Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/rlIpOB5VVqwHfI81_48P4Y3SRrM.roa
File: rlIpOB5VVqwHfI81_48P4Y3SRrM.roa (raw, json)
Hash identifier: pXUhqnHrlrYTSDde1KoSP6njAYrjJ8wFCT23qW6qOdc=
Subject key identifier: AE:52:29:38:1E:55:56:AC:07:7C:8F:35:FF:8F:0F:E1:8D:D2:46:B3
Certificate issuer: /CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Certificate serial: 01856DE64DD43576A034952B2943E106D71F
Authority key identifier: E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/rlIpOB5VVqwHfI81_48P4Y3SRrM.roa
Signing time: Sun 01 Jan 2023 15:14:47 +0000
ROA not before: Sun 01 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20546
IP address blocks: 185.64.96.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:4d:d4:35:76:a0:34:95:2b:29:43:e1:06:d7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Validity
Not Before: Jan 1 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae5229381e5556ac077c8f35ff8f0fe18dd246b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7a:b4:20:2b:11:8e:6f:45:34:6d:75:09:45:
5c:47:1e:be:c0:33:35:f9:db:c4:24:73:10:58:ea:
14:1a:ab:21:88:e1:a0:c8:25:01:06:3b:d5:a3:37:
92:8f:06:52:bd:f9:eb:5c:94:bb:2d:8d:45:17:a7:
0c:38:ff:bc:52:c7:f3:85:2d:19:ae:60:7b:a3:27:
57:66:57:02:06:14:ce:80:0b:96:b6:51:3a:b9:de:
45:27:33:f3:0e:c0:40:28:60:a9:5f:2a:cf:d2:50:
e6:aa:7d:bf:9a:e8:84:5f:d5:13:9f:8a:30:fc:09:
c5:40:b9:f6:b5:17:3c:b6:ef:4e:14:83:e3:89:10:
c0:78:8f:d9:61:b9:a8:99:72:9c:2d:04:80:78:c4:
e2:96:86:35:04:8d:f4:67:20:94:23:a6:0c:07:74:
a4:3d:0f:98:39:0a:af:af:b7:ee:c2:cd:ce:4a:dd:
87:93:d9:21:c1:ad:e7:5e:0d:07:17:b9:ce:53:1d:
1c:49:44:08:8d:23:f3:e6:b1:78:0e:41:22:31:42:
24:50:ba:86:8a:0e:28:f6:4d:a5:51:1d:b3:e3:6e:
f7:65:40:45:86:43:b9:b3:ce:52:dd:45:75:37:44:
2d:fa:d7:bf:f1:d6:b8:3a:e0:5c:46:40:26:04:be:
89:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:52:29:38:1E:55:56:AC:07:7C:8F:35:FF:8F:0F:E1:8D:D2:46:B3
X509v3 Authority Key Identifier:
keyid:E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/rlIpOB5VVqwHfI81_48P4Y3SRrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/59nPsHjtpYFvyAnpjCXLcZY-dbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.96.0/22
Signature Algorithm: sha256WithRSAEncryption
54:ee:54:84:c5:aa:ea:19:d0:4e:8c:21:5b:c7:54:66:cd:08:
49:ab:f6:b0:06:37:66:48:20:9e:a8:0f:d1:01:4d:5c:1f:02:
bf:79:7d:90:66:79:5b:a3:27:d7:42:52:73:91:d1:33:78:7d:
64:40:97:6d:6c:ae:b4:6d:cc:ca:97:e0:b8:1b:76:55:4a:01:
71:67:47:94:05:a7:bd:de:a4:c1:22:6d:3d:d7:a4:f7:43:fb:
c2:c0:a1:46:d3:5f:ce:e7:27:1b:7d:cb:95:79:13:99:28:85:
53:30:cb:1a:0c:c2:6f:c7:05:0e:2a:e0:0d:f8:d6:46:e9:7b:
0c:dc:3c:5b:7c:0b:71:70:b5:85:f1:93:8f:30:e8:2d:f6:44:
21:6f:37:54:bf:c0:53:55:a8:59:51:0d:b7:b5:96:1b:7d:fa:
52:23:fe:88:d4:24:96:31:ac:b0:ae:65:f5:8f:c0:34:e5:83:
61:0c:56:6c:e0:02:b0:1d:16:04:40:4a:22:1f:ab:c5:66:27:
c3:58:eb:f9:2e:de:31:8e:6c:9c:2d:2b:8a:63:62:07:b6:3b:
11:c0:1a:0a:25:93:c6:e4:d5:9f:b8:39:2c:14:98:f9:25:f6:
c3:9f:63:dd:c4:81:45:3f:fe:98:52:86:12:97:c8:29:84:65:
51:ae:0b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:31:04 2024 by rpki-client on console.sobornost.net