Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-m0-iNmufImS1P2hDQOwm3sTmiE.roa
File: 1-m0-iNmufImS1P2hDQOwm3sTmiE.roa (raw, json)
Hash identifier: fHzjmMAZ1II7VzXCEKtGejidH0z5ZZjQEHyu/ghePt0=
Subject key identifier: FA:6D:3E:88:D9:AE:7C:89:92:D4:FD:A1:0D:03:B0:9B:7B:13:9A:21
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018607EA2B40A5149985A5825E054394CFF2
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-m0-iNmufImS1P2hDQOwm3sTmiE.roa
Signing time: Tue 31 Jan 2023 13:00:32 +0000
ROA not before: Tue 31 Jan 2023 13:00:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210740
IP address blocks: 45.128.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:07:ea:2b:40:a5:14:99:85:a5:82:5e:05:43:94:cf:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 31 13:00:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa6d3e88d9ae7c8992d4fda10d03b09b7b139a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:44:6b:ad:3c:1f:46:60:59:ea:82:d3:fe:76:
ec:46:54:b9:69:ba:0c:65:ff:65:f6:6c:e4:26:45:
dc:b1:eb:2f:1a:ea:88:da:e0:68:4f:9f:95:e2:8b:
00:81:3d:6e:f2:a2:25:69:9d:82:1d:e9:e1:ce:37:
21:33:f5:94:c5:c0:4d:b2:d1:7d:64:a6:28:de:a7:
d5:c3:28:12:f3:6a:3e:3c:59:6f:dc:bf:20:4e:17:
0a:3f:5f:23:a4:73:9b:d0:aa:8a:f3:c9:e0:92:54:
7b:7a:73:54:14:48:c0:36:35:20:ef:0c:19:8a:aa:
ff:16:b1:ea:69:62:59:24:57:fb:e9:6c:30:e1:0f:
a7:e4:d4:41:fe:3d:6a:08:50:08:c1:e1:2c:05:61:
f6:2a:22:31:f4:57:56:b1:fe:a4:0d:26:f3:23:fe:
ee:7b:50:a5:cf:60:99:94:20:10:88:2d:e0:4f:38:
13:c0:83:b6:8f:4d:76:ad:63:b4:20:35:d0:5a:d2:
19:c5:d8:62:11:ac:38:05:f7:31:64:61:22:04:0c:
26:46:c9:81:52:9d:58:21:60:f1:89:d1:c5:d3:b7:
a3:c0:50:a9:e9:5b:10:81:d1:36:4f:d9:56:f8:d0:
dd:7d:82:2c:dd:9e:f6:9a:fb:61:32:81:28:d0:a7:
14:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6D:3E:88:D9:AE:7C:89:92:D4:FD:A1:0D:03:B0:9B:7B:13:9A:21
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-m0-iNmufImS1P2hDQOwm3sTmiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.197.0/24
Signature Algorithm: sha256WithRSAEncryption
02:98:5d:39:a3:7a:bc:6d:c8:7c:c1:ef:df:f3:9f:96:7a:c2:
42:dc:1a:51:2c:bb:0a:27:38:fd:a2:b5:52:9b:1d:ef:8a:a0:
16:84:9c:3e:73:1b:26:e2:6b:84:96:f6:cc:fa:d3:e9:3d:85:
88:b4:fb:83:92:02:ee:67:93:24:1e:97:65:31:1d:2f:9f:11:
4b:18:4a:41:9a:b1:ee:c4:d6:75:90:db:19:56:f9:86:95:c4:
71:44:d9:1f:ea:49:f6:3a:45:cd:42:20:3e:e7:74:c4:65:b0:
25:d1:3f:4b:d1:a4:27:59:a7:40:0a:b9:1c:fc:4b:e5:7b:9b:
08:da:79:02:98:13:41:d9:f5:c3:54:e2:bf:a8:ff:00:2e:f7:
3d:34:0a:ed:ca:5b:bb:81:55:58:29:99:f5:ce:d3:12:e6:70:
21:07:db:90:3d:aa:b1:33:f0:6a:b9:73:c4:41:58:53:2f:99:
18:c8:95:4a:a7:38:0b:b9:ca:f7:87:d1:fc:94:82:c9:e7:9d:
21:e5:3c:12:67:02:6d:5a:3f:f4:38:55:b9:1a:3b:3f:b7:21:
90:4c:43:d3:1b:59:e6:f2:5a:7a:2f:cf:ac:9e:2f:d8:7a:bb:
0a:43:1a:99:93:ae:83:ad:f1:fa:99:4a:fb:a5:37:d8:93:49:
4b:3f:8d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:43 2024 by rpki-client on console-ams.rpki-client.org