Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/plAZJ79y_tKYv18OF39_vPl2--c.roa
File: plAZJ79y_tKYv18OF39_vPl2--c.roa (raw, json)
Hash identifier: QbOSX4mhOWOwcKFI36Ym6v3X3R8YdT3IyXas4mv50Rc=
Subject key identifier: A6:50:19:27:BF:72:FE:D2:98:BF:5F:0E:17:7F:7F:BC:F9:76:FB:E7
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139ADAEDEF0EFA10609DBB9C6A548EE
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/plAZJ79y_tKYv18OF39_vPl2--c.roa
Signing time: Mon 02 Jan 2023 06:44:43 +0000
ROA not before: Mon 02 Jan 2023 06:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202813
IP address blocks: 45.88.152.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ad:ae:de:f0:ef:a1:06:09:db:b9:c6:a5:48:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6501927bf72fed298bf5f0e177f7fbcf976fbe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4a:c7:e7:8f:33:c2:18:64:f8:3c:35:e5:fb:
ad:d2:71:d3:54:96:81:67:93:15:ff:bd:ba:70:d1:
a3:d8:81:24:17:6b:25:36:83:83:3d:3c:c1:70:f1:
ee:c7:d6:42:1e:2f:d0:38:b2:65:3b:c2:ed:f0:d6:
e8:83:20:e9:17:5d:d8:50:c1:f9:84:fc:31:9f:c0:
27:79:08:a8:a2:bc:e6:23:f2:ff:5e:cd:b6:be:c5:
b1:b1:3c:42:fc:8d:cd:f4:63:2c:91:53:fa:49:05:
0f:9b:bd:d6:f2:54:8b:e0:7e:5b:4c:f2:fd:b7:95:
67:85:5a:71:d0:55:2f:5b:32:e7:9b:fe:16:36:ae:
7a:ef:ea:46:7d:6f:40:fa:c4:85:43:e0:1c:c5:08:
86:2b:9b:0b:61:42:dd:18:02:a7:80:04:96:8c:02:
4c:8c:50:77:16:07:74:41:8c:0a:00:8a:6c:17:c6:
76:c9:47:e6:b2:0f:0a:7c:4b:d0:be:e0:8d:a1:bc:
2c:63:da:ec:e0:ce:e7:f2:33:69:0d:b5:64:2a:a1:
e0:a4:5f:1c:52:8f:09:29:26:f1:43:e3:18:ab:e6:
0c:0a:d9:75:6f:b9:07:d5:8f:a8:71:05:af:03:1c:
37:74:66:b9:73:4c:63:af:d0:78:00:f9:76:42:99:
98:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:50:19:27:BF:72:FE:D2:98:BF:5F:0E:17:7F:7F:BC:F9:76:FB:E7
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/plAZJ79y_tKYv18OF39_vPl2--c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.152.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:19:28:a3:f3:89:cf:2c:8f:11:d7:03:00:1a:87:d0:e5:82:
37:97:df:34:32:8e:7d:b2:48:20:14:73:76:cd:ce:61:32:bb:
35:a9:c4:33:b1:82:5b:c4:4e:51:5a:21:a9:96:3f:38:f7:84:
49:a9:d5:18:b9:9b:24:83:e2:19:f0:7e:b9:e0:91:5c:83:31:
02:d4:61:26:e8:b5:07:cc:d2:93:f0:3b:02:98:93:3c:b8:4d:
23:ac:85:27:2f:4c:49:f4:6a:c7:92:b7:c6:4b:0b:51:98:8f:
63:33:d2:e3:10:92:4c:9f:07:16:25:67:da:b9:4c:91:3a:4c:
16:aa:16:5b:b0:15:8f:24:03:96:bb:b0:e7:4f:45:0e:35:f7:
95:82:df:2c:6c:72:7b:c1:29:bc:97:15:0b:d0:73:85:07:f9:
99:3e:55:70:3b:68:dc:90:62:0d:d0:a8:0d:cf:29:64:20:6c:
29:57:69:0d:c4:13:32:e5:7e:34:1d:cd:e7:d3:a0:fc:eb:ae:
cc:42:c2:66:8f:20:6a:73:ca:a5:23:7a:1a:44:e3:dc:bd:92:
32:e5:bf:51:97:4f:0b:2f:62:f1:d0:7e:85:77:e8:3f:f3:56:
76:c0:71:cd:34:7f:4f:59:8e:6a:b3:91:0f:d5:5d:05:05:89:
f6:ff:9d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:00 2024 by rpki-client on console-fra.rpki-client.org