Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/51d445-f070-4ca9-a02b-2e1f9be95573/1/ww9xlYZPvgAfwTR6GSiJ4lJUH1A.roa
File: ww9xlYZPvgAfwTR6GSiJ4lJUH1A.roa (raw, json)
Hash identifier: A9HT9qr8es5xqMch0n+IGnD8hfWGvv+HIRDvOxGa8FY=
Subject key identifier: C3:0F:71:95:86:4F:BE:00:1F:C1:34:7A:19:28:89:E2:52:54:1F:50
Certificate issuer: /CN=d32d1eb0ec8ef5a230457a9702e7aa396858180c
Certificate serial: 018572311231469D3FEF05E8005E56BF73A7
Authority key identifier: D3:2D:1E:B0:EC:8E:F5:A2:30:45:7A:97:02:E7:AA:39:68:58:18:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0y0esOyO9aIwRXqXAueqOWhYGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/51d445-f070-4ca9-a02b-2e1f9be95573/1/ww9xlYZPvgAfwTR6GSiJ4lJUH1A.roa
Signing time: Mon 02 Jan 2023 11:14:56 +0000
ROA not before: Mon 02 Jan 2023 11:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201099
IP address blocks: 193.111.66.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:12:31:46:9d:3f:ef:05:e8:00:5e:56:bf:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d32d1eb0ec8ef5a230457a9702e7aa396858180c
Validity
Not Before: Jan 2 11:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c30f7195864fbe001fc1347a192889e252541f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:69:61:13:fe:51:bc:38:fb:74:27:07:72:45:
63:c1:b4:17:00:04:f5:18:3f:2d:0a:57:c3:11:f4:
87:21:62:62:f3:bd:eb:96:24:f9:66:41:2f:c4:a4:
f6:f2:a5:62:1c:a4:9f:3f:8f:61:5c:63:11:0a:fc:
43:11:2c:c3:12:7b:c2:3f:17:7b:43:5f:2b:c6:cb:
0a:f5:8e:92:69:af:86:f9:da:61:e6:f1:25:a8:9f:
84:7b:c7:97:18:8c:4c:79:f7:f6:25:a6:87:ca:20:
f3:e4:3c:f2:13:2b:84:2e:6c:7e:a1:12:eb:d5:f0:
62:1f:97:8b:94:45:f9:96:07:26:97:92:80:d0:23:
21:85:92:4f:d9:a9:9e:5d:10:f8:2c:af:02:19:14:
74:de:75:f6:81:63:6b:61:7e:7d:05:2c:19:ab:df:
2d:11:2f:03:37:68:0a:01:58:f4:75:52:12:92:54:
02:22:a6:22:0b:fd:15:b4:91:99:74:60:23:59:6b:
c2:46:02:86:3e:f7:f6:e4:d6:9f:22:fd:0d:75:ae:
df:41:f7:ac:be:ad:35:a6:73:62:aa:2c:84:7d:de:
74:7f:1f:47:17:78:cf:63:ca:af:fe:b4:36:50:36:
58:4e:a5:0d:ed:f0:03:56:df:7a:a8:b8:61:67:f9:
71:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0F:71:95:86:4F:BE:00:1F:C1:34:7A:19:28:89:E2:52:54:1F:50
X509v3 Authority Key Identifier:
keyid:D3:2D:1E:B0:EC:8E:F5:A2:30:45:7A:97:02:E7:AA:39:68:58:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0y0esOyO9aIwRXqXAueqOWhYGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/51d445-f070-4ca9-a02b-2e1f9be95573/1/ww9xlYZPvgAfwTR6GSiJ4lJUH1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/51d445-f070-4ca9-a02b-2e1f9be95573/1/0y0esOyO9aIwRXqXAueqOWhYGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.66.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:49:3e:92:09:54:37:08:d2:29:b4:70:99:8c:a8:cc:01:05:
d1:08:03:5d:15:3a:6f:ee:15:cb:5c:cc:66:4f:b0:32:2d:f9:
8a:06:a4:16:4f:e0:5e:7c:e2:f9:26:ed:e9:52:b6:31:6d:ba:
f3:7a:26:cc:1d:c8:b8:a9:cc:e6:08:f8:b6:29:f4:d5:dc:1a:
30:84:ab:3d:fa:a1:5f:6d:fb:f0:05:1b:4d:ad:69:c3:54:ff:
e0:4d:42:d8:52:48:a8:8e:e4:1c:cb:bb:23:63:39:57:70:95:
d5:94:d6:29:44:1f:d4:39:4d:09:4a:ff:a9:d2:b9:08:a7:93:
58:63:f3:4f:09:63:0d:14:1d:d4:c7:03:96:ae:8a:fe:5e:8b:
7a:8e:88:72:5c:7b:c5:d6:e1:68:b4:61:bc:20:e9:3a:53:bb:
bd:5d:8a:d6:f1:9d:2b:74:95:93:93:f6:49:0a:73:86:ae:d0:
54:f4:cc:51:5f:fa:75:33:a3:ef:d0:77:13:fe:3d:d1:df:4a:
74:56:d8:b6:31:a5:a5:02:b0:4e:a4:3e:a6:1b:98:0e:e6:d8:
46:82:44:39:40:f2:7f:bc:92:a8:55:7f:a5:bf:59:d2:91:82:
0e:82:32:f4:46:f3:d6:29:a7:49:d4:f0:ad:3f:02:5e:73:a4:
37:0f:9d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:00:53 2024 by rpki-client on console.sobornost.net