Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/8gShC8tRhfDeAEZz5hcKvDJ222g.roa
File: 8gShC8tRhfDeAEZz5hcKvDJ222g.roa (raw, json)
Hash identifier: ByrI+x4sDc6MiVNys5sgzBw8rCJz7gcLRkzXzrNf1Kc=
Subject key identifier: F2:04:A1:0B:CB:51:85:F0:DE:00:46:73:E6:17:0A:BC:32:76:DB:68
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB8BFD5C0AC9C71C85012300C03880
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/8gShC8tRhfDeAEZz5hcKvDJ222g.roa
Signing time: Sun 01 Jan 2023 19:25:11 +0000
ROA not before: Sun 01 Jan 2023 19:25:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39458
IP address blocks: 45.88.144.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:8b:fd:5c:0a:c9:c7:1c:85:01:23:00:c0:38:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f204a10bcb5185f0de004673e6170abc3276db68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:21:fc:2b:fe:36:ea:99:9d:dd:79:df:e7:aa:
c4:a4:d8:a3:e9:f8:7c:00:d2:d6:63:b1:39:71:5a:
44:39:ae:1c:65:1f:35:81:a9:f0:da:71:e1:0b:cf:
e0:b8:10:4e:c6:f5:39:e8:fd:48:ec:ad:de:31:50:
97:28:73:72:20:7d:9d:8c:e1:b3:e3:e2:f1:11:d7:
7c:da:f3:19:54:4d:99:a7:64:0f:33:43:f7:32:35:
dc:dc:95:f8:5c:90:0d:3e:43:30:13:63:c0:1a:a0:
39:ae:0e:65:b2:9c:19:1d:39:e4:26:cf:83:99:30:
9e:e5:45:dd:5d:1b:db:d6:84:22:ee:36:03:69:bc:
b2:d2:f6:8d:c2:87:cc:3e:cc:93:47:b4:c5:eb:3b:
3c:5b:73:82:d9:21:68:e0:fd:74:5f:9d:9d:9d:2f:
56:33:90:d8:e5:56:ec:07:f7:e5:df:9f:81:72:c1:
b8:0e:d7:f3:12:d4:92:b6:17:82:ed:17:00:09:65:
2f:70:d2:6b:36:b4:05:be:56:b9:f8:4e:aa:93:ef:
a4:e2:d1:76:c4:a5:c3:75:ed:1d:67:77:0f:75:c1:
13:9b:d0:b8:1e:5c:17:f6:d5:84:7d:75:60:52:78:
a0:6a:27:71:19:b9:16:e2:c6:f5:16:4f:19:8d:6b:
e0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:04:A1:0B:CB:51:85:F0:DE:00:46:73:E6:17:0A:BC:32:76:DB:68
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/8gShC8tRhfDeAEZz5hcKvDJ222g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.144.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:f0:dd:c8:26:de:6e:7b:6a:2d:9d:ba:10:a7:16:b4:9c:84:
eb:ae:d6:84:25:4c:47:39:98:06:bc:4b:10:6d:f6:da:92:23:
da:78:ea:b5:35:62:5d:2b:cc:ee:c8:a9:bd:00:5d:b8:78:9a:
df:e7:0a:c0:70:33:ad:28:ad:09:c7:18:84:4a:88:2c:ef:ca:
ba:00:67:e4:78:37:28:f7:b7:ef:f5:fa:1d:d7:73:e1:f0:18:
f9:8e:d8:d0:e2:e5:80:7e:bf:60:0d:4b:ab:99:25:1c:76:ba:
2f:94:1c:fb:c2:6b:e1:62:a6:c4:88:17:61:45:2c:0c:03:43:
a2:39:24:da:4c:61:5e:be:eb:7b:19:47:28:9b:49:52:db:43:
99:44:be:a1:90:9e:f0:bc:c5:8a:be:69:dc:32:4d:0f:36:98:
45:57:f1:95:f5:47:71:6d:42:aa:1f:84:c5:d3:ba:c7:1a:2e:
fb:05:13:98:cc:be:71:75:cb:8a:19:36:07:30:45:43:79:a6:
08:b0:b0:8c:d8:ca:ec:fc:48:7e:d5:9a:7d:a7:f2:58:76:59:
2a:98:08:66:ff:8d:c0:29:ce:49:ab:66:d4:ec:de:04:0f:b9:
99:7e:de:37:6e:d8:21:9c:c2:d3:d6:b8:2e:5a:cb:6f:2c:3a:
4c:ed:63:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org