Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nKx256sPFGQWaJbYOziAXZKhyrU.roa
File: nKx256sPFGQWaJbYOziAXZKhyrU.roa (raw, json)
Hash identifier: 77naPFhqY0A65sbTTfJSv3ToWFXBMJxzlv6s7YHcA98=
Subject key identifier: 9C:AC:76:E7:AB:0F:14:64:16:68:96:D8:3B:38:80:5D:92:A1:CA:B5
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE629AD5C8A70AA5F51369C03FA47BB
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nKx256sPFGQWaJbYOziAXZKhyrU.roa
Signing time: Sun 01 Jan 2023 10:35:01 +0000
ROA not before: Sun 01 Jan 2023 10:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212794
IP address blocks: 45.86.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:29:ad:5c:8a:70:aa:5f:51:36:9c:03:fa:47:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cac76e7ab0f1464166896d83b38805d92a1cab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:dc:18:93:68:7e:b2:a6:da:64:3b:79:37:f8:
7f:a4:10:08:4d:64:04:c2:7b:59:68:df:36:1d:38:
d0:59:10:74:47:49:e4:f1:71:dc:47:08:62:55:1b:
8d:d7:b8:60:ed:a1:12:a6:7a:b2:ec:ed:17:dd:de:
13:f7:7d:9d:e6:70:f2:2a:dc:c9:7a:13:db:54:42:
82:8c:c8:d1:e9:2b:1b:76:ec:69:43:0c:f2:ac:94:
65:38:d5:6f:8e:d5:b1:cf:56:5b:57:ee:82:b2:a6:
c8:3f:c6:fe:00:0d:79:3d:46:b6:06:63:b3:71:fc:
61:35:cd:dc:ab:cf:98:cc:c6:75:86:00:d0:75:6f:
c1:34:ed:46:2b:ea:dc:0d:f0:08:44:31:b4:88:aa:
07:ca:b7:89:12:fb:2a:ef:0e:56:4e:1b:07:30:35:
29:23:14:76:2b:b8:d6:7e:33:ec:72:07:90:0f:a2:
c5:0b:5c:68:28:9d:a5:8a:ab:c4:10:b4:77:09:95:
94:77:47:5d:f2:04:42:77:3d:e5:53:f4:e0:54:26:
83:99:25:05:b3:42:02:3c:b1:3c:48:8e:00:44:d5:
87:c1:65:5d:23:0f:21:9c:97:76:47:4a:2b:1d:29:
b1:c0:28:86:77:7d:f1:cd:f5:4a:aa:96:c4:c7:22:
60:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AC:76:E7:AB:0F:14:64:16:68:96:D8:3B:38:80:5D:92:A1:CA:B5
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nKx256sPFGQWaJbYOziAXZKhyrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.152.0/24
Signature Algorithm: sha256WithRSAEncryption
33:e8:8a:f9:9a:10:5b:ec:46:9b:f6:20:8c:d7:d1:d0:27:e0:
11:38:e5:27:2a:f3:bd:65:67:17:cd:70:8f:7a:c2:74:f2:d7:
74:eb:1f:b2:08:7c:1e:8a:e8:42:b1:b8:38:7f:53:f7:9b:71:
c4:58:f1:f7:a2:c8:04:ee:b8:f3:8d:94:8d:d1:af:1a:01:92:
72:9a:05:b7:e7:dc:29:c9:cc:43:8e:67:d8:cd:06:34:c3:9f:
ea:bb:5f:44:98:f6:d8:3d:7e:6a:77:5b:99:0d:52:09:a7:3f:
fd:b9:23:64:01:f2:f0:1f:26:53:35:d1:a6:47:31:bc:7f:80:
64:94:7c:03:2f:3e:c7:58:3d:59:61:fe:ca:9c:f2:ea:6c:7d:
d1:74:4f:8c:a9:e5:6b:0c:b9:8a:95:c8:0c:9b:68:7f:07:83:
a5:e5:9f:b3:41:51:9c:62:93:3b:6f:c5:eb:00:60:99:23:b2:
c6:ec:df:97:32:a3:32:1f:73:69:c9:c4:00:6a:03:28:a7:32:
5b:8c:12:0f:f1:58:f8:b7:c1:46:71:40:45:c7:82:10:44:b3:
82:64:44:88:b2:9c:87:60:8d:9f:0a:8a:04:e5:a7:e8:f3:d5:
37:7c:d2:31:1b:02:3f:91:e2:1e:ab:1d:7d:ac:26:b7:ca:c5:
0b:24:21:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:13 2024 by rpki-client on console-fra.rpki-client.org