Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/oQlREPqo-rDdGgrRV3U4-bwqn_Y.roa
File: oQlREPqo-rDdGgrRV3U4-bwqn_Y.roa (raw, json)
Hash identifier: 56XYoPyxKIKBhLrknCCM9qCivNU73XTAdANyevkq5GM=
Subject key identifier: A1:09:51:10:FA:A8:FA:B0:DD:1A:0A:D1:57:75:38:F9:BC:2A:9F:F6
Certificate issuer: /CN=1fa795167d2d9fb420941f17287bdf3c5eed8df9
Certificate serial: 018AACD4ED0579E622600C0CED58821D4A62
Authority key identifier: 1F:A7:95:16:7D:2D:9F:B4:20:94:1F:17:28:7B:DF:3C:5E:ED:8D:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6eVFn0tn7QglB8XKHvfPF7tjfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/oQlREPqo-rDdGgrRV3U4-bwqn_Y.roa
Signing time: Tue 19 Sep 2023 09:45:50 +0000
ROA not before: Tue 19 Sep 2023 09:45:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44735
IP address blocks: 185.152.116.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:d4:ed:05:79:e6:22:60:0c:0c:ed:58:82:1d:4a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa795167d2d9fb420941f17287bdf3c5eed8df9
Validity
Not Before: Sep 19 09:45:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1095110faa8fab0dd1a0ad1577538f9bc2a9ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:df:5d:25:97:0e:85:7e:0e:9c:67:0f:ca:35:
59:d6:51:fd:b1:f0:18:38:c6:b0:6a:e3:59:5a:08:
c5:31:c4:e8:bd:ac:26:d1:d9:bc:73:3e:ca:d9:82:
99:6d:be:65:76:7e:d2:67:ec:86:bd:cf:25:bf:1f:
90:8d:f1:c5:96:0c:d8:38:3a:a2:02:7a:c3:be:7c:
05:79:b4:37:f9:33:43:8a:4d:6e:d8:2d:01:34:8e:
da:1d:c7:a9:da:7a:92:99:17:5a:f3:1b:00:17:bd:
20:67:23:3d:96:40:5e:98:4e:22:5a:f1:c1:9c:c7:
be:85:fd:28:32:06:60:f7:e5:bb:e5:cc:af:f9:28:
d5:19:99:2d:4e:16:62:e4:95:4f:24:f9:fc:b4:35:
03:8f:dc:cd:2d:62:6d:ef:28:83:df:4d:b6:e4:f0:
21:58:11:08:f1:31:5f:b5:53:af:bc:fd:c5:34:f3:
5c:54:a3:d7:36:1d:73:11:e9:d4:33:0c:15:7b:c0:
27:f0:12:f0:22:e3:3a:4a:39:84:49:ab:81:37:68:
63:0a:63:3f:f1:a7:09:04:0d:43:cb:47:d6:9a:8a:
d8:a9:6f:e0:40:08:77:59:d2:13:ca:6b:79:29:4f:
de:e0:6d:bc:fe:2d:8e:fc:65:c9:47:d8:70:29:34:
8e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:09:51:10:FA:A8:FA:B0:DD:1A:0A:D1:57:75:38:F9:BC:2A:9F:F6
X509v3 Authority Key Identifier:
keyid:1F:A7:95:16:7D:2D:9F:B4:20:94:1F:17:28:7B:DF:3C:5E:ED:8D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6eVFn0tn7QglB8XKHvfPF7tjfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/oQlREPqo-rDdGgrRV3U4-bwqn_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/83535a-e1bd-4fb7-9f09-7b7e976c8412/1/H6eVFn0tn7QglB8XKHvfPF7tjfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.116.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:42:5c:85:26:52:35:7c:93:83:77:8d:9a:8b:99:07:7d:55:
25:44:f3:fb:d6:56:87:06:0b:1b:e6:df:c3:0e:eb:1c:27:f7:
80:82:b4:56:b6:59:db:4f:1b:ca:a1:0f:09:f5:63:c8:5c:a9:
6b:03:94:0c:8a:00:70:d7:fb:89:48:fb:6b:aa:21:71:92:4e:
ff:b7:99:c5:60:a1:c7:2b:14:2b:97:af:54:77:d1:41:db:47:
8b:bc:91:86:39:52:25:32:9d:87:65:f3:b1:6d:e2:b5:2e:14:
7a:7f:97:c4:26:6c:86:f9:be:ad:2d:fb:03:13:42:91:ca:f5:
d3:8e:5b:8d:60:84:cd:1f:21:3f:1b:99:88:b9:7a:66:2d:cc:
4a:d7:6d:9c:7e:5f:0f:89:d2:7e:ec:65:a0:a9:03:87:ed:80:
b8:da:ef:76:d0:14:db:c4:ba:6d:be:ae:a6:09:9f:ba:3a:8f:
20:cd:8d:da:19:1d:55:7f:46:b5:7e:fe:ff:04:b8:57:2a:5d:
75:86:f0:68:15:bc:79:e6:e4:1c:e6:80:8e:cf:5b:e5:dc:a2:
55:3b:50:28:df:40:99:8f:31:69:89:22:04:ca:be:d6:15:95:
d2:b7:e8:74:33:09:63:13:ce:37:e8:ec:cc:a5:c5:a0:9a:d2:
dd:4a:f2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net