B:56:C7:42:66
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 0185700B950598A9C7C1B478C36F54130D38
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/jTeQ1jMaFofY4Cm358wSe1bHQmY.roa
Signing time: Mon 02 Jan 2023 01:14:45 +0000
ROA not before: Mon 02 Jan 2023 01:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56465
IP address blocks: 94.124.165.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:95:05:98:a9:c7:c1:b4:78:c3:6f:54:13:0d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Jan 2 01:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d3790d6331a1687d8e029b7e7cc127b56c74266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:61:56:2c:76:b6:49:b6:6a:d8:3d:97:b7:fd:
f0:b9:b4:1e:70:6e:17:bb:c8:c9:22:3c:1c:3f:ce:
17:cc:be:79:f6:17:d1:63:97:58:f6:98:8b:27:88:
16:3d:9e:fb:5c:b8:6f:1c:ad:97:fb:eb:32:bf:00:
71:1a:de:1b:2f:eb:b7:04:c8:78:65:25:54:f7:09:
7b:ac:87:60:ce:f3:77:dd:72:93:5c:a2:f5:b2:84:
26:a1:4b:fa:ba:bc:6f:f3:7c:c3:d2:0f:cc:bf:18:
5e:38:7b:2e:84:78:d1:fb:ef:03:5c:f0:17:f0:79:
87:1f:71:67:3e:6a:c1:7f:62:3a:32:e9:9a:2a:8a:
3e:45:fa:89:df:af:75:5e:b1:e6:b2:71:46:c3:68:
4a:36:bd:91:ab:5f:42:f9:6a:ad:88:54:6c:1c:97:
b9:0f:b8:4a:8d:84:dc:5b:4c:e3:80:41:8c:df:13:
bd:cf:5f:72:8d:e9:b8:e5:b3:e4:e3:50:1a:17:72:
a2:33:db:e8:11:6e:77:ce:43:d2:16:f4:70:90:fb:
de:a0:05:c0:c4:2a:45:75:53:e0:9b:97:10:30:a9:
26:6e:83:6a:6f:51:9b:a3:c9:73:70:31:d6:15:8f:
c8:31:41:ad:f4:5e:76:52:96:02:bd:97:c9:ad:e9:
4a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:37:90:D6:33:1A:16:87:D8:E0:29:B7:E7:CC:12:7B:56:C7:42:66
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/jTeQ1jMaFofY4Cm358wSe1bHQmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.165.0/24
Signature Algorithm: sha256WithRSAEncryption
37:72:b1:76:7a:b9:97:f0:be:79:ad:d8:68:36:1b:f4:97:6a:
c1:39:15:ed:d5:02:52:6b:6a:15:d1:5c:2e:f2:27:88:3d:91:
81:ec:d5:c2:28:eb:e1:57:dd:79:87:2f:5f:f9:63:e5:32:45:
1e:7d:29:1c:6a:87:0a:c6:25:30:d8:e4:50:e2:ac:dc:60:1b:
79:78:32:e9:d0:4d:d1:29:fd:d3:35:8b:fb:01:cb:53:33:9a:
e2:ab:41:9d:f7:9a:0d:2b:22:66:d6:c3:e1:92:ab:36:a3:95:
97:c1:e6:9a:af:8e:3a:ad:68:54:a0:24:06:97:c4:6c:e0:1d:
17:30:03:37:77:cb:42:b3:e2:77:dc:68:c3:00:c4:9e:88:61:
23:e2:98:59:d2:1c:eb:b9:ec:3b:c7:3e:1e:96:23:35:8a:ea:
ad:22:b5:91:4f:ed:b6:33:bc:da:e1:f7:c7:a3:f7:49:31:2c:
3f:01:1f:83:1a:5b:4d:13:f7:17:4b:82:2f:c5:07:15:6c:c0:
81:b6:dd:41:5a:2b:8a:69:bb:b4:aa:03:b4:e6:bd:c0:95:07:
7e:1e:a9:fd:90:29:f5:a0:c0:e7:db:69:75:39:47:19:4e:b9:
ef:1c:3f:33:6a:a7:b5:7b:39:76:b2:27:eb:ce:93:2f:8c:61:
40:38:73:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:55 2024 by rpki-client on console.sobornost.net