Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/ZVcstp0oYMVE8-m64r-G9TtMhFc.roa
File: ZVcstp0oYMVE8-m64r-G9TtMhFc.roa (raw, json)
Hash identifier: WcrxsF9oOM1D9FVVwaTjTW61YXx+5z7oVzJczhVyux0=
Subject key identifier: 65:57:2C:B6:9D:28:60:C5:44:F3:E9:BA:E2:BF:86:F5:3B:4C:84:57
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 018650BA01B929E7D5BDA8D3BE60275C975D
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/ZVcstp0oYMVE8-m64r-G9TtMhFc.roa
Signing time: Tue 14 Feb 2023 16:20:12 +0000
ROA not before: Tue 14 Feb 2023 16:20:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11351
IP address blocks: 45.147.68.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:ba:01:b9:29:e7:d5:bd:a8:d3:be:60:27:5c:97:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Feb 14 16:20:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65572cb69d2860c544f3e9bae2bf86f53b4c8457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:f5:bb:16:55:db:e0:01:cb:24:9b:08:66:
f6:1e:5f:90:7c:91:cb:9b:61:68:3a:4c:c7:9a:9a:
a7:24:ba:98:c9:e3:75:97:e0:08:60:02:aa:6b:39:
f9:e9:d4:58:c7:0c:f8:36:20:45:fa:7c:27:d1:36:
04:f4:b3:fc:c7:79:c2:74:d0:d1:ac:b6:bd:8d:3d:
ec:fd:f9:c5:24:b9:74:e4:bd:fd:e2:3f:c6:8d:92:
66:d6:00:2b:32:05:03:b9:e5:51:b1:b0:98:ea:06:
59:fb:0b:0c:d6:11:9d:8c:d9:92:bd:35:1d:b1:32:
b0:7b:d1:04:17:c4:71:bf:ce:ed:8d:46:56:a1:fe:
1d:5f:ea:d6:dd:05:31:6c:72:49:c5:b1:9a:4d:0b:
9c:8b:ad:f1:b1:37:b2:41:60:f6:c9:30:10:cd:f2:
e0:44:f8:dc:bd:6c:80:7b:4f:d4:1c:0b:91:c2:f0:
5f:c7:14:e0:d0:e3:83:78:e5:2e:4b:24:00:54:e4:
ca:ab:b5:9b:b6:5e:8c:52:75:dd:75:f2:50:86:43:
bc:89:db:a9:cd:41:4b:83:a6:8e:ac:82:3f:db:b7:
c0:d4:cb:78:d0:89:86:90:8a:2a:ca:b9:23:f9:e5:
53:75:c8:b4:66:fa:2d:a1:16:3c:58:69:21:ee:99:
22:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:57:2C:B6:9D:28:60:C5:44:F3:E9:BA:E2:BF:86:F5:3B:4C:84:57
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/ZVcstp0oYMVE8-m64r-G9TtMhFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.68.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:37:2f:ee:49:11:82:84:9f:4c:bf:19:a1:d5:da:67:be:77:
ed:a8:fb:d9:50:91:8b:aa:0a:22:63:4c:a7:5c:9d:ff:07:47:
6c:ad:53:91:1e:18:de:14:49:4e:30:03:95:d2:6b:ed:48:f3:
b4:de:fd:ee:de:eb:e7:60:ee:44:04:a0:da:26:69:6f:43:3d:
2a:59:a6:2f:93:3f:c9:c2:5f:e3:b5:fa:d6:60:31:4a:6e:04:
3f:8e:52:29:4d:c1:52:7d:45:08:6e:d5:32:41:b7:85:8d:c5:
e7:1a:cc:7a:c2:db:98:64:58:d8:30:11:5d:4b:60:1e:04:3a:
76:63:27:b1:9a:eb:cf:ac:33:d2:e7:47:8f:e1:37:31:75:7d:
05:94:84:49:dc:c9:1a:09:4b:6c:15:91:58:7c:58:6d:fd:1c:
cf:f4:e1:2c:27:b0:12:1c:35:f7:f9:45:b6:93:be:d0:f5:af:
09:bd:39:76:01:a1:d4:0b:8f:2f:60:ae:8a:b0:88:6a:b4:fd:
c0:ee:1b:4d:04:d5:a5:c6:3b:f6:2d:9e:45:1a:ec:02:1a:d2:
84:ea:51:95:70:6a:dd:be:56:39:9f:fa:51:65:86:d4:a8:33:
02:79:e3:a9:65:70:df:89:ba:c6:a0:90:ba:87:9e:3c:2a:c6:
7d:ad:0a:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:50 2023 by rpki-client on console-ams.rpki-client.org