Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/707b4f-6cd6-488a-8def-3a5c71f86821/1/d3fy_orKYtDa0fngOQ1-g3r1ykM.roa
File: d3fy_orKYtDa0fngOQ1-g3r1ykM.roa (raw, json)
Hash identifier: eiCtbDJuVjpLRvEoGxF3LbwAI4vPg7KaI6OUnPM6sMM=
Subject key identifier: 77:77:F2:FE:8A:CA:62:D0:DA:D1:F9:E0:39:0D:7E:83:7A:F5:CA:43
Certificate issuer: /CN=f4f67a40cf5e85c2d2b6558b4099af125d1050ee
Certificate serial: 0189E70BD1493F430FFC42F30A361B318F06
Authority key identifier: F4:F6:7A:40:CF:5E:85:C2:D2:B6:55:8B:40:99:AF:12:5D:10:50:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9PZ6QM9ehcLStlWLQJmvEl0QUO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/707b4f-6cd6-488a-8def-3a5c71f86821/1/d3fy_orKYtDa0fngOQ1-g3r1ykM.roa
Signing time: Sat 12 Aug 2023 00:00:58 +0000
ROA not before: Sat 12 Aug 2023 00:00:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 45.9.80.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e7:0b:d1:49:3f:43:0f:fc:42:f3:0a:36:1b:31:8f:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4f67a40cf5e85c2d2b6558b4099af125d1050ee
Validity
Not Before: Aug 12 00:00:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7777f2fe8aca62d0dad1f9e0390d7e837af5ca43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0d:c7:c3:19:eb:2f:0f:fb:b7:2e:a1:fc:17:
a7:01:e4:ab:1c:7e:f3:89:2c:a6:bb:0d:87:f9:40:
e6:0f:36:7a:dd:d5:c1:2f:51:47:c2:37:3c:63:3c:
f3:f7:6b:cc:59:73:79:7f:84:63:58:e8:c7:2b:5f:
37:bf:82:96:b7:66:07:1c:ff:e7:6a:49:e1:54:c3:
64:32:ea:f1:a3:b1:3f:e2:b0:32:45:08:8d:14:2c:
74:73:ad:da:b8:d7:5d:13:7f:fc:9d:a1:4e:31:32:
56:78:c7:0d:23:18:2c:42:f8:23:a2:64:c6:64:43:
b2:35:df:a1:72:db:2d:16:0e:34:86:04:6d:db:87:
f6:4e:88:21:51:b7:69:39:58:47:dd:85:b4:db:7f:
1a:93:21:33:8e:be:cf:85:e5:6a:a0:29:fc:cd:e6:
1e:27:f3:b9:aa:f1:b3:99:3f:eb:37:ad:42:15:60:
0b:67:48:99:6b:57:23:4e:1f:1f:2d:67:c6:7e:c6:
67:88:48:19:20:de:34:72:7c:4b:d8:38:ac:33:78:
89:83:25:c7:96:cd:25:60:eb:df:48:e5:b6:43:5c:
99:ee:73:ee:3d:89:26:53:32:b8:17:e7:ce:43:b5:
7f:0f:23:79:a0:37:23:c4:42:77:fe:c4:9d:1d:07:
ef:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:77:F2:FE:8A:CA:62:D0:DA:D1:F9:E0:39:0D:7E:83:7A:F5:CA:43
X509v3 Authority Key Identifier:
keyid:F4:F6:7A:40:CF:5E:85:C2:D2:B6:55:8B:40:99:AF:12:5D:10:50:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9PZ6QM9ehcLStlWLQJmvEl0QUO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/707b4f-6cd6-488a-8def-3a5c71f86821/1/d3fy_orKYtDa0fngOQ1-g3r1ykM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/707b4f-6cd6-488a-8def-3a5c71f86821/1/9PZ6QM9ehcLStlWLQJmvEl0QUO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.80.0/22
Signature Algorithm: sha256WithRSAEncryption
89:c8:cb:72:d3:b2:2c:73:12:c4:23:83:b7:3d:f9:c3:3f:e7:
06:8e:e1:cf:de:d3:84:b5:2b:30:8b:8c:df:04:82:b3:4a:7f:
ac:a1:4d:c8:39:15:51:e9:b2:95:f2:86:0b:20:22:bd:80:92:
77:14:1f:68:8e:2d:58:63:90:fa:9c:45:af:65:2d:16:de:48:
7e:32:89:9b:10:c8:71:9a:06:ac:34:5a:0f:58:f8:e1:73:c8:
58:42:5d:a8:e7:b3:a7:5d:99:01:db:d5:dd:5c:c1:70:08:88:
ce:0e:d3:13:d5:ca:01:f2:86:97:c5:9e:4b:68:8e:e2:92:04:
3f:64:e8:9c:66:f6:7e:22:bd:ea:25:21:74:c1:00:37:2a:38:
c9:72:91:b0:2a:77:51:15:c1:75:48:88:12:87:32:45:6d:1f:
de:14:18:ad:08:87:a4:a0:93:c3:cd:33:bb:d0:e7:19:ed:bd:
d8:de:9f:88:2c:2b:33:83:2b:af:f6:97:fc:a8:31:de:ef:8a:
0e:c6:49:a8:5d:66:1f:0f:95:f3:f9:09:d9:a5:77:66:dc:b9:
26:fc:c4:5f:ac:3b:5e:1a:58:77:0c:86:43:1c:71:b6:f3:c7:
fa:19:df:b0:00:81:8e:10:19:25:23:02:c5:1f:5f:e7:ef:1a:
71:9e:24:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:58 2024 by rpki-client on console-fra.rpki-client.org