Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/OvWpEhWCSwUx4wZDKBVPaUz8s_4.roa
File: OvWpEhWCSwUx4wZDKBVPaUz8s_4.roa (raw, json)
Hash identifier: NhSN4fp+Yb9MY94fGj0NrcwWBJURr7mcRSJK+JvRdWo=
Subject key identifier: 3A:F5:A9:12:15:82:4B:05:31:E3:06:43:28:15:4F:69:4C:FC:B3:FE
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 0187E262DE0561C3093B1F467532FA519701
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/OvWpEhWCSwUx4wZDKBVPaUz8s_4.roa
Signing time: Wed 03 May 2023 16:12:22 +0000
ROA not before: Wed 03 May 2023 16:12:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198690
IP address blocks: 45.14.16.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:62:de:05:61:c3:09:3b:1f:46:75:32:fa:51:97:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: May 3 16:12:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3af5a91215824b0531e3064328154f694cfcb3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:84:97:46:e6:20:59:13:c3:84:8d:a3:51:ae:
db:d5:0b:9b:6c:e2:b6:50:38:a6:6a:46:43:7c:2a:
8e:59:64:b8:d2:d5:3b:a6:e3:a7:d5:b6:a9:be:a3:
2b:a5:5f:39:cf:91:5b:0f:5f:f9:1c:7b:97:82:a4:
00:57:40:a1:32:20:2b:ca:75:45:a7:28:45:4f:c6:
4a:a2:02:b1:93:22:24:2f:e0:00:01:89:f0:f9:75:
9f:9a:62:68:38:a9:ea:d2:71:16:6e:47:9f:aa:a6:
26:33:43:87:98:75:37:57:2b:32:50:4a:85:f5:e5:
45:f5:5d:22:4a:8a:99:e7:09:27:8b:8c:10:62:bb:
f2:0d:e2:e1:54:4f:e7:f6:d4:97:33:cd:10:fb:4f:
cb:a1:3a:75:9e:41:ac:03:d1:b6:b4:6d:93:2a:7e:
ed:98:d0:2e:43:5c:8d:5b:e5:68:27:62:ef:dc:ab:
6a:c1:2c:b9:bb:2b:49:00:57:34:6a:88:59:3e:57:
33:ef:aa:30:9a:f1:33:c3:3b:91:1f:76:82:5b:24:
d0:61:b1:19:e5:8f:9b:b6:18:73:20:9f:e4:80:06:
5d:54:c8:a3:20:d8:e8:d5:50:8d:b1:aa:78:a0:62:
53:28:22:56:65:bf:c3:2d:62:ae:ab:ba:35:47:25:
f5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F5:A9:12:15:82:4B:05:31:E3:06:43:28:15:4F:69:4C:FC:B3:FE
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/OvWpEhWCSwUx4wZDKBVPaUz8s_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.16.0/22
Signature Algorithm: sha256WithRSAEncryption
52:ca:7c:c1:f8:a5:9b:f8:55:b3:70:58:08:40:f9:92:99:3d:
28:33:eb:0a:a3:86:f5:1b:16:c4:1c:9a:28:e9:3c:8c:8d:f0:
c2:44:2c:46:d9:72:5e:cd:9c:2a:b2:40:2c:37:9f:ba:01:56:
e5:c9:61:92:aa:d1:41:be:74:a2:89:f1:67:43:0a:66:f3:05:
96:a3:0d:e8:81:f5:cf:27:39:2a:2f:cf:35:f0:ef:6a:18:de:
ab:5b:ad:ff:9e:13:9a:cf:43:73:70:99:4c:87:21:ce:c8:59:
c3:c8:e7:58:1b:80:1d:e5:f8:2e:6e:0b:42:bd:5b:82:0b:dc:
08:c2:f6:d6:41:96:16:3a:2c:dd:6a:15:3a:16:b8:da:0f:67:
bf:9b:a4:f8:06:76:98:4a:1d:18:98:b6:ea:82:70:7d:c1:d7:
b9:93:4e:bc:e5:42:73:2e:0a:cd:c1:b7:e9:46:5d:ce:61:48:
d0:50:a9:7e:16:fc:03:c7:98:32:d9:ff:0a:9c:33:d2:68:65:
49:e9:29:3a:ff:8e:60:70:c9:9f:57:cf:e8:22:b7:51:0c:6e:
80:c2:14:4f:e7:15:c6:61:8a:d7:b2:ec:4b:ae:e7:de:f2:86:
53:4f:88:94:5a:d9:67:63:d7:08:3e:fa:22:48:22:c4:6b:03:
9c:24:df:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:46 2024 by rpki-client on console-ams.rpki-client.org