Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/k3nkgx1i98jBAIeJnBeZ7Vqne3g.roa
File: k3nkgx1i98jBAIeJnBeZ7Vqne3g.roa (raw, json)
Hash identifier: kiREqJI+Yp3krib9CPhg+r7SwubRYPv9/ir3KOCB6KY=
Subject key identifier: 93:79:E4:83:1D:62:F7:C8:C1:00:87:89:9C:17:99:ED:5A:A7:7B:78
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 0185700B98800ABBEA7E2E29260E773B8E40
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/k3nkgx1i98jBAIeJnBeZ7Vqne3g.roa
Signing time: Mon 02 Jan 2023 01:14:46 +0000
ROA not before: Mon 02 Jan 2023 01:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199263
IP address blocks: 92.118.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:98:80:0a:bb:ea:7e:2e:29:26:0e:77:3b:8e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Jan 2 01:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9379e4831d62f7c8c10087899c1799ed5aa77b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:b2:aa:b5:be:7a:ec:3f:21:67:d2:cc:cd:
19:1d:01:52:7f:d4:9c:16:25:39:da:b6:4c:0b:e8:
7b:37:6f:48:ba:69:b4:64:2d:19:78:80:54:a9:e6:
ba:f8:f4:fe:1c:a8:18:fd:8e:a2:bc:3d:64:ae:4a:
47:ec:b6:6d:1c:70:b9:67:3b:84:00:cb:7e:1b:6e:
39:71:4a:92:56:7e:82:3b:49:d0:36:3b:4b:cd:60:
e7:89:11:9c:82:63:53:61:e8:6a:02:29:a9:dc:38:
22:6c:92:c6:95:cc:95:75:9b:dc:1d:86:8e:52:da:
96:13:8b:16:90:31:03:a0:25:4b:7e:89:33:e9:d9:
c2:8e:ad:ff:69:f6:be:51:a1:f2:c9:58:e0:41:d4:
da:c4:4d:35:14:85:96:a7:bf:78:2e:e5:57:96:57:
e2:2f:a1:6c:b4:bc:36:de:e1:8f:a9:20:6d:3d:3a:
cb:e2:5b:be:08:a9:fd:a0:a2:55:f6:1f:70:c4:94:
89:7e:fd:39:e3:6c:fc:83:9f:90:78:b9:17:55:b1:
99:1e:c6:62:47:31:e0:00:10:34:4d:37:9c:fa:96:
1b:fb:b6:13:6d:1c:f0:42:85:ce:e6:ca:66:2a:11:
f4:bc:91:00:d0:2e:5c:26:66:cb:31:c6:05:08:42:
08:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:79:E4:83:1D:62:F7:C8:C1:00:87:89:9C:17:99:ED:5A:A7:7B:78
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/k3nkgx1i98jBAIeJnBeZ7Vqne3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.227.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:c3:c2:ec:9e:93:b2:8b:70:f6:f0:0f:a9:d7:6f:c8:68:72:
15:81:24:71:34:c3:1a:4c:0d:03:a1:09:be:c8:f4:e4:6a:c6:
58:e3:2a:7f:2a:80:d4:c0:c1:c9:6f:3e:6a:ed:f9:3d:60:97:
f5:f2:8a:20:84:92:a2:4e:90:e3:fd:b2:3a:14:51:dd:d3:86:
4d:32:37:33:bb:83:15:99:c2:4f:3a:41:5d:42:ed:3b:96:5f:
5f:a2:96:1d:e4:fe:1f:ff:85:c9:6a:e4:71:af:b0:47:b4:cb:
56:c9:64:b3:3c:dd:04:be:1d:f2:8c:37:b8:65:3a:ca:62:6d:
60:0e:95:38:1d:a8:f9:c5:52:cd:ea:3c:f7:82:f6:2c:6c:f8:
91:64:d1:6f:7f:3e:df:d9:a7:8b:ac:e4:69:9d:ce:ff:e1:88:
e4:b4:2e:23:74:5f:03:d4:0f:33:e1:c6:81:cb:1a:c4:0e:dc:
7c:f5:b0:ee:ab:6c:65:3b:e4:a1:e9:73:8b:45:c6:6c:89:2d:
e6:cf:e0:ef:a4:ec:40:a3:e9:85:03:47:b5:df:6a:c0:b5:78:
cc:94:5f:9e:37:79:46:9f:e7:ea:1c:99:27:c8:ab:5d:80:b8:
6b:c1:e4:89:03:34:de:14:0b:da:93:3d:fb:96:86:9e:05:b2:
e3:6d:0f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:55 2024 by rpki-client on console.sobornost.net