Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NgkVHwGR1iUmf8DPXf8adJjys18.roa
File: NgkVHwGR1iUmf8DPXf8adJjys18.roa (raw, json)
Hash identifier: SAkrUPA1yEsYgMsnv7p38fzLdIfSXY0UDk2rtpl//QQ=
Subject key identifier: 36:09:15:1F:01:91:D6:25:26:7F:C0:CF:5D:FF:1A:74:98:F2:B3:5F
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01866681A334A575CFBF9A7FB70E02F52DEC
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NgkVHwGR1iUmf8DPXf8adJjys18.roa
Signing time: Sat 18 Feb 2023 21:50:17 +0000
ROA not before: Sat 18 Feb 2023 21:50:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203511
IP address blocks: 45.155.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:66:81:a3:34:a5:75:cf:bf:9a:7f:b7:0e:02:f5:2d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Feb 18 21:50:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3609151f0191d625267fc0cf5dff1a7498f2b35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:20:cd:f1:ba:17:f1:5e:25:74:d4:59:30:d6:
e2:10:19:cc:9a:93:2e:06:01:57:d8:03:70:77:89:
b4:eb:9e:bb:99:9f:a3:b4:ce:92:86:05:34:d1:c1:
e4:86:ad:25:b5:f0:b9:1f:89:69:69:30:4a:6c:1d:
c1:f7:f4:3d:9d:7a:68:fa:e8:9e:a0:35:69:02:c6:
36:dc:2a:2a:8c:c7:15:b9:f6:d4:09:f2:ad:87:89:
c0:06:fd:08:86:c3:a6:86:93:91:80:66:f4:77:59:
66:4c:f0:9d:90:89:fa:e5:49:3f:fd:fd:e3:9b:72:
9c:09:c6:54:ae:29:40:e3:75:36:0e:2d:8d:74:76:
6f:f6:1c:de:e7:1d:0c:c1:cd:d2:d7:dc:cf:0c:46:
43:b7:e0:0b:66:f0:10:80:20:dc:b1:c2:cb:6f:ac:
48:19:20:b4:e1:64:5c:99:64:00:75:f9:d2:35:49:
b4:2d:ec:dc:63:0b:e5:9d:04:24:8b:d2:4d:90:2d:
06:82:12:71:49:9a:0a:bb:02:e3:f2:c3:fb:d4:3b:
fe:23:ce:25:dc:7e:c6:fa:3a:26:b5:3b:8a:1b:60:
6c:91:18:9c:25:37:0f:f2:97:28:bf:27:1c:66:38:
b7:af:16:d0:b7:47:ea:06:69:ef:e5:a1:df:32:c2:
3c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:09:15:1F:01:91:D6:25:26:7F:C0:CF:5D:FF:1A:74:98:F2:B3:5F
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NgkVHwGR1iUmf8DPXf8adJjys18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.65.0/24
Signature Algorithm: sha256WithRSAEncryption
04:a8:d5:a4:5c:7a:f5:7d:f2:22:da:bc:83:19:b6:d8:2c:bc:
52:78:dd:c0:70:dd:45:a2:79:1c:0b:8c:aa:d1:ba:02:39:96:
ee:f9:d5:65:31:26:b0:4a:da:6a:1a:6b:4e:19:e7:81:21:2f:
92:fb:fe:76:2e:48:6b:87:69:4a:a8:f6:5a:47:73:3b:f1:d8:
2b:03:1d:d5:83:40:8b:39:a7:a1:0c:48:7a:a3:01:fd:11:79:
02:a9:24:05:5d:39:7f:5c:22:0d:56:c4:29:d3:16:95:e4:12:
04:ab:2b:73:29:8f:42:18:53:92:47:46:da:06:19:ba:09:ec:
f5:f6:67:d6:e5:d1:f5:97:92:58:a1:f7:fa:55:5a:21:77:4b:
3c:03:72:cc:f4:e4:49:1c:fa:72:cc:e2:0b:65:79:ab:38:f0:
8d:6d:2e:c7:f4:68:a9:63:0a:f3:7f:c2:eb:34:e7:12:7f:52:
6e:4f:a6:40:c2:53:72:dd:1b:d1:68:f5:20:df:53:4e:06:c1:
4e:9f:13:08:cb:99:3a:b3:6a:c4:50:00:a1:4e:43:2d:73:cd:
ce:6b:28:be:ac:03:15:f8:1f:ed:57:71:f0:43:40:59:ea:3a:
08:2a:06:37:b3:b7:19:ef:8f:60:8b:49:48:3b:be:7e:4d:f5:
90:40:cd:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org