Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/1bqyNxlmqluxLoyq7IbXGQvHeyE.roa
File: 1bqyNxlmqluxLoyq7IbXGQvHeyE.roa (raw, json)
Hash identifier: x3Eghk5usTNF3lCGHR6+4sxFak6QiTLQcgNvNm96DAg=
Subject key identifier: D5:BA:B2:37:19:66:AA:5B:B1:2E:8C:AA:EC:86:D7:19:0B:C7:7B:21
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0186FB7755B1678E71BD7EDECD56B4ACF9B1
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/1bqyNxlmqluxLoyq7IbXGQvHeyE.roa
Signing time: Sun 19 Mar 2023 20:02:27 +0000
ROA not before: Sun 19 Mar 2023 20:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50565
IP address blocks: 45.143.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fb:77:55:b1:67:8e:71:bd:7e:de:cd:56:b4:ac:f9:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Mar 19 20:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5bab2371966aa5bb12e8caaec86d7190bc77b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:60:1a:6b:a3:09:53:b2:2a:2e:44:17:6b:4d:
23:d3:bc:5b:33:dc:4a:bc:b8:e2:ce:f4:9b:ef:58:
9e:7d:f0:04:b0:6b:73:53:fb:7a:e6:39:75:7a:7e:
59:51:41:35:ce:c2:77:54:3e:d7:02:35:16:7d:cc:
be:16:97:38:5f:64:d9:a5:e7:4f:8f:1b:0f:8d:7d:
7f:b1:bd:57:b7:58:c0:c2:1b:2e:65:19:97:f3:3b:
d0:39:de:76:5b:9b:c1:17:3c:eb:3e:f0:02:c0:97:
1f:bb:45:ec:e4:b9:ce:78:01:78:90:cd:16:3b:89:
10:de:c2:7b:3c:92:88:f3:ea:4b:9d:23:b3:d6:3c:
4b:c1:54:20:63:22:3a:9e:83:a8:a2:43:91:45:cb:
9a:e6:e7:db:a0:a1:a2:41:e3:90:8d:e5:7e:23:37:
20:fd:c7:45:9f:6f:52:a0:c3:cc:da:ff:f6:e3:26:
1a:f2:b8:42:f3:fd:23:80:5d:13:81:5e:a4:16:5c:
12:46:47:ea:82:b9:24:d7:b2:c6:6f:59:45:ed:9f:
8c:b9:d9:e7:6e:39:81:21:5b:ec:84:d9:dc:d0:f3:
3e:7a:f9:3d:05:46:04:7b:e7:d9:ff:97:a8:ea:79:
9e:83:d5:35:82:a3:aa:db:8b:7a:ca:ed:3e:32:90:
f1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:BA:B2:37:19:66:AA:5B:B1:2E:8C:AA:EC:86:D7:19:0B:C7:7B:21
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/1bqyNxlmqluxLoyq7IbXGQvHeyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.97.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:97:81:08:a1:83:31:ae:2f:35:f3:05:c8:c3:36:4e:a8:fa:
65:f2:8d:74:e6:86:1f:e8:68:c6:5d:1f:cd:39:79:bd:32:cc:
6a:b1:e2:ad:3a:3e:e9:82:b8:3f:8d:85:59:08:76:e8:7b:44:
8d:13:d7:91:c2:b0:5d:cf:3b:49:2c:16:ce:a6:7a:f0:e1:84:
a8:11:38:08:ae:5f:da:39:2a:c4:13:7c:35:a8:01:6f:55:ef:
66:1a:cc:b6:51:bd:f8:63:fe:2f:55:ec:4e:38:01:50:60:9c:
ec:8b:81:2c:43:50:71:5e:c0:bf:c5:b5:ff:e2:6b:8a:92:0a:
34:f8:c9:4a:75:94:77:be:ad:ba:2a:e0:a0:eb:b2:0e:6f:9e:
92:4b:39:a5:3d:bf:27:57:86:e9:1f:b5:00:2d:6a:a2:46:5e:
a2:d4:1b:4e:ed:64:8e:45:77:c0:be:de:5c:3b:6e:10:3f:63:
73:fe:6d:ce:e9:4b:07:be:e5:d8:b7:9a:6c:ef:82:5d:cc:53:
f7:87:7c:fe:df:fd:fd:5a:01:d8:41:f1:74:5d:11:bf:29:c9:
3e:c5:b1:23:4a:34:97:1c:ed:df:d8:07:2d:ca:63:5d:a4:53:
8c:c8:67:18:03:96:08:bb:1e:8f:ea:bc:7d:7e:27:59:1c:6c:
f4:82:c8:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:42 2024 by rpki-client on console-ams.rpki-client.org