Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/nv32hWDYahnXJL6E_P6FP7ZDwo8.roa
File: nv32hWDYahnXJL6E_P6FP7ZDwo8.roa (raw, json)
Hash identifier: +ONJ3PqMbxXDZWD+O2F5Zm3iJ+1CTmOwgl4W0zdxq/E=
Subject key identifier: 9E:FD:F6:85:60:D8:6A:19:D7:24:BE:84:FC:FE:85:3F:B6:43:C2:8F
Certificate issuer: /CN=429196310a7f7dd9999ec43e938fd906985a3f87
Certificate serial: 0185729EE162687BC5EAE9F08118E9DB4483
Authority key identifier: 42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/nv32hWDYahnXJL6E_P6FP7ZDwo8.roa
Signing time: Mon 02 Jan 2023 13:14:53 +0000
ROA not before: Mon 02 Jan 2023 13:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203109
IP address blocks: 185.144.124.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:e1:62:68:7b:c5:ea:e9:f0:81:18:e9:db:44:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429196310a7f7dd9999ec43e938fd906985a3f87
Validity
Not Before: Jan 2 13:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9efdf68560d86a19d724be84fcfe853fb643c28f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c5:65:65:f7:60:4f:70:5b:1e:a0:c2:b0:56:
30:d9:04:4a:f8:ab:4f:89:07:06:4e:57:c5:75:d8:
39:34:aa:cc:19:35:f5:7b:28:f4:9e:ac:a7:53:a6:
9f:df:4f:64:3f:49:6b:da:b9:39:08:21:e2:46:2e:
0b:8d:c2:3e:cc:66:ed:14:0d:e7:6d:43:c1:2f:93:
5c:30:d2:e2:0d:f3:02:49:1b:5a:af:0c:38:69:10:
eb:e7:9d:cc:14:47:27:9c:72:a3:81:25:95:6c:25:
99:e0:1a:ce:aa:a5:5a:16:60:f0:82:b2:75:c8:03:
7b:23:06:aa:e2:f8:d5:17:5e:ef:7d:51:88:6c:eb:
f6:ff:f8:87:1d:69:75:1d:9a:65:4e:48:86:46:f0:
f0:6f:b8:1e:a7:73:b5:9a:6c:65:b0:73:d3:29:71:
c7:e8:5c:81:36:24:3a:fa:96:08:3d:ed:da:7c:c8:
06:ef:40:7d:56:05:f8:c7:f6:86:a3:b6:06:9f:4d:
46:38:64:7c:c0:fb:f2:49:ed:30:b8:de:b7:90:a8:
11:d4:d6:8e:c7:f4:69:f2:5a:3d:31:6b:26:f8:2d:
7e:d3:22:74:6d:b4:c0:40:9b:fb:81:ce:32:65:f9:
fb:9b:7b:6e:51:6b:43:35:b6:66:d4:50:ba:f6:a7:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:FD:F6:85:60:D8:6A:19:D7:24:BE:84:FC:FE:85:3F:B6:43:C2:8F
X509v3 Authority Key Identifier:
keyid:42:91:96:31:0A:7F:7D:D9:99:9E:C4:3E:93:8F:D9:06:98:5A:3F:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/nv32hWDYahnXJL6E_P6FP7ZDwo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc6892-1779-457c-9214-0aa9d97c8c98/1/QpGWMQp_fdmZnsQ-k4_ZBphaP4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:fa:e4:e1:f4:bb:15:a0:0d:2d:43:28:c4:65:69:c5:80:6b:
39:47:2f:e8:8f:67:f6:d9:ac:12:96:7f:24:40:95:bc:5a:32:
02:39:dd:23:20:8e:cd:ef:87:4a:d2:7d:72:0d:5d:50:b8:6b:
01:1b:09:91:bf:f5:2e:15:c8:cb:d0:45:c9:6e:30:db:45:26:
60:49:cd:7c:d6:93:1f:7f:0b:d0:50:68:50:0f:d6:37:87:f0:
43:32:81:85:a4:c7:27:86:56:f9:db:4c:f8:49:7a:ca:41:90:
f9:59:53:f0:a0:41:53:a6:57:1a:6b:f4:63:56:93:c0:d8:2c:
c7:80:9a:16:22:f5:5b:49:74:3e:30:2c:c8:81:28:03:d8:21:
ea:36:06:72:45:0b:d4:be:21:1c:43:29:b4:bc:be:0d:cc:21:
42:2f:6b:09:a9:4b:c3:aa:90:fc:ba:a8:89:06:bc:2b:af:e7:
cd:c6:e1:c9:10:89:0b:51:16:f8:62:65:1f:70:b5:8f:22:29:
01:bd:14:ff:2c:f8:77:86:a3:ea:2c:21:0c:94:56:b5:65:cd:
56:03:66:cf:8c:ca:e3:82:36:0b:70:e3:21:9b:78:50:11:f5:
6b:06:4a:4f:50:88:8d:d8:5e:7d:47:a9:e0:a4:93:0f:04:f2:
61:56:45:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 16:34:51 2024 by rpki-client on console.sobornost.net