Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/ouwQQSswSFlENiBulBDDlHmwhu8.roa
File: ouwQQSswSFlENiBulBDDlHmwhu8.roa (raw, json)
Hash identifier: DEO3CXhtIKvQoBOQcbYHOtPkUrFasaYkcrtcSIuQNFA=
Subject key identifier: A2:EC:10:41:2B:30:48:59:44:36:20:6E:94:10:C3:94:79:B0:86:EF
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 0185BF5F6D123FEF367475B8ACD6876F60EC
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/ouwQQSswSFlENiBulBDDlHmwhu8.roa
Signing time: Tue 17 Jan 2023 10:56:20 +0000
ROA not before: Tue 17 Jan 2023 10:56:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.137.128.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:5f:6d:12:3f:ef:36:74:75:b8:ac:d6:87:6f:60:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Jan 17 10:56:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2ec10412b3048594436206e9410c39479b086ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bc:30:a0:a6:23:d8:fa:ea:49:db:a6:89:5c:
21:26:fb:1e:8e:6d:93:9a:bc:70:26:fe:9e:de:83:
a1:2b:c5:47:51:20:88:cf:7e:f6:8f:57:77:86:29:
ed:b2:dd:a8:90:94:55:4e:eb:1b:32:aa:a5:2e:ef:
eb:4b:1f:f7:96:39:66:e8:9c:c9:3e:99:3e:3c:c7:
a6:52:c2:45:44:f7:b3:f6:0d:b3:d8:70:7d:ea:ee:
e9:be:92:7d:9f:df:66:8a:00:8f:f6:21:2c:f1:e8:
f8:a5:2e:a6:18:64:ff:63:e4:1f:6e:0b:57:ff:ed:
5a:fb:51:ca:3d:5d:23:ab:61:c5:3c:07:cc:b4:59:
19:94:06:a2:76:d1:dd:62:30:0c:bc:ce:da:b0:65:
ce:6c:81:da:6f:cb:b0:b5:a7:37:0f:00:7f:2d:17:
f4:77:34:0b:f2:89:d2:a4:4a:c3:70:30:d1:09:e2:
04:0a:e8:a6:26:e2:40:5e:37:34:38:c4:f3:60:ac:
66:62:60:73:c0:19:df:82:7b:7e:fd:a9:ec:99:ed:
12:b4:af:00:93:a8:de:18:41:28:88:cd:30:18:25:
c9:68:13:e2:3b:80:ff:7d:28:f3:da:3d:6f:b3:b3:
8e:4c:ca:37:65:f6:78:39:fc:28:af:f1:0d:02:d5:
12:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EC:10:41:2B:30:48:59:44:36:20:6E:94:10:C3:94:79:B0:86:EF
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/ouwQQSswSFlENiBulBDDlHmwhu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.128.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:08:e8:8a:5a:39:85:0d:ba:8d:61:a4:c7:59:a6:1d:b2:cc:
d2:35:2b:cf:84:b5:ba:fc:80:01:37:c0:71:92:43:7d:a0:42:
c5:4a:18:38:56:60:50:0a:36:97:7b:15:7b:ef:62:1d:d9:ee:
5e:2e:8b:5c:a5:84:d0:e8:d2:13:d0:22:bb:bb:60:8c:09:29:
b2:ae:d2:73:06:3e:1f:6d:4e:62:9b:ca:e6:1f:a2:bd:64:2a:
50:d1:49:58:9b:55:1e:6f:83:14:38:89:d4:62:66:f0:c8:1a:
7c:eb:d1:28:51:ac:19:f8:cf:3b:af:f1:60:43:fc:b2:77:a8:
82:cf:b5:c4:07:aa:b6:66:0a:16:a1:a9:c8:2f:3e:bf:62:9e:
7b:c2:b0:4d:d4:90:98:ad:a9:ac:47:de:3a:d3:04:ed:2e:3a:
39:40:3c:41:51:8d:f1:e0:f1:04:fb:b9:68:53:53:35:b8:16:
95:fd:2f:cd:8c:2a:9f:48:05:99:b6:74:c3:08:33:0e:e1:df:
f3:32:5b:dd:fd:52:c7:1e:24:13:fe:da:bf:c7:45:a9:c8:71:
3b:29:a9:e9:ea:a9:9c:07:4b:b3:9c:9f:f9:98:74:88:11:b0:
2a:7d:20:77:02:92:ac:c2:7e:2b:35:6b:44:4f:15:8a:1a:d3:
3d:67:42:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 16:15:50 2023 by rpki-client on console-fra.rpki-client.org