Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/8Y5V85kufRLaaV-K9lbfhwQowUg.roa
File: 8Y5V85kufRLaaV-K9lbfhwQowUg.roa (raw, json)
Hash identifier: WOuGXbBH4YtXg3cuiufCItBE+HVnhVd1W1z5atQTITs=
Subject key identifier: F1:8E:55:F3:99:2E:7D:12:DA:69:5F:8A:F6:56:DF:87:04:28:C1:48
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 01856E1456AB5E27B4607F746E972977BE04
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/8Y5V85kufRLaaV-K9lbfhwQowUg.roa
Signing time: Sun 01 Jan 2023 16:05:04 +0000
ROA not before: Sun 01 Jan 2023 16:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 45.81.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:56:ab:5e:27:b4:60:7f:74:6e:97:29:77:be:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Jan 1 16:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f18e55f3992e7d12da695f8af656df870428c148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3c:64:ce:d4:0d:a8:e5:1f:b4:56:0b:a0:ea:
93:96:86:10:e5:49:30:69:d6:2c:3e:22:54:66:2b:
e5:77:cb:f4:cd:51:c5:e3:e1:0a:03:0a:21:0c:e3:
59:cf:97:94:0d:f5:cd:d0:ed:fb:ac:0e:5d:aa:90:
5f:7b:3e:2f:e9:8d:49:23:96:31:32:ee:0a:44:1b:
3a:a4:17:59:0b:42:02:82:48:29:42:e2:42:02:ae:
6b:ef:b8:80:10:99:f5:be:94:98:11:24:24:a4:72:
da:05:5a:0d:87:af:f6:bd:cd:d7:a6:e5:78:71:fd:
15:c8:61:3c:c7:19:bc:19:28:9d:8a:b8:5b:b8:08:
f3:30:5f:2c:92:8f:cc:4f:30:58:8c:67:ee:e7:f9:
a6:6e:0a:f3:c9:a9:f5:ff:d3:d2:f0:8c:2a:d3:1f:
04:f3:a1:bf:75:ec:11:10:82:91:46:7b:ba:17:5a:
f7:c6:c2:1c:13:dc:10:5e:8c:02:70:71:18:7b:76:
ed:8f:07:58:e1:e1:04:55:8a:cc:ed:da:f4:bf:02:
a7:e2:6d:e4:f5:09:e6:7e:65:55:8d:f0:d9:4e:32:
97:81:a2:a9:9e:3e:b6:2b:5c:f6:d9:76:45:f9:1d:
5f:78:ab:87:c9:fd:dc:b5:41:35:04:06:70:a0:c2:
ab:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8E:55:F3:99:2E:7D:12:DA:69:5F:8A:F6:56:DF:87:04:28:C1:48
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/8Y5V85kufRLaaV-K9lbfhwQowUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.253.0/24
Signature Algorithm: sha256WithRSAEncryption
05:62:ef:dc:41:65:f7:f0:ee:1d:4c:08:2a:53:d5:23:8c:02:
15:1a:98:f3:9d:62:ab:6b:dd:5b:85:fd:ed:3a:d9:02:eb:35:
18:5a:14:49:86:59:6f:1b:6e:2c:41:e2:44:71:bc:22:e2:ab:
9a:60:02:e7:f4:39:66:7a:e3:5b:12:57:2c:d6:0a:3b:27:99:
16:ec:9b:e4:4d:d3:be:a6:44:cc:d4:64:56:bb:64:67:87:38:
26:03:35:7e:e9:1d:56:3b:0c:f3:66:91:3a:b4:01:15:da:e8:
ae:ad:2b:b2:fa:5b:cb:b5:05:46:29:24:d5:bd:7e:86:7c:cd:
c3:95:28:e8:37:5c:85:06:59:36:4a:f8:08:dd:07:1e:48:fe:
29:37:ba:e5:39:1b:68:3d:b5:a3:9b:52:de:56:fc:4f:53:1b:
f3:6c:c7:ff:5a:3f:6e:a9:3f:cc:82:ef:56:f4:ff:0f:a3:16:
fb:a9:f9:f8:fc:8f:bf:de:a1:ed:61:65:8e:0f:7e:3e:b6:ed:
a4:a4:c3:3f:96:de:cb:72:12:d8:48:02:b3:98:e2:91:80:e3:
87:02:bd:1f:19:35:a6:23:a3:c2:46:ee:02:3c:ad:7d:22:d8:
e0:39:ee:b2:79:0d:02:d8:68:1e:8b:99:d8:a4:c7:7f:98:8f:
55:2c:db:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-ams.rpki-client.org