Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/rpqukGjjeCwuUhSZ_A7azT1WggY.roa
File: rpqukGjjeCwuUhSZ_A7azT1WggY.roa (raw, json)
Hash identifier: QDyKCukj8VJ43ZhDfEYK9vOGoycGeXUJML8H4WcMAD0=
Subject key identifier: AE:9A:AE:90:68:E3:78:2C:2E:52:14:99:FC:0E:DA:CD:3D:56:82:06
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 01857295E57B72051CD2D56C5A69318B1AD5
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/rpqukGjjeCwuUhSZ_A7azT1WggY.roa
Signing time: Mon 02 Jan 2023 13:05:04 +0000
ROA not before: Mon 02 Jan 2023 13:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60079
IP address blocks: 45.15.104.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:e5:7b:72:05:1c:d2:d5:6c:5a:69:31:8b:1a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Jan 2 13:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae9aae9068e3782c2e521499fc0edacd3d568206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d5:d4:f9:9b:f2:1a:f1:0e:3f:7e:38:af:7c:
6b:83:2a:e2:71:b9:29:a4:7b:cc:e2:ff:72:ad:28:
3d:6e:e0:75:2d:41:19:9f:83:bd:58:1d:82:f3:7c:
bf:95:2d:b1:04:b1:b1:93:d4:36:58:b0:1a:a3:44:
c9:84:cb:9d:00:1b:18:97:79:b2:ad:81:80:5b:ec:
08:b3:e6:74:94:d7:61:1b:d7:1b:8d:75:2f:39:1d:
57:89:85:94:09:ae:0e:c7:62:56:e3:9e:18:b4:ca:
3e:cd:ed:e7:67:fe:17:cd:40:a5:c0:fa:b1:76:8c:
23:ed:15:5a:6f:be:07:3c:c2:7c:f5:e3:03:19:04:
0f:b7:06:15:b0:cb:4f:aa:cc:0d:9f:97:8e:17:6f:
a5:d0:be:65:3f:3c:ba:97:2a:5a:78:5c:7b:57:7e:
0a:af:f3:0e:88:1c:f9:5a:7a:7e:2a:1c:ce:3c:d2:
cb:76:3b:2a:e3:44:1d:a3:a9:eb:35:d7:32:63:00:
62:e0:6a:58:9c:b1:c0:52:e5:f9:be:b4:f2:ff:11:
3f:09:bb:64:26:30:ed:11:a7:46:d8:d2:47:09:80:
4d:e7:3d:e9:3c:e3:e3:ed:9d:53:b7:56:2b:f0:bf:
36:28:08:de:7b:23:56:9e:9f:82:3c:c7:5f:29:69:
90:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9A:AE:90:68:E3:78:2C:2E:52:14:99:FC:0E:DA:CD:3D:56:82:06
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/rpqukGjjeCwuUhSZ_A7azT1WggY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.104.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:1c:09:4b:cb:bc:75:b4:9c:2c:13:8c:48:51:fd:a8:69:ca:
75:d7:f2:f4:e7:64:f7:82:e2:db:26:0d:e7:d3:25:4d:95:3d:
64:d7:73:87:6f:23:0d:77:6f:6d:fb:51:20:da:fe:4e:b6:c1:
46:11:ff:31:43:88:bf:f0:d1:ef:59:69:8a:23:0a:f9:1c:2d:
40:25:8d:74:34:e9:49:ad:0d:bb:3f:49:0c:cc:ed:96:d7:72:
b0:2f:ca:91:35:c6:2b:42:c6:12:0e:0c:96:9e:7d:d0:48:c6:
cb:50:b8:e0:a0:f1:8a:f0:5d:d0:8d:75:70:98:5a:de:62:5e:
a9:f7:8e:72:c5:c9:17:11:db:82:f9:98:75:93:a6:f0:c0:98:
12:df:9a:cc:4a:38:9c:c4:1b:ad:86:f3:e7:34:ea:9b:84:fc:
45:bc:59:72:c0:75:fd:80:5c:0d:8c:67:c0:04:e7:5c:f9:22:
e6:d1:f5:fc:a4:f8:bb:ee:7e:8d:21:ce:2d:8f:ed:2b:3a:87:
9e:41:84:11:98:f4:8f:f7:44:45:94:d1:d2:e8:3f:18:df:8f:
eb:09:f5:49:a0:84:aa:23:a8:b8:35:1c:7e:10:90:d1:8c:b3:
ac:f1:93:fa:13:ba:b9:79:91:36:63:61:b1:a6:9e:1f:e6:23:
29:f7:1c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:16 2023 by rpki-client on console-fra.rpki-client.org