Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/RzvILKBXE85zWOw9wJZGimKqFJY.roa
File: RzvILKBXE85zWOw9wJZGimKqFJY.roa (raw, json)
Hash identifier: ww88YtHbVdEAjwwQfYvx0bhxE4xZ0k0iXoO3Ep2m/Ac=
Subject key identifier: 47:3B:C8:2C:A0:57:13:CE:73:58:EC:3D:C0:96:46:8A:62:AA:14:96
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CB010293B0959FD1AF4A7346676A6A4B5
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/RzvILKBXE85zWOw9wJZGimKqFJY.roa
Signing time: Thu 28 Dec 2023 10:54:58 +0000
ROA not before: Thu 28 Dec 2023 10:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200950
IP address blocks: 45.86.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:10:29:3b:09:59:fd:1a:f4:a7:34:66:76:a6:a4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 28 10:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=473bc82ca05713ce7358ec3dc096468a62aa1496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e4:e2:b3:c6:6d:21:53:da:51:43:a3:e1:f9:
39:a7:48:7d:65:c2:27:aa:cf:f7:2a:2d:45:cb:bb:
35:48:76:33:3b:13:92:e2:27:7b:d6:f5:17:8e:03:
ad:f9:f8:44:81:c8:ad:64:d6:51:28:90:41:96:f6:
d8:ae:99:bd:c5:8a:2f:f5:22:c3:18:a0:b2:28:5a:
7a:54:d3:5a:c5:09:e2:4c:9a:59:60:6a:4c:a0:05:
b8:68:18:3d:6c:70:5f:06:e5:96:77:ab:35:f8:ca:
d2:3e:81:35:a0:ba:fb:4b:71:a7:da:40:28:c4:2e:
96:f1:d9:59:e9:45:b3:13:3c:82:c0:be:95:13:a7:
87:df:1c:f3:11:89:85:b9:4e:e3:74:41:39:06:df:
28:17:9e:17:f5:ac:ce:79:ba:41:0f:5d:4c:5e:24:
34:38:4d:60:91:56:12:97:df:51:c7:10:bf:81:4a:
da:08:7c:04:dc:ab:82:d2:6d:70:f8:ff:20:87:28:
63:99:e9:a6:80:85:ad:b9:df:ff:49:8e:d1:ff:ad:
10:b7:64:cf:41:73:b2:e7:a0:63:b0:57:ac:25:6c:
6e:86:30:e1:5a:46:8d:28:8c:14:67:61:10:c1:ad:
28:9e:60:70:59:67:2d:2f:fc:e7:ee:8f:75:35:92:
55:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3B:C8:2C:A0:57:13:CE:73:58:EC:3D:C0:96:46:8A:62:AA:14:96
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/RzvILKBXE85zWOw9wJZGimKqFJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.153.0/24
Signature Algorithm: sha256WithRSAEncryption
47:62:1e:8d:ff:5f:55:41:de:5b:9b:15:34:0d:5b:ca:d2:fa:
57:24:85:8e:ad:28:d0:75:07:12:2f:30:2f:be:9c:f2:99:bb:
5b:74:57:13:2e:84:a9:77:85:f5:1a:58:78:6e:bf:59:e8:6f:
e6:b9:fa:fc:9a:ad:4e:3e:2c:1d:f7:ba:46:e2:03:c4:38:11:
20:57:bb:8e:db:8e:10:a8:18:59:44:53:af:4a:4c:7f:4c:01:
1c:b5:26:dd:d6:ec:25:07:d6:78:5c:a0:f1:99:7e:d0:de:b6:
7f:c9:30:32:a6:c0:aa:93:d1:0e:8b:76:78:f9:21:27:71:af:
09:ef:b6:47:89:c5:3b:88:eb:92:37:5f:5b:6e:ca:01:a0:f9:
5a:58:e7:39:8f:2f:fd:11:ad:33:9b:cb:e7:60:24:2d:60:c9:
2b:c5:5e:21:7c:9d:bf:23:e8:a5:e2:6c:20:92:5c:d7:0c:ae:
2e:d7:34:83:72:4c:d1:1b:58:34:a4:12:d6:b0:04:10:29:a3:
b9:5d:25:67:88:e0:4d:27:fd:d5:60:ef:33:ce:04:6f:db:6c:
69:fd:63:72:96:4e:95:51:c4:65:c7:b7:c9:68:72:bb:06:e0:
1a:bc:ac:db:f5:45:69:e7:cc:cb:47:4b:10:2d:ca:a9:65:05:
29:41:8a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:24 2024 by rpki-client on console-ams.rpki-client.org