Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/k1NsYdB5HQ9b28aGBYSuK7D1Chw.roa
File: k1NsYdB5HQ9b28aGBYSuK7D1Chw.roa (raw, json)
Hash identifier: 1HPpOBfYrI5IfEKxzOB2wXXT9a+WulsQM2/cSOLEzYs=
Subject key identifier: 93:53:6C:61:D0:79:1D:0F:5B:DB:C6:86:05:84:AE:2B:B0:F5:0A:1C
Certificate issuer: /CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Certificate serial: 01856E6FD0B191D64CF099862D0CAF2EAEC6
Authority key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/k1NsYdB5HQ9b28aGBYSuK7D1Chw.roa
Signing time: Sun 01 Jan 2023 17:44:59 +0000
ROA not before: Sun 01 Jan 2023 17:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48967
IP address blocks: 195.93.197.0/24 maxlen: 24
95.130.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:d0:b1:91:d6:4c:f0:99:86:2d:0c:af:2e:ae:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Validity
Not Before: Jan 1 17:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93536c61d0791d0f5bdbc6860584ae2bb0f50a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b9:7a:d4:9d:01:ff:c7:a8:9b:0c:c7:3b:b4:
41:26:a4:3b:4e:69:eb:96:89:f2:a5:99:d2:89:54:
05:7c:12:49:c7:e6:46:94:7e:76:1a:89:69:c8:58:
21:75:c2:49:f1:a3:8c:5f:5f:6e:03:c5:59:65:cd:
e2:29:af:b8:f5:04:e2:9c:81:72:56:fb:94:95:e9:
0c:dc:4e:67:c5:f7:de:97:66:15:67:92:d1:b9:a8:
1c:6f:ea:67:8e:a1:4a:74:94:15:4e:f4:3b:0e:e5:
b5:22:00:52:c2:5e:40:40:61:cf:9a:5e:04:2f:90:
ca:d0:9f:37:53:08:9d:b1:ae:78:73:02:e4:81:d1:
f7:85:ca:16:07:d6:cb:e6:23:f1:c8:c5:7f:f8:50:
72:32:88:37:96:09:a5:b5:d1:f7:5f:80:3e:57:67:
ad:7a:40:cf:37:7d:05:c0:16:dc:d7:a3:61:4c:cf:
5a:31:59:9a:12:64:ca:2e:87:9d:9f:0f:e0:08:b6:
90:a8:5d:d8:b3:f8:c9:7e:18:15:f4:cc:da:7c:3d:
bd:b9:c3:7f:7a:43:1c:98:4d:e6:76:18:8b:6d:33:
98:5f:5a:23:3c:91:e7:8a:28:48:ef:6b:44:7c:2e:
05:31:f9:2c:51:21:b3:55:f0:9f:cf:c4:9f:6e:ad:
2d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:53:6C:61:D0:79:1D:0F:5B:DB:C6:86:05:84:AE:2B:B0:F5:0A:1C
X509v3 Authority Key Identifier:
keyid:B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/k1NsYdB5HQ9b28aGBYSuK7D1Chw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.110.0/24
195.93.197.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:4e:81:ea:0a:54:3c:f0:7e:93:45:82:a1:b8:96:1d:4c:f1:
fb:b0:51:8d:f7:4a:26:fb:d8:c0:14:93:bc:33:76:67:fa:52:
7e:ee:c8:a6:35:b4:98:b3:30:41:80:8c:8c:60:a4:0c:27:f5:
69:23:92:fc:39:1c:ef:b9:df:c7:b6:6a:11:5e:aa:34:3b:84:
e5:69:7e:e6:15:db:ed:66:51:9d:aa:1b:b9:34:ed:51:7c:9a:
67:bb:04:58:10:c1:02:e1:34:2c:c4:bb:bd:d4:09:e6:e5:fc:
9d:e0:13:cb:09:24:ca:1b:e7:47:89:d7:31:9c:7c:50:c0:ac:
e5:54:ad:34:bf:7b:39:88:52:5b:bd:46:a7:8a:29:09:95:a0:
5b:87:d8:e9:1b:d9:8e:ba:90:0b:2e:8d:88:85:1d:7d:a1:2d:
0c:fe:4f:96:ce:03:56:c8:ce:36:1b:57:9f:e1:5e:8b:29:3f:
3b:e6:2c:e0:58:d2:de:27:e5:d7:99:c2:82:54:ca:48:21:99:
62:ac:14:bc:ca:50:3e:27:d3:ad:84:57:d2:c8:e8:39:87:63:
0f:a4:f8:fe:ae:e3:a4:98:74:4d:1c:02:38:48:8d:ac:67:42:
7d:a4:9a:40:a0:0b:c1:e1:de:42:11:e9:47:52:6c:73:0e:30:
a6:a1:20:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:56 2024 by rpki-client on console.sobornost.net