Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/rKj9W7qCoxDtg-ueh0pcbTXtg5Q.roa
File: rKj9W7qCoxDtg-ueh0pcbTXtg5Q.roa (raw, json)
Hash identifier: VW8RoZJ5WzRMS2mMg9xoGaxj3+H90X9leWuZu0weZ+8=
Subject key identifier: AC:A8:FD:5B:BA:82:A3:10:ED:83:EB:9E:87:4A:5C:6D:35:ED:83:94
Certificate issuer: /CN=bfff419659f54df378792b602c0092c353988ec8
Certificate serial: 01856DCAC4C5C7FEA4CF052C5B9FA07CFAF7
Authority key identifier: BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/rKj9W7qCoxDtg-ueh0pcbTXtg5Q.roa
Signing time: Sun 01 Jan 2023 14:44:43 +0000
ROA not before: Sun 01 Jan 2023 14:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208342
IP address blocks: 45.129.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:c4:c5:c7:fe:a4:cf:05:2c:5b:9f:a0:7c:fa:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfff419659f54df378792b602c0092c353988ec8
Validity
Not Before: Jan 1 14:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aca8fd5bba82a310ed83eb9e874a5c6d35ed8394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b0:4f:6f:51:b5:83:0e:bb:43:c8:1c:6b:b1:
96:17:3a:17:e6:09:98:31:f7:56:0d:01:ad:a4:4b:
09:38:39:d7:71:a8:0b:9c:13:f5:26:2b:44:82:f1:
eb:cb:87:ab:8e:5e:aa:13:9b:b0:a5:2f:ca:1e:1a:
8e:19:d3:7b:39:49:b5:b9:c4:04:e5:fa:8c:a2:c0:
2c:be:9f:18:fa:c2:74:66:61:af:e6:f3:97:f7:08:
7e:8b:5f:fd:d8:95:e4:73:19:f8:10:8f:fc:ad:16:
43:43:40:1f:3d:e2:53:27:47:f9:8e:8a:48:5d:0f:
d8:50:b3:1c:38:68:fb:b0:03:c3:3c:1a:2b:6c:07:
d5:1e:4a:e2:24:73:ae:d6:69:2d:b2:ab:f1:25:35:
d9:f0:00:c7:8b:c0:b8:1c:8f:0e:f2:c8:cd:90:94:
62:cc:99:f7:24:cb:bb:8d:ee:98:66:8d:a6:28:cc:
14:bb:2b:5b:c4:ec:63:cc:e7:66:7b:bf:7c:e9:19:
77:94:40:62:62:38:f2:27:ba:76:cf:d4:9e:a1:ab:
02:a3:55:70:22:03:97:a4:46:63:50:62:12:92:e1:
19:f1:5b:4c:c2:42:0a:27:0c:38:4f:01:0f:6b:8a:
6e:34:aa:58:11:c9:04:f7:32:8c:79:19:26:8a:cc:
63:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A8:FD:5B:BA:82:A3:10:ED:83:EB:9E:87:4A:5C:6D:35:ED:83:94
X509v3 Authority Key Identifier:
keyid:BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/rKj9W7qCoxDtg-ueh0pcbTXtg5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.244.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:2b:9d:2a:c7:66:88:1e:65:eb:4c:88:ec:c9:cb:d7:5a:a8:
fa:b7:d6:e0:b3:cc:af:ab:2b:fc:1b:2a:5d:8b:8a:5c:f8:4f:
ce:2b:91:da:1d:27:aa:5e:b1:8d:95:dd:b2:4a:74:ac:3a:49:
ab:2c:e5:83:ef:34:da:53:4c:f4:b7:a1:42:80:b3:45:1a:3a:
03:06:8b:7d:aa:ef:57:13:0a:5a:04:53:35:29:cc:32:9a:80:
01:c9:b0:66:70:b5:d0:88:dc:b1:c7:e5:c8:26:de:b4:c3:5d:
00:b9:4a:c8:10:06:d6:bf:a1:8c:82:ee:7e:da:5c:05:76:0c:
3a:79:ce:ec:ad:d0:78:2b:6f:b2:a4:c1:3b:f2:db:34:44:c3:
ff:8a:b7:29:63:07:c6:1a:ff:b1:37:a1:0b:ab:64:b9:69:85:
fd:e7:c3:0a:dd:fb:b8:6a:30:15:87:55:ca:bb:6e:e1:62:50:
6d:23:7d:54:50:07:47:6b:68:07:c2:bb:fa:fd:34:fd:e8:8a:
13:60:16:a0:cd:a3:a7:4d:1a:9c:db:66:1d:d5:3a:56:be:76:
b8:6c:94:4d:6c:5a:9a:7e:2a:06:f4:f3:8d:54:70:8d:a4:c5:
cd:88:f6:47:87:bb:da:61:44:58:5d:2f:94:61:f7:0c:74:3b:
1a:de:2b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:19 2024 by rpki-client on console-ams.rpki-client.org