Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/bVbmFAzh5uHvoVKu8H9-nB3xlXs.roa
File: bVbmFAzh5uHvoVKu8H9-nB3xlXs.roa (raw, json)
Hash identifier: K//Uw/JraaavkhgXno6jznKSc0IzFnGbsAW3ne8N+8M=
Subject key identifier: 6D:56:E6:14:0C:E1:E6:E1:EF:A1:52:AE:F0:7F:7E:9C:1D:F1:95:7B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018B4E417AED3BD9F746D7B78F2D7EAA62B4
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/bVbmFAzh5uHvoVKu8H9-nB3xlXs.roa
Signing time: Fri 20 Oct 2023 18:03:16 +0000
ROA not before: Fri 20 Oct 2023 18:03:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3170
IP address blocks: 45.87.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4e:41:7a:ed:3b:d9:f7:46:d7:b7:8f:2d:7e:aa:62:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Oct 20 18:03:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d56e6140ce1e6e1efa152aef07f7e9c1df1957b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:67:17:16:cd:40:a4:71:80:95:12:54:19:c8:
f4:84:bf:d4:2e:3d:9c:fc:11:72:8a:49:a1:5c:6a:
aa:87:07:fc:a1:58:b2:fc:36:25:46:2a:ec:a3:67:
15:d4:66:ea:3e:53:a9:ab:0b:2c:dc:29:62:56:70:
77:63:58:38:18:b6:05:56:28:bc:64:33:84:e6:43:
bf:51:6b:b8:51:42:36:a3:60:4b:4e:52:da:d2:20:
fd:98:95:16:cf:7a:41:9a:ac:d5:1f:af:53:eb:a9:
c8:f8:3e:92:64:88:ae:94:15:fb:d3:f9:df:c1:45:
0c:42:4f:1e:60:ac:4b:6b:36:ba:3d:0b:14:98:fe:
27:8e:47:a5:b1:26:d5:0d:d9:32:c6:55:90:13:85:
9a:b5:d0:0a:c6:3e:17:73:ce:8a:4d:a6:10:18:71:
99:5a:f0:13:b9:dd:b9:11:37:64:7e:39:bc:72:0f:
e3:59:df:53:c4:7f:06:05:95:4d:5d:71:9e:12:3e:
71:8c:6b:73:c1:99:40:d9:05:16:79:d0:7a:a7:83:
89:69:af:80:89:3a:c4:4b:fc:7f:75:9d:52:42:79:
bc:07:72:40:bc:4b:10:e4:9b:42:4f:2e:46:1e:ad:
72:bb:9c:03:0c:a2:77:fa:e9:90:1d:86:16:ab:58:
5e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:56:E6:14:0C:E1:E6:E1:EF:A1:52:AE:F0:7F:7E:9C:1D:F1:95:7B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/bVbmFAzh5uHvoVKu8H9-nB3xlXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.28.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2f:5e:dc:38:1c:7b:0e:d3:8d:02:db:b1:4a:6c:ee:66:81:
09:81:cf:aa:cb:04:64:75:55:ec:64:4b:8d:c2:9d:78:77:03:
48:0d:57:b5:29:ec:95:8c:15:22:c5:b7:96:c2:4d:ac:be:e2:
f2:50:d9:78:61:9f:c5:40:fc:42:11:20:9c:51:c3:b1:76:81:
f7:f3:5a:23:8e:d8:22:c9:14:56:34:54:8a:e5:54:d5:fd:ce:
0d:1b:98:1d:85:25:05:e9:6d:42:ce:f4:70:b1:dd:17:e5:48:
10:7e:5c:73:d3:25:4b:09:72:aa:36:89:45:16:b2:5f:b2:8a:
7f:c7:e1:48:be:2c:9e:55:74:01:c0:cc:a4:55:20:79:c8:8f:
78:26:5c:ae:bf:5b:f6:2c:81:d8:7d:4f:69:3c:f4:8b:b5:ff:
85:c3:77:9d:29:dc:07:14:e7:73:c6:89:56:0f:93:c0:f5:c2:
76:e3:41:73:52:65:c1:f8:9e:16:38:53:9c:6d:d3:71:62:14:
e3:19:80:1c:25:4d:e2:89:df:c0:82:b2:96:78:c8:0c:c8:73:
77:75:b7:7a:10:74:25:fd:f1:24:b7:99:11:a6:c4:f2:f2:7b:
62:ad:4c:22:71:f9:e5:bc:fa:7d:9b:0a:19:02:eb:5b:73:89:
95:b2:6f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:43 2024 by rpki-client on console-ams.rpki-client.org