Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/Xv16OtSfi6DtdPFVbC1EoJGPZfk.roa
File: Xv16OtSfi6DtdPFVbC1EoJGPZfk.roa (raw, json)
Hash identifier: hJUgHzh/Bqx47JSYjIOwgiFQK9Bqms5cHJBmYYWTCmw=
Subject key identifier: 5E:FD:7A:3A:D4:9F:8B:A0:ED:74:F1:55:6C:2D:44:A0:91:8F:65:F9
Certificate issuer: /CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Certificate serial: 018E38D8544590165AB9D2D76A21476F7707
Authority key identifier: E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/Xv16OtSfi6DtdPFVbC1EoJGPZfk.roa
Signing time: Wed 13 Mar 2024 17:24:45 +0000
ROA not before: Wed 13 Mar 2024 17:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 185.138.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 17:40:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:d8:54:45:90:16:5a:b9:d2:d7:6a:21:47:6f:77:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Validity
Not Before: Mar 13 17:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5efd7a3ad49f8ba0ed74f1556c2d44a0918f65f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:dd:1b:42:ba:e2:71:d5:28:9a:d3:40:32:
22:11:97:91:fd:12:47:64:b1:63:bb:0e:62:9f:22:
ea:a9:f5:6a:f6:33:7d:0d:f3:13:ac:8e:80:42:b2:
8e:3d:8f:59:f8:45:ff:66:6b:3c:a0:2c:2c:ee:ea:
99:0f:66:ca:17:de:fc:83:16:ae:e9:5b:9b:16:24:
f7:d4:db:39:41:06:9b:5c:4f:e6:d2:1d:44:05:47:
d2:7c:49:77:24:ba:25:7a:ec:11:53:93:fe:90:df:
58:ff:46:2d:1f:44:b2:69:81:aa:d4:b1:fa:25:d9:
32:29:c3:6b:2a:29:27:e9:60:8e:8c:6d:0e:fb:07:
06:94:52:af:89:84:9c:04:77:e6:4c:9f:e3:2d:11:
74:97:c0:93:45:84:55:cd:e9:21:66:66:3b:6f:3b:
b7:88:7d:a6:35:61:34:a4:a5:a3:cb:73:00:1d:c1:
f1:93:c1:98:c0:4d:45:28:c1:81:3a:88:41:90:6b:
44:f1:e7:35:7f:16:46:f2:f7:f8:2d:c6:9f:9f:34:
ef:62:68:75:46:ec:93:46:a1:e5:5f:62:ba:fc:a7:
41:3b:61:95:91:72:46:28:c6:a2:db:9e:f4:d3:12:
7e:c6:2e:2b:78:c8:d1:a9:a5:ad:a5:19:25:e9:9b:
fd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:FD:7A:3A:D4:9F:8B:A0:ED:74:F1:55:6C:2D:44:A0:91:8F:65:F9
X509v3 Authority Key Identifier:
keyid:E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/Xv16OtSfi6DtdPFVbC1EoJGPZfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/4i1-riHYuu6d5pQNjOaynZKpAx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.146.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:47:6b:50:13:6c:25:3d:48:75:1b:28:5a:84:e7:d2:23:ea:
ef:a3:6d:d6:a6:77:19:f1:a2:3b:ff:10:12:e3:05:70:d9:02:
38:59:47:ac:08:82:8f:41:05:c0:6b:21:49:1c:e4:c8:a1:89:
3e:43:49:36:67:27:36:80:2b:ef:f6:6c:21:c5:01:2a:cf:64:
0c:8e:e7:06:ef:7e:28:37:5b:13:dc:14:3e:4a:e8:7e:b3:6d:
91:a3:5e:56:3f:73:d6:f0:8a:fe:bd:d2:83:2a:fe:d7:7c:6d:
52:5f:c0:da:e2:ac:9c:18:0a:1e:37:c2:68:a3:bd:17:dd:16:
4e:d5:16:9a:2f:8f:54:b7:89:dc:89:29:f6:43:bc:84:f2:40:
a2:12:c4:35:a0:f5:0a:8d:ab:94:b9:1f:93:d0:74:62:9b:7c:
8a:a2:93:84:ab:fb:82:73:73:ee:34:89:a8:c9:79:b6:62:e8:
17:c7:50:71:58:2c:1e:ae:9b:a2:e8:91:59:6b:09:41:88:33:
4b:27:50:4a:54:73:6f:72:ca:4f:a0:ab:02:84:13:ce:62:39:
d5:77:bc:ee:9d:ab:b4:d6:8b:25:f1:ac:58:a8:e7:73:43:70:
66:ea:58:1e:bc:5a:8e:60:26:2d:ab:f6:a0:37:54:02:9c:1c:
c3:39:b6:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 01:13:15 2024 by rpki-client on console.sobornost.net