Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/2c97DpXh987yBiRrufTlNB0EJ6w.roa
File: 2c97DpXh987yBiRrufTlNB0EJ6w.roa (raw, json)
Hash identifier: 01265mqvfWrBet+WH+oRkLS9hrBtYcjSTpzDKYOwXOo=
Subject key identifier: D9:CF:7B:0E:95:E1:F7:CE:F2:06:24:6B:B9:F4:E5:34:1D:04:27:AC
Certificate issuer: /CN=213f21d1551d2775e7b064382b8122ad4fc585f7
Certificate serial: 0185706719ADD8AE0169E484C03A508A4542
Authority key identifier: 21:3F:21:D1:55:1D:27:75:E7:B0:64:38:2B:81:22:AD:4F:C5:85:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT8h0VUdJ3XnsGQ4K4EirU_Fhfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/2c97DpXh987yBiRrufTlNB0EJ6w.roa
Signing time: Mon 02 Jan 2023 02:54:42 +0000
ROA not before: Mon 02 Jan 2023 02:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 162.38.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:19:ad:d8:ae:01:69:e4:84:c0:3a:50:8a:45:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213f21d1551d2775e7b064382b8122ad4fc585f7
Validity
Not Before: Jan 2 02:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9cf7b0e95e1f7cef206246bb9f4e5341d0427ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:50:01:45:98:8f:76:ff:c1:5a:81:31:34:4f:
ff:4b:68:9f:78:58:d2:51:59:15:ed:0f:c4:45:ad:
57:ee:48:20:a4:08:d2:64:56:f7:86:c0:7e:c6:5a:
21:ae:ed:08:cb:d5:9c:20:be:2d:a8:86:55:c4:7a:
d2:63:15:59:ef:86:f0:38:b3:8e:01:52:43:9f:2f:
e1:ec:23:c9:06:da:37:68:7c:6a:fd:c4:70:02:e7:
a2:6a:c2:09:8c:b5:0f:84:90:44:80:55:a0:c0:aa:
d1:01:2a:86:49:35:cc:65:0a:c8:bf:84:4d:2e:33:
aa:64:ae:4c:73:0f:ef:7f:d8:bf:4e:ca:af:0d:09:
c4:bd:84:af:b0:e2:f5:18:55:89:58:9a:79:e1:de:
ee:95:f3:c7:fd:17:44:0c:dc:d8:5b:17:45:b4:7a:
9e:aa:16:34:7e:95:89:bb:d6:66:ba:4c:84:76:cc:
ee:03:7a:c5:15:0e:e2:a3:2f:39:62:93:0b:83:a6:
8a:75:86:1e:98:57:dd:96:a1:a2:8b:bd:9d:89:78:
3c:3d:04:b0:99:df:3d:e3:ce:6f:f4:d8:cd:ff:82:
93:0c:80:c1:09:00:8d:78:19:54:e4:10:63:b6:6e:
27:e9:12:59:75:7e:28:05:b3:5f:ca:db:1a:94:42:
49:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CF:7B:0E:95:E1:F7:CE:F2:06:24:6B:B9:F4:E5:34:1D:04:27:AC
X509v3 Authority Key Identifier:
keyid:21:3F:21:D1:55:1D:27:75:E7:B0:64:38:2B:81:22:AD:4F:C5:85:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT8h0VUdJ3XnsGQ4K4EirU_Fhfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/2c97DpXh987yBiRrufTlNB0EJ6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8a0db8-6ad9-48cc-9871-d0b7eedeb7e9/1/IT8h0VUdJ3XnsGQ4K4EirU_Fhfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
162.38.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:1a:62:9e:3d:24:67:aa:bc:b3:97:3f:f4:a9:64:47:64:6e:
ae:54:ec:43:b7:60:90:69:91:07:4f:17:95:e2:62:71:d6:92:
bd:0f:32:f9:4f:85:44:03:27:95:28:ae:68:57:21:49:07:85:
65:45:55:8b:d0:c7:6c:85:6a:b7:9e:cd:c8:45:84:5a:15:3f:
a9:0b:94:26:ee:5a:13:ff:12:78:7c:35:a9:5c:fc:f5:ec:48:
9a:05:35:43:a5:a5:7d:db:b0:30:09:72:5f:96:65:7f:2c:cd:
e1:60:6b:a6:7a:60:84:37:a0:d6:52:df:2b:96:32:02:c6:78:
15:43:ea:df:a1:64:ec:be:a1:f3:0f:71:a2:36:e9:32:db:f4:
12:02:b8:97:33:f4:91:d0:8c:4a:c0:77:af:0a:9e:78:29:87:
dc:a1:c9:df:56:23:df:8f:3a:8a:6a:26:44:c1:2b:14:dc:9a:
ca:6d:43:78:1b:0e:79:65:69:52:c7:a2:66:5e:05:e6:77:0c:
b7:e7:d6:1d:21:42:3d:51:e4:f7:48:36:0e:9e:23:2a:ed:6f:
2e:4a:7a:9b:a1:a2:4d:af:e8:03:61:46:e6:92:74:30:40:e1:
52:e5:a2:06:d2:7f:18:c9:cd:bb:3d:0d:85:18:fc:5c:e1:27:
ae:68:17:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:30 2024 by rpki-client on console.sobornost.net