Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/AXonYzGxlzdRz7scugQfvtocq1A.roa
File: AXonYzGxlzdRz7scugQfvtocq1A.roa (raw, json)
Hash identifier: KQ+wVNvBWKJdQuGRPEwJpheKd5u4iHcP2iOAHkzSFbQ=
Subject key identifier: 01:7A:27:63:31:B1:97:37:51:CF:BB:1C:BA:04:1F:BE:DA:1C:AB:50
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB8E5FD16BE6C0F2A8F3FD28DEC1A4
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/AXonYzGxlzdRz7scugQfvtocq1A.roa
Signing time: Sun 01 Jan 2023 19:25:12 +0000
ROA not before: Sun 01 Jan 2023 19:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 45.155.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:8e:5f:d1:6b:e6:c0:f2:a8:f3:fd:28:de:c1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=017a276331b1973751cfbb1cba041fbeda1cab50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2f:0d:3c:ff:6a:7b:29:1a:00:7e:a1:6e:8f:
43:d2:44:28:dd:71:3c:ca:95:5c:94:68:20:b8:e5:
e4:cd:72:a6:e9:7c:b7:3c:49:41:82:34:66:27:3c:
61:b7:45:e3:e2:76:03:03:28:dd:36:4b:c8:02:94:
6c:8f:1b:6b:80:2f:63:fe:75:5a:9b:ac:35:1c:44:
2e:f7:65:90:f7:f0:8e:55:a5:c1:9f:5a:44:39:1c:
88:e1:ae:f1:68:41:ae:06:7b:2e:ff:48:87:04:82:
5a:f0:16:a1:fc:31:41:42:02:24:b2:e8:3b:7c:3f:
85:e6:28:8c:68:d0:74:67:79:0c:2b:6e:37:8d:cf:
7b:13:ab:a8:db:e6:90:90:f7:fd:3a:4a:22:71:d6:
c9:81:8e:4b:a0:01:21:e6:c8:b8:2b:d3:fa:fc:65:
aa:a9:de:4e:9d:f5:ed:69:0d:45:25:47:cb:2a:42:
6e:0d:a9:40:72:fe:b3:23:2b:57:fd:44:45:64:0d:
74:80:50:ef:6d:c0:1f:a2:a6:16:fb:65:ae:84:6f:
9a:29:51:f0:75:15:68:ce:96:57:9f:34:55:96:80:
57:cb:11:9a:e1:e4:6d:58:5c:ce:50:9a:f1:43:11:
33:64:4f:c7:7c:b5:1e:ab:6d:93:93:37:1e:35:34:
af:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:7A:27:63:31:B1:97:37:51:CF:BB:1C:BA:04:1F:BE:DA:1C:AB:50
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/AXonYzGxlzdRz7scugQfvtocq1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.65.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:0b:ea:fb:06:d0:21:bb:b8:7b:e6:d8:86:c1:64:07:fa:ae:
0c:f6:8a:34:8a:14:7f:06:30:29:b0:f5:f2:26:a4:6c:f1:45:
2c:9a:23:77:7b:ec:dd:3c:a8:dd:47:3b:12:fb:8c:3a:f3:8b:
11:f8:de:fc:06:9e:a5:b4:9a:73:96:3d:50:57:d5:5d:88:7e:
be:fd:ba:63:c7:32:37:f9:7d:d0:ea:18:90:9c:93:d4:91:58:
da:b6:5c:a5:fa:f6:d3:6d:d5:82:69:99:16:1e:a6:da:cd:fd:
1b:d9:42:6a:39:a6:27:b4:91:27:45:82:39:63:27:9d:74:f7:
09:d1:92:b5:98:f9:51:24:30:28:80:e3:0d:74:83:02:e8:18:
c5:28:50:f3:25:d7:90:88:a7:33:c8:6f:86:fe:4d:e2:33:02:
f5:4a:a5:25:8d:6e:c9:fa:df:a9:50:11:79:04:66:22:54:66:
c2:70:44:4a:62:da:7a:84:ed:de:8d:e5:01:2b:1c:a7:55:e4:
83:5a:6d:e1:03:c4:b8:df:48:50:bc:c3:6c:82:29:eb:a4:ab:
cc:94:9c:42:f1:32:d3:05:1f:5b:4f:fd:32:98:71:9c:3d:c8:
2f:5f:57:89:f9:3b:60:62:9c:f8:4a:00:19:14:eb:6e:ae:ed:
71:1c:fb:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org