Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/bU-G-IXaE9XomYhImIrBIRW3WJw.roa
File: bU-G-IXaE9XomYhImIrBIRW3WJw.roa (raw, json)
Hash identifier: Gysml1A9+eWZg6BZWyCKKedFgt7QtCAftb8QlE02AIM=
Subject key identifier: 6D:4F:86:F8:85:DA:13:D5:E8:99:88:48:98:8A:C1:21:15:B7:58:9C
Certificate issuer: /CN=ed5902bdfbd74c33ea76453d145e76f6aa857c41
Certificate serial: 0185723A2E39B2A7ED8CAABBDE60184E9B65
Authority key identifier: ED:59:02:BD:FB:D7:4C:33:EA:76:45:3D:14:5E:76:F6:AA:85:7C:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VkCvfvXTDPqdkU9FF529qqFfEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/bU-G-IXaE9XomYhImIrBIRW3WJw.roa
Signing time: Mon 02 Jan 2023 11:24:53 +0000
ROA not before: Mon 02 Jan 2023 11:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47658
IP address blocks: 85.116.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:2e:39:b2:a7:ed:8c:aa:bb:de:60:18:4e:9b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed5902bdfbd74c33ea76453d145e76f6aa857c41
Validity
Not Before: Jan 2 11:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d4f86f885da13d5e8998848988ac12115b7589c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:43:d6:58:1c:7f:ea:8e:36:49:87:68:41:22:
a9:44:f2:64:8f:7f:bf:eb:49:1d:0f:12:b8:d8:90:
0f:5f:73:94:ed:74:0e:6e:49:bf:3a:94:12:7d:fb:
bc:86:70:89:68:b4:18:2b:e3:8c:d7:6e:f0:97:37:
75:31:38:18:48:90:b8:67:c2:ab:ff:49:35:be:ff:
2b:fa:30:47:64:b2:85:a3:9f:7e:f6:ce:8f:d0:09:
20:29:45:17:7d:f2:26:95:c4:9d:20:37:e9:f1:b6:
a8:36:b9:ef:29:5f:9d:64:7a:e6:0d:7c:e1:9c:16:
75:88:49:d9:0b:39:f8:25:c5:c5:1a:a8:85:93:62:
e4:ab:8e:e8:69:3f:03:99:10:78:2d:cf:b1:f7:a5:
b9:c1:53:16:e5:12:36:0a:c6:ea:34:69:11:6d:8a:
ca:38:64:11:80:3d:22:1c:30:06:5e:92:21:65:08:
34:dd:37:b5:f4:7b:00:25:f6:72:f2:99:e6:67:7f:
64:03:bd:4b:2b:9d:d4:2a:87:6b:2e:4d:f0:2c:ef:
1f:96:2d:55:88:f9:f2:e7:b2:b2:29:cb:e2:fd:0c:
d3:45:4b:a6:99:19:79:ad:fc:6c:49:49:7b:5e:47:
80:0c:f2:5e:40:42:d2:2e:d7:e6:e8:aa:25:3f:b0:
c0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4F:86:F8:85:DA:13:D5:E8:99:88:48:98:8A:C1:21:15:B7:58:9C
X509v3 Authority Key Identifier:
keyid:ED:59:02:BD:FB:D7:4C:33:EA:76:45:3D:14:5E:76:F6:AA:85:7C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VkCvfvXTDPqdkU9FF529qqFfEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/bU-G-IXaE9XomYhImIrBIRW3WJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/4301c9-c0ee-4040-a742-50336f5d340e/1/7VkCvfvXTDPqdkU9FF529qqFfEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.40.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a8:fc:97:e8:02:26:aa:cb:ad:89:46:b1:6b:58:e2:8a:bd:
36:40:a2:2f:98:6a:d0:38:f2:e9:81:f2:a7:d6:b8:14:38:5d:
e0:04:bc:5d:9e:9a:bb:bc:90:26:34:c9:f3:4a:8b:10:d8:f8:
ac:6b:40:2a:06:a7:4e:4c:02:67:e4:3a:3f:18:8a:54:44:42:
3f:04:33:41:c8:32:f6:36:ec:14:5a:86:2c:dd:46:d4:a9:a0:
dd:a8:c4:4d:33:3a:08:36:19:23:70:9e:6a:c8:5a:8c:07:3b:
ee:74:bf:b3:66:18:2d:29:5c:8f:2f:9f:a9:66:bb:c4:2c:ba:
a6:cf:8d:c6:f2:fa:45:24:4c:d7:31:1b:f5:69:84:54:67:ea:
8f:cb:51:d1:ed:bc:cf:1d:50:f9:e0:83:02:5e:b3:24:87:d1:
c7:fa:2e:79:42:45:21:d4:a1:82:0c:89:32:31:4c:21:c9:59:
38:e7:8e:b2:50:39:f6:ee:ba:5f:d3:7c:41:4e:66:a3:14:8e:
55:17:c4:33:45:c4:de:03:bf:32:ad:4f:63:16:1c:b9:e0:df:
34:1f:20:01:82:dc:a1:15:15:69:87:b7:c8:1d:c9:4a:e9:ca:
d7:fc:85:d9:95:a0:48:6f:c8:fb:5a:c7:92:37:35:12:67:f3:
15:36:e8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:26 2024 by rpki-client on console.sobornost.net