Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/26cc6a-6f17-40a9-b987-6fc717175e58/1/aF2ikzSoocAQgoKuceJd3vxaej0.roa
File: aF2ikzSoocAQgoKuceJd3vxaej0.roa (raw, json)
Hash identifier: I2QgLa9ImjuBPzVVfWimUVfE1itrYx6nBr7OuGNHDq8=
Subject key identifier: 68:5D:A2:93:34:A8:A1:C0:10:82:82:AE:71:E2:5D:DE:FC:5A:7A:3D
Certificate issuer: /CN=b537115961c6abf5b87abe4a20053e4aca1b6ec2
Certificate serial: 01856E01DEDBEA1E31458842443170157031
Authority key identifier: B5:37:11:59:61:C6:AB:F5:B8:7A:BE:4A:20:05:3E:4A:CA:1B:6E:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTcRWWHGq_W4er5KIAU-SsobbsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/26cc6a-6f17-40a9-b987-6fc717175e58/1/aF2ikzSoocAQgoKuceJd3vxaej0.roa
Signing time: Sun 01 Jan 2023 15:44:54 +0000
ROA not before: Sun 01 Jan 2023 15:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207413
IP address blocks: 91.194.140.0/23 maxlen: 24
91.194.166.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:de:db:ea:1e:31:45:88:42:44:31:70:15:70:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b537115961c6abf5b87abe4a20053e4aca1b6ec2
Validity
Not Before: Jan 1 15:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=685da29334a8a1c0108282ae71e25ddefc5a7a3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:94:c0:93:3c:84:7c:c8:43:a0:0a:84:b3:24:
f8:ce:a7:ae:58:27:58:1a:10:ab:45:cb:bd:32:a4:
41:69:52:f0:d2:75:9d:c6:fb:be:ea:df:ce:20:c7:
93:1d:91:d4:e0:9c:94:c2:9d:d3:67:91:ac:4a:c4:
d8:0a:dd:86:c6:9f:97:45:6d:05:c9:01:3c:30:63:
88:b1:ba:06:cf:95:04:47:35:41:77:0a:da:0a:12:
98:33:20:49:66:ea:c5:2f:17:b8:0d:9c:35:43:60:
de:2b:44:14:a6:61:de:67:ef:d9:8c:01:a6:4b:76:
2d:35:d8:a8:44:a0:4b:7f:bd:6d:13:20:19:d2:6f:
78:eb:8e:3c:53:0b:90:50:59:57:c9:cd:57:6f:af:
d2:c7:22:0f:92:4a:60:c4:8a:e6:74:13:18:a2:65:
31:7c:ee:2c:16:91:97:d6:2d:9e:24:0c:48:ef:42:
17:9b:8c:ac:72:f4:33:4e:df:13:a0:a5:f4:e8:0e:
41:a3:6b:c8:65:7c:e6:0d:f6:a3:ed:ad:8a:52:18:
5b:a9:12:16:84:2b:cd:4d:a8:2e:2e:f6:fc:7a:cc:
18:d9:f2:ce:92:21:8e:f9:72:54:ab:f3:6e:17:7b:
f1:e6:d9:a1:24:80:73:a1:ce:c1:63:07:5d:74:36:
63:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5D:A2:93:34:A8:A1:C0:10:82:82:AE:71:E2:5D:DE:FC:5A:7A:3D
X509v3 Authority Key Identifier:
keyid:B5:37:11:59:61:C6:AB:F5:B8:7A:BE:4A:20:05:3E:4A:CA:1B:6E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTcRWWHGq_W4er5KIAU-SsobbsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/26cc6a-6f17-40a9-b987-6fc717175e58/1/aF2ikzSoocAQgoKuceJd3vxaej0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/26cc6a-6f17-40a9-b987-6fc717175e58/1/tTcRWWHGq_W4er5KIAU-SsobbsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.140.0/23
91.194.166.0/23
Signature Algorithm: sha256WithRSAEncryption
24:63:bb:98:0d:9a:b5:e1:2f:74:a4:45:58:fa:e1:aa:34:e0:
4c:8c:2c:b6:56:6b:78:be:c7:97:a2:3c:29:0d:c0:4e:39:09:
92:18:10:3b:c6:5b:f7:b6:9c:20:43:8e:e2:5d:a6:8f:a6:20:
4a:b7:86:c9:d5:06:b9:7a:51:15:95:2c:82:e0:3f:07:ba:51:
24:85:b9:d4:15:f4:d9:07:8d:15:41:e1:e1:87:62:06:79:3c:
b5:07:0f:c7:f0:cf:74:72:15:94:d4:15:5c:69:16:73:22:da:
b7:af:d2:15:3b:62:b1:77:1c:49:24:7e:95:2d:3d:bf:fe:b9:
b6:04:74:72:56:86:8c:a0:c3:96:e0:92:71:bd:f6:5c:a6:de:
e1:f2:88:9e:ce:32:96:c2:db:22:6b:53:e2:db:7f:21:23:66:
91:18:ab:b8:51:2e:ac:d7:d6:07:cc:c9:1f:23:38:42:30:2f:
73:70:b6:0a:f8:67:30:ae:28:f5:aa:4d:f9:d2:37:18:94:5c:
8b:1a:4c:15:d1:9f:cd:03:0d:8b:2c:9a:15:be:64:94:f1:d1:
14:da:bf:87:31:c7:43:32:80:f6:57:af:66:13:a4:21:1b:98:
85:4f:04:63:b4:dc:e3:30:0e:2e:e6:ed:95:0c:17:ca:39:c8:
b5:5d:24:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:34 2024 by rpki-client on console.sobornost.net