Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/l7neTgOQOkC1g-BztUFqpmCi-EQ.roa
File: l7neTgOQOkC1g-BztUFqpmCi-EQ.roa (raw, json)
Hash identifier: uVeL1K4AtHv/xhtMi3Yi8ts+6t2uOZLMmAFixM/p4js=
Subject key identifier: 97:B9:DE:4E:03:90:3A:40:B5:83:E0:73:B5:41:6A:A6:60:A2:F8:44
Certificate issuer: /CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314
Certificate serial: 0188FC83827FC932EC9C2911ECAF45DB08C3
Authority key identifier: 68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/l7neTgOQOkC1g-BztUFqpmCi-EQ.roa
Signing time: Tue 27 Jun 2023 11:00:56 +0000
ROA not before: Tue 27 Jun 2023 11:00:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48803
IP address blocks: 195.49.240.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:83:82:7f:c9:32:ec:9c:29:11:ec:af:45:db:08:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314
Validity
Not Before: Jun 27 11:00:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97b9de4e03903a40b583e073b5416aa660a2f844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bb:bf:a6:1b:9b:76:7f:a3:b8:69:bc:74:f9:
16:95:31:22:7c:e4:18:88:3d:98:99:86:15:dc:2d:
07:d2:77:cc:44:3a:bd:3a:20:52:29:25:2f:17:3b:
f4:32:b5:73:a8:55:e6:0c:d6:47:0f:59:09:3a:d4:
f9:01:8e:7d:d3:4d:4a:db:5f:3a:a0:9f:7a:90:31:
e5:dc:b3:6f:a5:f8:46:4b:1b:5f:0a:f9:b7:6c:67:
df:76:07:05:8d:33:6f:7d:31:5a:c1:08:fc:07:2d:
93:4d:38:df:77:73:ad:89:6d:e7:e7:59:74:91:75:
8c:86:79:2c:86:da:c9:17:be:53:c3:ce:32:db:c6:
5d:9c:11:a2:dd:be:fe:99:4c:76:b7:6f:c7:92:36:
39:d1:a4:2a:b6:2f:84:95:14:e1:56:2f:c5:eb:e8:
0d:dd:65:72:cf:63:1f:88:42:58:79:64:67:22:95:
8c:e6:b9:e4:37:f0:40:9c:3b:f7:a5:75:96:e6:67:
d1:4c:b9:e9:c4:91:fe:17:ea:6d:d1:63:cd:40:dd:
31:12:57:60:ce:2f:72:92:bc:69:4b:74:79:8d:56:
cd:aa:30:88:11:98:68:b1:2b:19:81:8a:ce:e5:48:
13:ae:a6:05:4b:fb:10:6c:39:1b:c4:99:75:c2:a5:
95:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B9:DE:4E:03:90:3A:40:B5:83:E0:73:B5:41:6A:A6:60:A2:F8:44
X509v3 Authority Key Identifier:
keyid:68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/l7neTgOQOkC1g-BztUFqpmCi-EQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.240.0/21
Signature Algorithm: sha256WithRSAEncryption
35:47:e2:75:06:4c:66:c8:f8:ed:3d:f7:80:7f:5a:02:f7:be:
63:be:f2:58:57:87:d0:1d:ba:e7:07:35:b2:12:89:2f:92:fd:
e0:be:91:59:01:76:86:a6:96:d9:ac:d3:ac:b1:8a:26:b3:19:
b9:c5:28:8f:6d:28:15:91:34:ad:1e:cf:91:2f:a7:12:df:df:
30:13:1a:4e:9d:ab:da:25:3c:6e:6e:cd:c3:a0:83:01:13:e5:
4e:cc:c0:c5:bf:08:9f:11:82:10:22:d8:33:39:19:0c:f6:79:
6c:59:62:0b:66:22:d0:49:ab:fa:fd:2b:36:bb:7a:2a:a5:d2:
1d:46:f8:9b:92:18:9d:78:b8:1f:cd:32:97:e5:39:9f:61:ad:
ba:47:fd:97:cd:e7:de:9b:44:b6:8a:0a:8b:ed:7f:0a:57:3c:
41:1f:1b:ac:92:07:f2:27:0b:99:71:31:13:1b:a3:ce:fa:10:
3d:37:fc:a9:4d:32:13:40:81:7c:0b:f4:c5:5e:b9:0c:50:70:
5a:99:dd:ea:62:2e:f1:62:fa:1b:6b:87:1b:0c:9e:b8:eb:67:
49:65:08:cf:d5:e8:b4:9a:f7:71:b8:f6:cd:91:78:bd:8e:f0:
59:23:a7:56:7d:d6:bf:18:90:9e:a5:31:a2:95:75:fe:3b:43:
01:d8:0e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:35 2024 by rpki-client on console.sobornost.net