Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/aOL49AE7HXwMmzDs0XY06UFaiXs.roa
File: aOL49AE7HXwMmzDs0XY06UFaiXs.roa (raw, json)
Hash identifier: dW7/QNg4VcltSYRsfhkLu5sttcVMVMngRb7n/paBvKs=
Subject key identifier: 68:E2:F8:F4:01:3B:1D:7C:0C:9B:30:EC:D1:76:34:E9:41:5A:89:7B
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE61B64790556A6BFCAD8202C85C491
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/aOL49AE7HXwMmzDs0XY06UFaiXs.roa
Signing time: Sun 01 Jan 2023 10:34:57 +0000
ROA not before: Sun 01 Jan 2023 10:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49697
IP address blocks: 45.11.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:1b:64:79:05:56:a6:bf:ca:d8:20:2c:85:c4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68e2f8f4013b1d7c0c9b30ecd17634e9415a897b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4d:b7:61:40:42:0e:16:06:58:ea:79:60:0e:
0e:d9:30:6b:c3:13:a5:bb:29:82:a7:ec:05:81:25:
68:15:d1:ee:5a:14:14:6b:07:6e:a5:94:66:17:6f:
1d:f8:93:f4:ec:db:74:f0:6b:5a:fc:4b:70:8b:e5:
7d:45:e4:aa:80:b4:fa:a5:c1:c0:50:7e:60:51:34:
53:fc:85:f8:be:54:bf:74:1c:9c:4d:b8:ca:c0:be:
31:58:2c:a6:60:89:7e:1c:58:6d:66:5c:50:7d:0d:
6e:5b:55:9f:11:20:5d:70:52:41:4d:4c:97:1c:c2:
1f:ab:e5:89:13:5a:10:4b:ba:64:e5:93:d3:e0:05:
65:2c:43:fc:5a:bf:56:80:cf:c4:e9:ea:ba:4a:ca:
e0:03:f8:da:77:19:81:1d:80:2d:4a:8c:cc:ba:91:
ee:da:11:8b:82:94:ee:28:52:5a:fc:4c:b8:83:58:
b0:e5:c7:dc:03:bb:4a:f6:08:2e:26:25:9d:9b:ca:
43:f9:cf:2c:a0:0a:e0:70:62:66:10:6a:26:ec:4b:
04:23:96:27:db:24:ed:42:43:d4:73:78:aa:a9:f2:
9d:92:b3:c2:f1:ea:89:ef:d4:a3:22:57:6e:10:41:
f4:75:fc:f5:e7:28:80:29:35:36:fc:79:8f:c3:58:
2b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E2:F8:F4:01:3B:1D:7C:0C:9B:30:EC:D1:76:34:E9:41:5A:89:7B
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/aOL49AE7HXwMmzDs0XY06UFaiXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.231.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c0:eb:73:1b:ac:42:31:cb:09:70:49:16:d3:2e:e5:5e:53:
73:09:6a:1b:59:32:0e:04:7f:1a:b7:8d:49:c3:1a:08:b1:03:
e9:4b:db:2f:25:b0:75:37:bf:61:fc:ac:67:b7:bc:07:c6:1b:
92:50:cb:a5:32:38:41:7e:51:d2:9e:65:70:b5:d0:cb:df:a0:
35:ec:b7:2f:54:22:66:e7:32:9c:3f:66:8f:5e:4c:55:8e:49:
c6:d7:bf:3b:0c:5a:ce:67:be:a3:ac:55:82:28:9a:0c:8a:0a:
d4:d1:1c:85:fb:dd:dc:e5:9d:ac:34:5d:db:23:f4:da:ba:1b:
bf:f9:a4:f5:cc:54:d7:c1:89:92:ad:e4:59:4f:41:2e:30:96:
1b:eb:ce:83:08:27:61:44:1d:6a:2d:ae:93:bf:cf:3b:4f:a2:
0d:38:3b:86:fd:1c:a9:66:0d:7a:13:88:ec:16:4f:53:94:2a:
ff:ff:17:8f:e0:f0:6d:06:e1:fa:85:cc:dd:8e:4a:0a:0f:1b:
43:8b:4b:03:14:35:43:90:4d:37:c5:0c:32:51:4a:54:48:25:
7b:43:d7:da:72:77:31:5f:b0:1d:4e:33:1a:bb:77:c0:37:39:
dd:65:f8:0f:2d:5f:c9:a9:f0:b7:47:cd:38:f8:e9:38:29:a6:
d6:b5:fb:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:13 2024 by rpki-client on console-fra.rpki-client.org