Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/OwNGJBdnDhhfUiGMp43aCx9ovdc.roa
File: OwNGJBdnDhhfUiGMp43aCx9ovdc.roa (raw, json)
Hash identifier: hImCibCZWKjzDouZNMxcgS3vie/cpBr6jsWHsdp1TEc=
Subject key identifier: 3B:03:46:24:17:67:0E:18:5F:52:21:8C:A7:8D:DA:0B:1F:68:BD:D7
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 0185B4E6E29178EFCBC459C77306399E4289
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/OwNGJBdnDhhfUiGMp43aCx9ovdc.roa
Signing time: Sun 15 Jan 2023 10:08:28 +0000
ROA not before: Sun 15 Jan 2023 10:08:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56655
IP address blocks: 45.150.66.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b4:e6:e2:91:78:ef:cb:c4:59:c7:73:06:39:9e:42:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 15 10:08:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b03462417670e185f52218ca78dda0b1f68bdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ea:26:cd:78:6d:a3:7e:23:72:14:de:c0:32:
c3:76:a7:00:48:44:2a:c2:4a:fb:67:18:48:a1:0d:
98:f7:64:6d:3c:8d:cf:ff:1e:d2:3d:de:25:f8:9a:
9b:6f:c0:d4:5d:a3:78:da:9e:63:f5:44:d0:2d:d8:
2d:b4:73:ed:62:1b:a4:68:7a:2e:1d:01:2a:75:f3:
0b:6d:2f:c4:2c:a6:51:85:89:31:16:71:56:96:91:
22:51:7e:d0:69:d6:98:8d:8c:35:d6:ee:a1:07:84:
a1:62:7f:fd:f6:a5:c7:e2:ad:2b:05:2b:b8:50:09:
34:cf:0c:f6:3f:c5:79:1d:55:fc:c7:68:85:e6:6f:
cc:ab:e1:b8:4d:c8:4f:47:81:8b:9e:51:4b:6b:71:
46:e8:18:9f:f0:3b:43:82:41:df:4d:79:35:59:9a:
34:e1:11:b8:e0:ae:4a:d9:05:a0:77:6c:1d:66:fb:
fe:96:87:2e:9c:51:27:df:95:5f:c1:db:53:f0:64:
ca:d8:11:1d:b8:b4:6a:07:dd:95:73:8a:6a:ab:07:
6c:de:13:fe:f7:a1:94:0c:d0:58:28:87:b9:30:94:
82:39:af:a6:69:84:7b:41:3c:a2:af:c2:5c:93:00:
7d:e7:06:70:5b:fa:42:34:6e:e9:d8:97:81:7f:c4:
b4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:03:46:24:17:67:0E:18:5F:52:21:8C:A7:8D:DA:0B:1F:68:BD:D7
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/OwNGJBdnDhhfUiGMp43aCx9ovdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.66.0/24
Signature Algorithm: sha256WithRSAEncryption
42:54:14:c7:41:2a:35:70:67:11:4b:70:32:a0:51:38:27:23:
f9:02:9a:9b:51:cc:b9:e7:b3:a7:0d:bf:22:35:d5:df:7d:18:
a1:ce:95:e5:19:51:0b:6a:c4:d9:39:4e:36:d4:fe:03:a6:24:
94:d1:88:35:c2:4e:f0:55:f1:7d:72:66:53:8b:0f:ac:5b:dc:
f6:eb:9f:21:7b:10:88:96:8f:3d:45:d6:cc:20:5a:6c:dc:95:
13:32:51:73:99:f3:5d:0e:de:50:d1:e5:40:a7:e6:c2:fd:d9:
e3:c0:4b:d3:6e:6b:52:ce:a1:4b:9e:5f:76:b9:07:d6:91:f8:
7d:cc:02:f9:5f:d7:72:fa:e4:b1:51:4c:9c:27:8d:68:03:e5:
b8:eb:bc:de:ad:d8:27:ec:79:d0:48:d3:98:fc:b5:f3:fd:42:
5d:67:c5:92:ee:9e:4b:74:72:fb:2d:44:66:cc:5b:02:ca:89:
23:16:81:8f:32:9a:cc:49:29:7b:cb:cd:b1:b1:20:85:a9:4a:
dc:5c:c2:23:34:2f:46:38:4c:b5:a3:d7:30:46:9f:b7:73:7e:
6f:6e:5f:ed:79:cd:01:52:8c:30:64:84:f6:cb:fb:c2:34:67:
60:d1:57:09:56:7c:27:b4:0f:72:8a:73:c8:36:ae:cd:15:fc:
58:94:7c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org