Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/6iYgSCuM_vuRJRQGLxwOGmdCyGY.roa
File: 6iYgSCuM_vuRJRQGLxwOGmdCyGY.roa (raw, json)
Hash identifier: uRYlpZZ+Ua44VNbsUbGwTlgSm2J3CPkCkI6ttpbxkuQ=
Subject key identifier: EA:26:20:48:2B:8C:FE:FB:91:25:14:06:2F:1C:0E:1A:67:42:C8:66
Certificate issuer: /CN=1fa795167d2d9fb420941f17287bdf3c5eed8df9
Certificate serial: 018AACD402E1F0CC186E0145869513F3A77C
Authority key identifier: 1F:A7:95:16:7D:2D:9F:B4:20:94:1F:17:28:7B:DF:3C:5E:ED:8D:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6eVFn0tn7QglB8XKHvfPF7tjfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/6iYgSCuM_vuRJRQGLxwOGmdCyGY.roa
Signing time: Tue 19 Sep 2023 09:44:50 +0000
ROA not before: Tue 19 Sep 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43571
IP address blocks: 185.152.116.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:d4:02:e1:f0:cc:18:6e:01:45:86:95:13:f3:a7:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa795167d2d9fb420941f17287bdf3c5eed8df9
Validity
Not Before: Sep 19 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea2620482b8cfefb912514062f1c0e1a6742c866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ca:cb:51:e8:61:25:b4:7e:49:42:33:18:f9:
a0:47:88:9d:9d:74:bf:e7:e7:b7:d2:6c:d0:e5:5d:
c2:9e:b3:9f:75:24:e3:30:fe:07:10:70:4b:6d:8c:
d3:cd:b9:60:04:cc:5b:ef:64:a8:5a:92:33:58:e8:
b1:4e:5f:5b:0e:fd:98:ed:92:6e:f3:6d:5e:ea:1f:
43:8f:61:5b:29:95:cf:df:7d:17:bf:ea:1d:54:b3:
f8:08:b1:4e:a6:7e:e1:72:9f:27:26:11:67:8d:f7:
a0:e3:bc:80:92:4e:75:be:e1:df:f6:75:e9:0f:c5:
0b:e2:ec:c8:df:9a:61:66:13:01:33:f9:2f:06:e5:
c0:16:ae:ca:ae:1f:6e:52:47:7b:bf:d0:54:18:43:
5f:8a:55:dc:43:a3:d8:79:24:5c:bb:6f:28:6c:48:
b5:87:11:2f:72:96:8c:93:5e:87:d9:9c:97:20:4c:
d1:2b:2c:bb:75:19:db:9f:d5:ce:7f:37:15:2a:38:
a7:23:ce:3e:ab:ad:2e:c9:a2:4c:81:d2:3d:4f:1b:
b3:9a:5c:bd:94:fe:7e:df:d0:5a:6b:bd:2a:16:1a:
d8:6b:bd:f4:50:fc:52:b8:6e:39:d0:82:65:8a:b3:
79:af:f7:ae:b5:eb:8a:c7:2f:29:e0:bd:08:75:07:
ff:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:26:20:48:2B:8C:FE:FB:91:25:14:06:2F:1C:0E:1A:67:42:C8:66
X509v3 Authority Key Identifier:
keyid:1F:A7:95:16:7D:2D:9F:B4:20:94:1F:17:28:7B:DF:3C:5E:ED:8D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6eVFn0tn7QglB8XKHvfPF7tjfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/6iYgSCuM_vuRJRQGLxwOGmdCyGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/H6eVFn0tn7QglB8XKHvfPF7tjfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.116.0/22
Signature Algorithm: sha256WithRSAEncryption
50:61:70:25:68:f4:4c:2c:85:48:b7:e2:de:8a:ab:e5:df:ca:
36:c4:c7:d8:a0:0a:03:ed:72:b2:80:f7:38:ec:35:5a:de:84:
97:a4:78:e9:7b:3c:fd:aa:a7:f9:82:85:78:a7:ce:ab:62:e3:
69:46:9f:5b:4c:f0:70:98:31:84:d6:f7:31:91:c1:a7:e1:93:
91:2a:41:4d:57:9c:aa:b9:b7:62:6e:82:36:ad:bc:b0:ae:97:
8b:0a:01:9b:06:c5:df:c4:60:c7:db:8b:a0:42:b6:d3:1e:8f:
1f:f9:17:3f:de:ee:ad:ee:95:e9:2c:43:f7:cf:0f:eb:e0:ed:
5e:20:69:bc:b6:cb:59:b1:2c:82:c8:10:91:04:31:fc:55:90:
bd:c2:3f:fd:1d:4e:8d:e4:83:4d:73:dd:15:6d:bc:e9:7c:8b:
aa:73:1a:a7:31:95:03:98:67:52:be:ee:b2:af:87:50:ea:40:
c8:cd:ad:e8:65:c0:0f:85:2b:0a:de:ee:19:ed:28:4d:ef:9c:
7e:08:18:8d:5b:92:14:7d:30:7a:1c:16:9f:b1:4b:87:4c:84:
c1:fa:9c:b7:aa:1a:02:5f:f1:76:ed:dc:ac:ab:1b:b0:c6:13:
a6:6e:65:70:b5:6a:a5:85:fd:f2:9d:ab:7c:02:d0:3d:eb:05:
5b:e8:49:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net