Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/1750bd-47d6-4505-ab05-828197634976/1/nl2i6fjiTB-rHPr8Edg6Bs8H9Tw.roa
File: nl2i6fjiTB-rHPr8Edg6Bs8H9Tw.roa (raw, json)
Hash identifier: 6TeHG541hH5Huc/OkYub+eSj8I/8JIBjdKMaUVyjWYg=
Subject key identifier: 9E:5D:A2:E9:F8:E2:4C:1F:AB:1C:FA:FC:11:D8:3A:06:CF:07:F5:3C
Certificate issuer: /CN=e33807426a7487a0844fdf4d7a52f0fb90bdb7d3
Certificate serial: 01856E01D79C964511327BB2CBA1A0A00C40
Authority key identifier: E3:38:07:42:6A:74:87:A0:84:4F:DF:4D:7A:52:F0:FB:90:BD:B7:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zgHQmp0h6CET99NelLw-5C9t9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/1750bd-47d6-4505-ab05-828197634976/1/nl2i6fjiTB-rHPr8Edg6Bs8H9Tw.roa
Signing time: Sun 01 Jan 2023 15:44:52 +0000
ROA not before: Sun 01 Jan 2023 15:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 193.8.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:d7:9c:96:45:11:32:7b:b2:cb:a1:a0:a0:0c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33807426a7487a0844fdf4d7a52f0fb90bdb7d3
Validity
Not Before: Jan 1 15:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e5da2e9f8e24c1fab1cfafc11d83a06cf07f53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:55:b9:3d:b1:db:c0:0e:f6:2a:15:37:9c:fc:
06:3a:d3:40:2d:61:9b:a2:bd:fb:41:d6:a9:34:54:
27:75:64:7d:42:4b:fe:f4:0b:27:ef:18:af:a2:f1:
6e:df:ac:56:7c:75:93:d9:6f:5f:02:c6:6a:d3:f6:
10:2d:63:87:30:e0:bd:0d:7f:83:34:ca:f4:42:8e:
8f:50:84:4f:d8:ce:a6:91:a7:dc:05:ae:1a:66:72:
0b:dc:d0:ee:39:b7:9b:ad:42:fa:59:e4:83:2c:08:
1a:8e:3f:03:6e:76:af:08:3e:53:99:81:07:5c:65:
c2:d1:21:35:c8:6d:73:10:a2:7d:0f:d5:48:ea:46:
77:19:7b:6e:3e:ef:de:a9:ed:52:cb:c9:33:45:41:
63:3d:06:75:5e:f0:f3:e5:b0:b8:42:5e:9d:3c:b2:
b0:13:f9:38:eb:85:a5:27:88:18:97:b5:73:66:7d:
4b:d5:1a:f5:ca:8a:c9:21:1d:57:9a:83:31:84:9a:
ba:9b:87:62:08:9b:13:ed:d6:bd:c5:f9:d8:d2:32:
80:98:c1:20:2a:66:26:46:b8:b6:f4:da:94:8a:7a:
25:6f:98:25:b9:62:4f:e2:ea:45:21:f0:54:ad:ad:
dd:26:ac:cb:36:28:58:d9:7d:c2:12:ae:86:c2:8f:
96:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:5D:A2:E9:F8:E2:4C:1F:AB:1C:FA:FC:11:D8:3A:06:CF:07:F5:3C
X509v3 Authority Key Identifier:
keyid:E3:38:07:42:6A:74:87:A0:84:4F:DF:4D:7A:52:F0:FB:90:BD:B7:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zgHQmp0h6CET99NelLw-5C9t9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/1750bd-47d6-4505-ab05-828197634976/1/nl2i6fjiTB-rHPr8Edg6Bs8H9Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/1750bd-47d6-4505-ab05-828197634976/1/4zgHQmp0h6CET99NelLw-5C9t9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.248.0/24
Signature Algorithm: sha256WithRSAEncryption
24:eb:c5:0f:fc:34:9c:6d:40:c6:36:8b:4e:65:e8:57:ad:73:
be:1a:8b:10:d8:32:fd:13:bc:29:d4:5c:93:a8:3e:36:07:46:
fc:86:4b:c6:ff:2c:c2:a3:28:62:af:71:32:9e:50:52:95:90:
dd:4f:e1:7f:e8:c8:86:f9:78:fe:07:62:ad:63:57:48:c7:e0:
50:7d:19:69:97:cf:da:12:20:ea:32:54:85:2d:35:bd:78:9a:
63:73:09:30:03:ae:dd:29:77:f3:d9:d8:60:8e:0a:1a:25:1d:
b1:12:b6:9a:e2:91:b9:2c:01:5b:f9:f1:9f:fd:bb:a3:78:a5:
f4:5c:62:59:69:6e:f1:6b:8d:36:71:31:a2:e9:dd:14:45:f3:
55:9b:9b:cb:0a:57:0d:aa:11:79:8c:05:f9:ef:8b:57:87:ec:
e6:1d:ed:7a:95:81:56:1b:12:42:4d:5d:35:36:08:5f:ad:6e:
63:b8:71:5f:05:9e:9a:8f:df:60:1f:08:9b:ba:7f:23:50:81:
42:55:73:8e:5b:25:ce:2d:c7:0a:a8:b0:72:92:a3:5d:27:0e:
a1:e8:f6:02:39:28:91:45:fe:3a:26:c1:7b:21:33:0e:e4:46:
b1:63:97:05:e7:c8:39:14:b6:5f:85:d8:b0:75:fc:a8:27:38:
3b:93:3b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:56 2024 by rpki-client on console.sobornost.net