Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/OZIARu4iJfdVPh6vo_iJq9Ex43c.roa
File: OZIARu4iJfdVPh6vo_iJq9Ex43c.roa (raw, json)
Hash identifier: z6Brn470tnbfF6aKe7GMOsWgA0FeoS6uvh7MTtEiM0E=
Subject key identifier: 39:92:00:46:EE:22:25:F7:55:3E:1E:AF:A3:F8:89:AB:D1:31:E3:77
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 0187C18CC750F618D957D231201125686B71
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/OZIARu4iJfdVPh6vo_iJq9Ex43c.roa
Signing time: Thu 27 Apr 2023 07:10:41 +0000
ROA not before: Thu 27 Apr 2023 07:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55933
IP address blocks: 45.145.230.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c1:8c:c7:50:f6:18:d9:57:d2:31:20:11:25:68:6b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Apr 27 07:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39920046ee2225f7553e1eafa3f889abd131e377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:39:4e:ee:53:e7:41:57:4e:31:f6:78:63:9e:
7c:5a:9e:0e:c9:c5:16:fe:cf:cb:82:8f:a6:59:91:
1b:aa:87:de:42:c0:61:e6:7e:e2:46:d8:c3:4b:04:
a8:17:c2:9c:ac:40:e8:3b:dc:26:1f:64:d3:41:5a:
a8:30:30:2f:af:07:1a:7a:c7:02:16:44:aa:93:6a:
33:d8:70:f5:f2:76:67:3e:ba:4d:5e:b3:fe:55:2e:
c1:84:a7:61:29:14:aa:3b:b2:a1:cb:81:b3:34:12:
69:6d:65:19:21:0c:80:3e:12:56:5d:1e:9c:90:40:
a2:14:6b:36:8f:8e:18:68:bf:0e:18:1b:5f:77:b5:
13:6c:b1:ad:4f:af:a3:25:5a:e2:6c:44:8c:3c:75:
97:29:ca:25:8c:02:b8:1f:7e:e4:37:78:3c:fc:71:
ef:0a:93:ed:d6:61:5b:60:9c:59:7d:04:71:ae:fa:
80:ba:92:09:bb:46:7a:a3:a5:ae:5c:01:cf:c2:b0:
ce:c1:19:6d:1f:c5:6e:21:f4:de:66:11:86:8d:68:
55:00:5e:53:f5:e0:82:26:26:8d:29:3a:be:43:49:
01:d9:dd:89:05:a3:26:4a:96:e3:85:2f:26:0c:22:
82:51:11:18:1e:d8:10:40:5b:bd:c2:74:36:eb:30:
b9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:92:00:46:EE:22:25:F7:55:3E:1E:AF:A3:F8:89:AB:D1:31:E3:77
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/OZIARu4iJfdVPh6vo_iJq9Ex43c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.230.0/23
Signature Algorithm: sha256WithRSAEncryption
48:68:ca:bc:2f:11:65:2b:6b:c9:58:d5:9e:8d:38:46:6c:8e:
2c:63:54:dc:f6:c7:7d:0c:e3:86:7a:fd:36:de:e4:dc:cf:8c:
dc:c0:ab:95:de:5d:8d:fe:ff:11:d5:0e:27:7b:6d:b1:3b:c7:
e2:38:b0:02:77:b1:ac:9a:0e:74:04:8b:7e:ef:6e:81:c7:e3:
df:3e:23:a0:f6:9a:4a:78:4f:d2:05:28:25:73:70:5d:02:ac:
4a:4d:14:2a:4e:7a:1d:27:a1:86:36:6c:20:e4:5d:07:42:e4:
f0:ab:25:b9:fc:96:b0:db:ab:76:6b:9e:00:43:49:98:77:5e:
79:ed:70:03:c1:03:83:f6:26:43:e3:69:4d:4b:8a:70:6c:bf:
8f:e9:b6:51:39:f0:fd:45:86:e6:cb:81:e6:95:99:f3:54:90:
62:ec:8b:6b:ae:e4:6b:bd:b1:3f:47:7f:b9:82:32:9b:a4:ce:
fa:58:5c:9e:83:3e:aa:fe:9c:ce:fd:62:21:6b:7a:1d:33:1a:
64:ef:19:ed:6f:97:62:76:68:9d:50:16:de:b3:7c:da:c1:ec:
d4:c1:af:67:ac:d5:da:07:a4:c5:25:49:28:6d:d6:ad:e0:cc:
db:33:43:75:a9:13:8b:ed:32:06:66:64:59:08:62:9a:91:65:
f8:1b:2c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:34:51 2024 by rpki-client on console.sobornost.net