Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/UkCvv4OGudms8IcTSHuG1r66xN4.roa
File: UkCvv4OGudms8IcTSHuG1r66xN4.roa (raw, json)
Hash identifier: 5EGCBuWFgAq9lxyLRtPuGSLXSeF08xa8tb5839fZRNg=
Subject key identifier: 52:40:AF:BF:83:86:B9:D9:AC:F0:87:13:48:7B:86:D6:BE:BA:C4:DE
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01891A72CB1F9F5B1BF7ED29F0F2DCC9A514
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/UkCvv4OGudms8IcTSHuG1r66xN4.roa
Signing time: Mon 03 Jul 2023 06:31:17 +0000
ROA not before: Mon 03 Jul 2023 06:31:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6834
IP address blocks: 194.143.222.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1a:72:cb:1f:9f:5b:1b:f7:ed:29:f0:f2:dc:c9:a5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Jul 3 06:31:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5240afbf8386b9d9acf08713487b86d6bebac4de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:1e:54:ca:bd:4d:f9:5d:41:3f:df:aa:55:
da:8f:75:11:88:5f:70:f3:e9:cb:f5:6a:cd:83:75:
29:69:8f:a0:0d:fa:61:71:28:b7:5f:f9:a4:fd:b1:
91:91:44:99:f1:07:83:dc:fc:de:23:96:1c:a6:d6:
3e:dd:05:d4:d6:0b:9e:74:b8:7d:00:ae:22:00:de:
5f:da:5e:fa:ac:18:a3:32:e0:ab:7c:60:cb:45:62:
d6:72:7c:d5:a1:06:07:18:73:1e:53:20:c8:3d:53:
b1:0f:e5:f8:6e:71:e0:1e:b2:60:ae:b8:d7:da:b5:
ae:d0:c5:5c:57:5b:05:6c:79:b4:19:83:13:e1:d8:
72:7e:aa:af:ff:dd:4e:d3:9c:47:20:70:79:f9:c9:
ad:fd:f5:26:46:a0:1a:de:28:75:08:c2:f5:5a:3c:
62:56:51:83:08:4b:7e:a0:91:d4:93:92:81:14:1e:
8d:ec:86:93:5d:2e:29:a8:3b:b4:e0:a6:ea:71:4d:
b9:ad:c2:60:b5:fc:70:b3:ac:6a:4b:5b:47:b5:d7:
a4:e1:db:5a:a7:91:3a:07:f1:35:3e:de:46:51:3b:
c2:61:63:82:f3:3f:2e:32:15:b3:f9:46:01:81:6c:
0d:c8:1b:1a:d3:5b:14:81:94:b6:a7:31:94:62:64:
82:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:40:AF:BF:83:86:B9:D9:AC:F0:87:13:48:7B:86:D6:BE:BA:C4:DE
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/UkCvv4OGudms8IcTSHuG1r66xN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.222.0/24
Signature Algorithm: sha256WithRSAEncryption
98:d1:12:72:f9:a4:5d:ca:53:76:a2:f8:28:91:6f:bc:d2:5e:
96:60:ab:30:bf:b9:98:29:fe:40:40:b7:5b:5c:55:c9:b8:99:
02:83:5b:54:0e:32:82:b8:93:b6:66:0f:d0:a2:6d:e7:a3:d9:
b9:60:3d:d5:13:01:0a:ff:95:a4:91:3c:25:72:1f:a1:0f:70:
12:ae:38:53:0b:49:ee:84:12:67:1d:1a:68:14:c8:9b:0b:5e:
a5:f0:c0:7b:15:e9:b4:bc:a6:1d:db:6e:84:d3:ac:99:ed:1a:
e5:f6:9c:63:d9:08:ad:89:2c:a7:c6:a3:e4:86:c3:3f:bb:02:
60:94:76:eb:d7:d1:bf:0d:d5:db:7d:c1:91:ac:aa:b0:bd:1f:
6d:73:92:a7:43:02:fd:e3:1e:02:4b:0d:ee:66:c8:5c:3b:1d:
89:ee:5e:b7:08:83:5a:cb:07:96:9d:09:11:ac:61:a6:2b:fe:
3d:c8:f3:bb:f1:e1:c9:eb:dc:66:a6:1c:33:1c:ad:ed:04:94:
e3:e0:ec:c7:60:f5:90:95:42:70:d8:1b:97:8f:ae:a1:d7:22:
e5:4f:02:b6:9c:08:16:2e:98:e6:49:44:bb:22:87:99:cf:3c:
03:16:fc:cb:15:81:87:97:d4:37:43:9e:97:b7:43:07:2a:2d:
3a:e2:9a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:41 2023 by rpki-client on console.sobornost.net