Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-bDk5v9jjZZpoK0uozhwtqaTAEk.roa
File: 1-bDk5v9jjZZpoK0uozhwtqaTAEk.roa (raw, json)
Hash identifier: svSwDzgxzNZe5VNOkr8WXqZS0AUUHCfOTGbHk5FkUtY=
Subject key identifier: F9:B0:E4:E6:FF:63:8D:96:69:A0:AD:2E:A3:38:70:B6:A6:93:00:49
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0189F85AC0356A1211412FFF42ECDD55DF6C
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-bDk5v9jjZZpoK0uozhwtqaTAEk.roa
Signing time: Tue 15 Aug 2023 08:40:44 +0000
ROA not before: Tue 15 Aug 2023 08:40:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 268624
IP address blocks: 45.85.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:5a:c0:35:6a:12:11:41:2f:ff:42:ec:dd:55:df:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Aug 15 08:40:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9b0e4e6ff638d9669a0ad2ea33870b6a6930049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:81:a2:a4:64:b8:5d:66:68:6d:e1:da:77:
8c:5d:1f:d8:d3:c4:cc:88:56:28:d3:d3:82:bd:d1:
2e:b7:ff:50:dc:d4:a5:cb:e8:12:3a:81:fc:a1:ab:
6d:a5:0e:3d:13:f6:78:e1:7d:c2:ce:fc:61:4f:b4:
ba:22:91:6c:f5:f4:26:5d:31:8b:ed:8b:49:31:ac:
b2:5b:51:d1:36:ae:bc:16:0d:e5:60:5c:d0:51:b2:
1c:96:f2:99:85:54:74:87:40:05:c1:74:f6:ee:69:
a5:ef:a7:4f:a7:2f:bf:5b:b0:29:d2:20:7e:05:66:
ea:5b:ee:39:f1:a0:ef:c1:31:98:de:04:c0:9f:82:
ac:82:ec:0f:8e:cd:dd:b4:55:c3:c3:78:37:b4:e2:
56:af:7c:91:df:4c:66:74:d9:a9:36:ab:de:cb:f4:
fb:a6:2a:c6:a2:75:e7:47:d8:91:23:48:77:bc:1b:
0d:e6:7f:fa:62:96:2f:c9:8e:32:bb:1a:ac:c9:40:
cb:0d:9a:a7:7b:a0:be:f7:ef:e4:f8:90:0c:b7:5b:
de:d8:0d:9e:90:d0:44:1f:d3:28:6e:35:f8:86:40:
0b:96:2a:34:ab:08:a4:31:6d:97:33:4b:5a:1e:1c:
49:af:5f:d5:fe:de:07:ec:dd:e1:7f:10:17:e3:46:
e5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:B0:E4:E6:FF:63:8D:96:69:A0:AD:2E:A3:38:70:B6:A6:93:00:49
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-bDk5v9jjZZpoK0uozhwtqaTAEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.89.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:10:19:15:48:4e:8a:19:22:55:b9:3e:bd:3f:33:5f:6f:b2:
d7:68:38:50:f7:1c:de:46:e6:a6:bb:8b:ea:7b:2f:50:fe:15:
00:d4:d4:28:ad:0b:3b:89:0d:9d:5e:a8:47:25:29:36:cb:87:
61:4a:bd:fa:b5:64:73:e0:94:6a:d6:44:06:0a:45:e7:b8:aa:
46:c8:59:54:85:59:8c:56:42:c1:b8:45:ae:cd:51:a3:8a:d0:
e5:25:a5:94:26:99:e9:24:99:b7:4b:5f:d1:95:44:8c:d7:c9:
59:59:e6:61:d2:6c:b9:c6:51:1d:4b:da:c0:2c:27:2a:dc:50:
3d:fc:82:87:7a:1d:2e:18:d1:de:0e:5f:e3:c1:68:31:df:43:
bc:5f:79:60:45:4e:8f:22:6a:86:0d:d4:6c:c3:da:03:b7:ab:
51:8d:ee:5e:7e:53:06:5e:c0:a6:dc:65:14:dd:05:8d:20:93:
a4:8b:ae:b8:77:e4:de:a7:72:b5:94:b9:b9:f5:e8:f7:79:3a:
a9:6c:a9:50:97:aa:28:25:cd:51:01:06:aa:ac:91:e9:8d:a2:
33:24:88:82:ab:25:3a:b3:b1:67:e1:a2:47:36:bc:8d:f5:c7:
bc:0c:a0:99:cb:48:3f:1d:32:70:a5:53:43:fc:39:1b:de:cf:
f7:dc:04:71
-----BEGIN CERTIFICATE-----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Generated at Wed Nov 1 19:24:25 2023 by rpki-client on console-fra.rpki-client.org