Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/bMNWKPVQwWAPdXWeBizcFGeGGEg.roa
File: bMNWKPVQwWAPdXWeBizcFGeGGEg.roa (raw, json)
Hash identifier: aP00YuFv9pl8p2gCuL7aAdfZzksLvnUIUdprxK5U8OI=
Subject key identifier: 6C:C3:56:28:F5:50:C1:60:0F:75:75:9E:06:2C:DC:14:67:86:18:48
Certificate issuer: /CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Certificate serial: 0189E49504994B0AAA0D843DAAC895E93E5E
Authority key identifier: E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/bMNWKPVQwWAPdXWeBizcFGeGGEg.roa
Signing time: Fri 11 Aug 2023 12:31:58 +0000
ROA not before: Fri 11 Aug 2023 12:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34953
IP address blocks: 185.64.96.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e4:95:04:99:4b:0a:aa:0d:84:3d:aa:c8:95:e9:3e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Validity
Not Before: Aug 11 12:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cc35628f550c1600f75759e062cdc1467861848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:47:c2:9a:22:13:03:1b:d0:16:8c:04:9d:fa:
d6:2d:44:b1:ec:b7:48:68:11:fd:a9:c1:14:a2:2d:
e8:89:97:c6:f7:23:2c:c6:11:7a:a6:bf:be:d1:34:
81:92:4c:e0:fb:c3:5e:4e:c0:77:3e:7e:69:b4:39:
6b:28:fc:6e:c3:be:81:68:a6:85:ff:c0:f7:ac:c0:
03:b9:c8:60:ae:6a:f2:a6:44:c7:e5:ad:4a:81:4c:
f6:90:7c:d8:50:82:3b:51:c4:0e:39:7f:7e:fb:51:
10:ae:4b:51:10:5b:d9:06:c2:80:92:28:ac:e8:9e:
b0:90:c6:e4:71:9f:25:17:5f:90:f1:53:64:77:9a:
16:4a:3f:37:73:10:d1:76:05:56:1d:5d:cf:0f:d4:
80:a1:91:9b:88:bc:06:f3:28:b3:75:93:b4:eb:fd:
1c:68:e9:fa:6e:79:95:74:fe:98:fb:54:18:39:32:
9d:5b:db:f4:9e:a5:a0:15:dd:96:b2:6c:b4:fe:03:
24:0b:66:e5:5e:f1:c3:a6:40:c7:82:34:d0:54:54:
41:07:39:ce:f3:77:fe:df:fa:2d:17:6a:07:0d:21:
b9:76:96:03:91:27:71:20:6e:c2:60:02:05:41:cc:
ee:01:92:c0:14:5f:02:7e:89:67:3a:53:34:22:02:
f7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C3:56:28:F5:50:C1:60:0F:75:75:9E:06:2C:DC:14:67:86:18:48
X509v3 Authority Key Identifier:
keyid:E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/bMNWKPVQwWAPdXWeBizcFGeGGEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/59nPsHjtpYFvyAnpjCXLcZY-dbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.96.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:c7:a0:45:b5:71:4c:8f:fc:cf:52:53:5c:5b:2e:ee:52:57:
6b:18:fa:8c:28:b1:b8:cb:91:f8:94:d7:bd:0f:31:25:34:6b:
59:f8:c2:73:85:c0:b0:41:ee:b2:2f:bc:b7:05:38:1c:15:5e:
97:cd:66:56:9f:18:d0:43:fb:d0:1a:a3:06:db:25:0a:05:4d:
92:a0:d3:24:f9:f2:2f:dd:99:fa:8a:02:9a:6f:cd:8e:fb:cc:
a4:71:d2:6e:ca:af:49:57:99:80:c7:43:32:2e:2c:3d:f9:ec:
99:df:d7:99:8a:30:db:2d:75:f8:4a:0a:eb:af:25:9a:9b:46:
51:15:cd:6b:5a:d8:c5:a0:a7:39:0c:9e:0b:c2:86:04:44:47:
ea:84:c6:41:bc:a2:d2:28:b5:ca:ae:cf:3c:cb:78:68:a1:ad:
52:74:70:f5:0e:e9:1d:9b:39:be:65:a3:c2:a1:7b:79:7f:dc:
5d:4e:45:b3:47:9c:44:80:e5:53:8b:77:2d:d1:c3:cd:dd:bf:
cc:15:e7:55:42:b3:3e:40:91:e6:71:49:f2:80:db:27:9d:10:
0c:78:4e:31:97:0e:47:ad:7f:d2:95:f0:b1:c8:43:39:f2:c4:
eb:05:3e:77:cf:05:84:c9:cf:11:32:77:33:25:6a:37:5c:88:
3a:f6:a5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:31:04 2024 by rpki-client on console.sobornost.net