Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/aLHZ-gTKXauJdV6hp8ejUzzlYnA.roa
File: aLHZ-gTKXauJdV6hp8ejUzzlYnA.roa (raw, json)
Hash identifier: 6eBoSfmJpmNmT9KlsHUFtKYsRHbQyfCg4fL8I5WhbqY=
Subject key identifier: 68:B1:D9:FA:04:CA:5D:AB:89:75:5E:A1:A7:C7:A3:53:3C:E5:62:70
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01878405232B79360EE3B804C6C560BFC6A3
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/aLHZ-gTKXauJdV6hp8ejUzzlYnA.roa
Signing time: Sat 15 Apr 2023 08:25:41 +0000
ROA not before: Sat 15 Apr 2023 08:25:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210837
IP address blocks: 45.89.63.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:84:05:23:2b:79:36:0e:e3:b8:04:c6:c5:60:bf:c6:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Apr 15 08:25:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68b1d9fa04ca5dab89755ea1a7c7a3533ce56270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ea:f1:a2:45:61:3a:c8:6c:92:fc:0f:aa:02:
44:f8:54:a8:41:ce:6c:f8:a1:ba:ab:95:74:20:15:
c0:93:8a:7d:6e:76:a1:11:2e:ad:f6:e6:77:cf:41:
92:9e:0a:7b:f1:a3:8e:a1:9f:0f:4f:43:63:07:12:
f3:02:a7:34:4d:73:56:60:4b:e4:ed:4e:93:07:de:
49:29:ca:fc:cc:f3:fe:c9:65:ba:66:65:ec:38:50:
51:17:6f:c2:52:64:30:02:7c:a4:55:4c:59:30:df:
e5:b8:ab:28:4e:dd:ad:4a:cd:d1:4f:67:52:a5:03:
40:71:31:73:71:2b:ce:9f:eb:26:19:06:9b:e0:0b:
55:44:cb:c5:6f:e3:56:dd:41:48:e0:b9:67:fa:52:
8d:63:cc:dc:14:b5:18:07:1a:19:67:58:1b:30:37:
ae:62:c0:93:73:5d:8e:dd:37:62:cf:c1:2f:2e:88:
3d:99:28:ad:70:92:26:a2:74:5a:43:c3:cf:2e:ef:
f5:72:be:79:a2:21:e9:a7:40:a0:c9:29:44:1d:08:
61:68:4c:bd:b3:6f:f6:c2:35:6b:ca:4b:06:98:49:
d8:ca:77:6e:19:20:95:87:94:fc:7b:38:56:a3:9d:
7c:59:7a:ea:f1:9d:e7:b2:65:d4:e4:0d:73:c1:e2:
a7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B1:D9:FA:04:CA:5D:AB:89:75:5E:A1:A7:C7:A3:53:3C:E5:62:70
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/aLHZ-gTKXauJdV6hp8ejUzzlYnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.63.0/24
Signature Algorithm: sha256WithRSAEncryption
e8:f2:64:7a:5f:a2:b7:f1:3f:76:75:a5:ff:f3:01:a6:55:3b:
8e:a2:cd:bd:f4:1d:69:78:a4:72:ea:56:52:b3:fd:a1:82:33:
1d:43:74:3e:fb:c8:4a:a5:d0:ef:04:db:f1:5f:12:af:7f:f2:
68:01:0b:f2:7b:ea:11:de:0a:53:9c:b2:8b:09:74:05:1b:eb:
33:f0:11:17:d9:87:59:70:b4:1a:19:af:52:23:0f:31:08:4b:
f2:ef:19:c4:c8:5d:8c:d3:30:b2:6b:17:98:c7:3a:e5:2d:9f:
f4:09:72:7b:c7:21:14:ea:56:2f:6a:ce:ba:e6:33:60:7a:de:
5f:69:9f:70:c6:7a:50:e8:e7:a1:1c:64:ac:b4:3d:41:c5:f1:
64:72:d7:c6:2f:12:e0:74:d7:49:1a:33:d8:72:bb:8d:48:3e:
e9:bc:8e:3f:e3:9a:19:01:e7:a9:22:26:b9:07:7a:7b:9a:48:
34:dd:4c:0c:fa:9f:d5:28:3b:e9:b4:5e:1d:4a:e1:c9:2c:59:
50:a5:40:cd:4a:5f:27:f5:68:75:44:5e:8e:72:ad:68:67:d7:
57:5e:33:b1:f1:88:69:7a:c0:13:ad:16:8d:de:2d:9f:ed:5f:
21:1f:65:ed:ec:26:c8:36:53:14:b1:5a:b5:ee:3b:9a:ea:11:
b7:ed:08:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org