Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nVw86MOClPUxE5V7wZrSn6jlEow.roa
File: nVw86MOClPUxE5V7wZrSn6jlEow.roa (raw, json)
Hash identifier: 7eaJHUSL45y6DKHJ8/qeK3Uf1tWnbLXREJsXd50ErH8=
Subject key identifier: 9D:5C:3C:E8:C3:82:94:F5:31:13:95:7B:C1:9A:D2:9F:A8:E5:12:8C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FD77791EB911A1D427FE47796003E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nVw86MOClPUxE5V7wZrSn6jlEow.roa
Signing time: Mon 02 Jan 2023 17:38:04 +0000
ROA not before: Mon 02 Jan 2023 17:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9050
IP address blocks: 45.90.146.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:d7:77:91:eb:91:1a:1d:42:7f:e4:77:96:00:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d5c3ce8c38294f53113957bc19ad29fa8e5128c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:05:88:56:b3:4e:2b:b3:39:17:86:7f:75:3a:
15:51:90:e6:a5:27:2d:c9:be:9d:bd:97:7b:5b:18:
c6:19:fc:a7:80:88:d8:d3:83:e9:39:03:89:09:df:
b0:94:29:ee:06:90:ff:72:a8:26:e8:95:f6:19:44:
31:f6:c6:60:af:ab:29:09:c0:46:bd:e3:d2:49:30:
fd:89:7a:e9:0f:dc:3a:60:b1:d7:26:e1:aa:f5:69:
d0:54:96:10:37:07:fe:96:69:ff:37:64:36:6e:57:
8e:f5:20:43:7c:a1:be:ea:5d:9c:10:6b:e2:9a:01:
ca:02:a7:b0:7a:5c:34:5d:0f:1f:09:bd:de:24:57:
eb:be:56:10:15:72:b3:74:a4:77:c0:62:64:74:46:
d7:79:dc:e4:fb:51:21:ae:e7:cf:e2:f3:eb:35:f9:
94:8d:73:ec:d1:ab:38:36:0f:f2:77:14:90:7f:76:
e4:5e:7d:e5:43:88:1a:cb:5c:73:29:ce:d1:ca:fb:
36:ec:25:92:96:ce:80:65:16:b6:98:37:53:53:95:
a2:65:61:20:d9:2f:68:b3:23:e3:ec:27:b4:4d:6b:
2e:0c:11:65:7f:21:8f:36:e1:5d:84:35:f7:b5:7c:
bc:5d:76:6d:51:93:09:cb:87:e2:8e:f4:1b:c2:93:
ed:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5C:3C:E8:C3:82:94:F5:31:13:95:7B:C1:9A:D2:9F:A8:E5:12:8C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/nVw86MOClPUxE5V7wZrSn6jlEow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.146.0/24
Signature Algorithm: sha256WithRSAEncryption
54:9c:44:47:ab:cc:4d:fe:65:f3:73:de:39:d5:68:c0:89:cc:
44:b0:0e:e3:32:ad:ce:fe:47:a2:c2:95:3e:f7:ee:dc:02:18:
14:69:47:4f:fc:d0:e1:23:18:f2:3e:7a:d4:dc:36:c3:aa:b9:
c3:fb:c1:ef:3d:82:6c:f2:fe:e4:77:37:b8:73:23:e0:83:95:
25:db:aa:3a:ab:0a:5f:14:1d:b7:e8:6d:67:9a:13:a8:64:21:
69:e1:13:00:69:ff:b1:25:2e:7c:5d:61:a7:d3:36:36:37:67:
3a:9d:aa:ea:b6:f6:2c:d1:3e:b7:3f:86:71:c0:64:a8:cf:61:
85:0c:e1:e8:1b:83:d0:c7:0b:4f:8c:0a:8b:0f:bb:d0:08:4a:
5f:56:f5:c7:1c:77:0c:87:f3:db:02:2f:81:06:be:91:6c:72:
68:0f:a7:87:63:4c:9e:c7:21:20:2b:ab:aa:c3:d2:02:d9:31:
50:5f:0b:f7:39:b0:6d:88:d8:18:a1:05:78:c7:60:93:42:4d:
b5:2c:11:76:c0:d4:57:eb:d2:d4:65:e1:94:95:20:d0:50:46:
3c:d2:2f:46:31:bd:e7:dc:7f:b2:03:4a:51:a6:25:65:b9:33:
be:0b:35:b6:1b:c9:fd:1a:e9:b4:84:a4:80:2c:8f:c7:0c:3b:
0a:17:3d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org