Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/NCDyLEZaSk5ys28JsYEJNsCjP8g.roa
File: NCDyLEZaSk5ys28JsYEJNsCjP8g.roa (raw, json)
Hash identifier: DZmPO2Rc0+70K3vnvSUqe6yGZNxuA78Fn29WIr1YMdA=
Subject key identifier: 34:20:F2:2C:46:5A:4A:4E:72:B3:6F:09:B1:81:09:36:C0:A3:3F:C8
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0188DC1B1DB8364EC145DECF4ED42C9C0881
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/NCDyLEZaSk5ys28JsYEJNsCjP8g.roa
Signing time: Wed 21 Jun 2023 03:59:04 +0000
ROA not before: Wed 21 Jun 2023 03:59:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211620
IP address blocks: 45.145.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dc:1b:1d:b8:36:4e:c1:45:de:cf:4e:d4:2c:9c:08:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 21 03:59:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3420f22c465a4a4e72b36f09b1810936c0a33fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:ff:02:25:8f:82:f8:2d:a1:12:1b:34:2d:
a4:78:71:1b:dd:50:db:bc:53:66:a3:86:e2:ab:9d:
c4:b3:33:bf:c7:7d:93:ad:1a:6b:e8:96:94:0b:99:
f7:11:2e:80:aa:f4:50:9f:7c:ea:b2:a1:da:92:90:
4c:1c:16:e3:e3:dd:a6:9e:cd:67:e8:10:08:23:fc:
d6:62:0b:8c:ac:f6:76:25:27:bf:09:33:18:85:88:
e6:69:b3:f6:ab:74:8f:39:85:a5:ab:32:ff:72:3c:
70:a0:5a:77:67:49:1a:2e:0f:24:64:8f:3b:9c:8f:
ef:e0:1c:5b:6b:23:06:fc:84:ed:9f:ad:61:6e:65:
84:2a:d0:58:37:73:65:65:fc:85:f9:1d:d8:91:23:
38:c2:44:b3:a6:bb:4e:d1:61:8d:80:e7:20:b7:7c:
10:b4:5a:d6:bc:4b:c7:61:b4:89:4b:9b:42:04:1a:
ab:b9:98:e2:01:ff:46:b3:7d:7f:61:d7:26:72:49:
bc:f1:12:6d:74:83:db:eb:e8:f3:f5:37:f1:2a:19:
c8:ec:6c:f1:fb:9f:a9:93:83:f4:3f:a1:25:b7:b5:
70:7d:d7:d5:c4:c8:9d:88:7c:88:e9:ee:27:61:31:
06:1f:82:92:b4:5f:36:9b:c5:5e:50:95:81:69:72:
1c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:20:F2:2C:46:5A:4A:4E:72:B3:6F:09:B1:81:09:36:C0:A3:3F:C8
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/NCDyLEZaSk5ys28JsYEJNsCjP8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.248.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:0c:5e:42:6a:c6:7a:94:ff:35:2e:ae:4a:44:45:73:9c:6c:
d3:ac:2b:38:b0:3e:d4:cf:0f:03:19:98:3b:90:48:b4:ef:97:
91:f2:9f:60:2b:d4:6b:24:30:5a:d9:67:76:3c:9d:c4:cf:df:
54:22:18:f4:62:a7:f8:aa:f0:d7:b8:4d:50:67:c9:d6:13:5d:
90:d4:5b:c4:d3:11:fa:4e:0a:a8:e0:87:12:91:08:7d:0b:61:
fe:78:6e:2a:9e:4e:ff:af:9e:a2:f5:9c:2e:ce:67:fb:4c:51:
d3:72:c4:0a:0f:72:0b:32:d5:cf:87:af:9a:ea:71:a1:be:5c:
77:36:57:73:82:08:8d:e0:18:05:53:63:94:6f:01:3c:22:11:
99:09:e1:2f:84:d8:c5:ba:85:04:0f:81:a9:72:4b:56:cb:54:
9c:af:7f:12:86:dd:10:4d:45:0a:37:96:c6:49:c2:0d:93:ea:
ed:fb:45:a3:4f:b5:0c:63:db:11:5b:16:ee:f7:a0:fb:46:03:
95:d0:4f:26:bd:48:1a:c7:46:24:31:75:9c:eb:88:32:82:3d:
6e:fc:cc:ca:33:08:01:f2:4d:6c:7b:21:cd:2d:db:a8:e8:a7:
07:01:80:5e:88:d5:af:70:06:d3:9a:3d:f5:71:f8:a7:cd:33:
80:42:8a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:57 2024 by rpki-client on console-fra.rpki-client.org