Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/vBlKGXvQUKnBPTHIzNODHX5ZsdU.roa
File: vBlKGXvQUKnBPTHIzNODHX5ZsdU.roa (raw, json)
Hash identifier: 65kCYt2CpqI9idhsI1mXGKUeqJHyfKXFZnL3zsNGOuc=
Subject key identifier: BC:19:4A:19:7B:D0:50:A9:C1:3D:31:C8:CC:D3:83:1D:7E:59:B1:D5
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 01856FF95CA3778AA1C3E2D1F2490A89A4CA
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/vBlKGXvQUKnBPTHIzNODHX5ZsdU.roa
Signing time: Mon 02 Jan 2023 00:54:51 +0000
ROA not before: Mon 02 Jan 2023 00:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397423
IP address blocks: 45.11.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:5c:a3:77:8a:a1:c3:e2:d1:f2:49:0a:89:a4:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jan 2 00:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc194a197bd050a9c13d31c8ccd3831d7e59b1d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d8:6e:2f:e0:1c:67:34:6f:0a:60:4b:59:77:
e5:32:73:f0:4d:43:dd:41:de:b6:49:62:e0:6a:8d:
04:60:cb:07:7a:49:d6:f6:1f:01:5a:21:77:db:5a:
a2:4b:01:b7:21:2a:56:5b:42:6d:db:3a:84:22:87:
82:68:5a:aa:1e:18:ef:73:74:3f:cc:bf:71:53:0d:
d3:75:a8:6a:74:55:24:4b:a6:a9:95:f4:fe:96:3e:
12:6b:85:c6:c2:a2:cc:bc:7d:7d:3f:f6:d1:2c:94:
ef:1d:ea:8a:d3:2e:11:f5:55:28:f4:67:f7:9a:40:
e0:55:e2:a2:fc:9a:e1:32:ab:9a:21:f1:83:c7:e4:
dc:14:a3:6c:84:c9:90:a9:b4:72:2c:3c:6a:1b:56:
cf:28:a5:48:d9:c8:81:a6:80:7e:90:f2:e5:7a:4a:
2b:b7:11:05:e5:2f:85:32:69:16:d8:e3:19:4c:57:
7f:f8:d0:d5:db:eb:e8:50:c6:07:a3:39:76:fb:30:
93:85:ff:60:ba:c1:99:e0:8e:06:a4:7c:31:20:77:
ef:50:93:81:29:15:a4:d8:83:cd:ed:86:9d:71:2e:
07:a7:8e:cf:a5:aa:2b:c0:e1:87:7b:a3:56:41:8e:
e9:02:ac:ea:f9:6b:04:56:c3:62:11:49:10:69:5c:
41:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:19:4A:19:7B:D0:50:A9:C1:3D:31:C8:CC:D3:83:1D:7E:59:B1:D5
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/vBlKGXvQUKnBPTHIzNODHX5ZsdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.186.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:46:a2:17:5b:6f:cd:41:09:f2:11:2f:f4:4a:ab:0a:6d:7d:
d5:f6:59:d2:ce:f8:3e:1c:89:05:25:da:7a:c5:8b:e1:e1:72:
29:58:e5:48:42:25:ac:c7:25:ab:25:46:14:8d:e1:68:98:51:
93:09:2d:52:ce:d3:fe:6b:c2:12:e8:ec:67:3b:99:da:70:7b:
6a:e4:c4:f5:10:59:90:d7:6d:86:54:55:a2:ab:de:01:61:7a:
ae:f1:1f:16:03:90:a6:83:c2:d2:db:d6:da:dc:11:b3:67:b0:
57:83:b4:e9:41:e2:2f:d0:03:77:1f:95:60:0c:f1:c2:5b:52:
1b:52:06:57:17:4c:60:16:97:4b:93:4d:66:49:cc:b0:2f:30:
9e:fe:4a:bb:c8:a1:73:66:99:1a:a1:84:c4:80:f1:a3:73:16:
c4:53:b0:bc:d4:c5:c7:e9:d9:c2:d9:2c:1d:06:9b:9f:c3:b8:
63:1d:be:44:13:30:50:8b:b7:40:e8:00:33:69:34:d1:b1:b9:
fa:f5:6c:14:6d:5d:11:de:9a:a2:ae:94:79:2c:88:29:cc:54:
7d:22:be:1a:59:23:54:bd:6b:7d:ce:c6:0c:ab:cf:ce:1e:5c:
4c:10:60:f1:d4:26:23:ed:45:c1:70:1d:00:1d:bf:38:66:9c:
0a:d1:7d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:00 2024 by rpki-client on console-ams.rpki-client.org