Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/EjormRrTOtPOIL7k6gy8oml4Voc.roa
File: EjormRrTOtPOIL7k6gy8oml4Voc.roa (raw, json)
Hash identifier: pJzUyU1dN2ysdLupupCWunnqyLwsUsaRRVh0CGlNQDM=
Subject key identifier: 12:3A:2B:99:1A:D3:3A:D3:CE:20:BE:E4:EA:0C:BC:A2:69:78:56:87
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53D0E643BD7641923A16281E51E664
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/EjormRrTOtPOIL7k6gy8oml4Voc.roa
Signing time: Sun 01 Jan 2023 07:55:10 +0000
ROA not before: Sun 01 Jan 2023 07:55:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32181
IP address blocks: 45.153.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d0:e6:43:bd:76:41:92:3a:16:28:1e:51:e6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=123a2b991ad33ad3ce20bee4ea0cbca269785687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:9e:f0:59:b9:1a:c9:13:9c:81:f3:f5:b5:a1:
a9:45:b3:1f:05:79:f0:7f:99:b0:90:a3:7c:3c:20:
0e:6f:d7:8b:c4:96:1a:a9:0e:0e:e1:f8:9d:a3:8e:
9f:b7:9d:5b:40:a0:97:53:10:99:37:5b:1d:f7:2f:
61:b5:e8:f6:45:0f:14:d7:75:be:19:8f:4e:1c:64:
b7:c3:48:c4:1d:f4:5a:7e:ec:8a:fd:81:5e:66:87:
d1:ff:26:2b:15:68:fd:8e:4a:74:06:a8:c0:1e:c2:
2e:1d:59:e9:f2:0e:87:71:3d:9d:49:a4:9d:96:24:
85:c3:27:d5:1e:0c:5d:e5:6d:f1:93:f4:18:12:43:
8f:07:ab:ee:0c:1e:be:3f:95:d3:82:60:48:49:df:
d4:7c:fc:c3:dc:86:df:c0:d1:f5:b5:1b:a5:21:b7:
3e:93:40:15:cc:77:9f:31:a3:f5:fd:94:49:78:4c:
36:69:08:3e:ea:69:2b:c2:f0:4a:8d:ff:33:a4:a8:
a6:2a:f0:a7:0d:16:b7:c4:72:a1:4c:00:29:a2:df:
17:b2:97:a2:4c:72:54:d8:6a:af:97:47:05:08:cc:
27:e8:d4:65:2a:b7:3a:e1:72:37:38:91:bd:51:ef:
87:de:91:7d:4d:70:0c:c8:a0:1f:22:cc:4e:9b:bd:
49:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:3A:2B:99:1A:D3:3A:D3:CE:20:BE:E4:EA:0C:BC:A2:69:78:56:87
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/EjormRrTOtPOIL7k6gy8oml4Voc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.125.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:76:8b:65:db:42:c3:ba:0f:55:22:d5:35:94:50:49:71:c1:
57:a8:8b:af:69:49:59:32:79:51:d8:6a:9f:ef:4f:dd:7d:4f:
46:e0:9d:78:67:85:40:8a:aa:54:d8:50:99:09:a6:85:ee:5b:
2b:bf:31:43:c3:ae:44:77:c9:ca:67:1f:cb:3d:83:80:f6:8a:
25:eb:d3:c4:e5:69:a2:83:d5:59:ff:a5:28:cb:e9:57:5b:01:
70:f4:da:5e:fe:fa:f2:e8:71:5c:65:6e:e3:25:d1:80:c2:c4:
22:ed:26:04:1a:fa:cf:b6:af:b3:45:bb:82:3d:47:cb:48:e3:
84:59:f7:25:5e:77:3b:89:9a:04:64:0a:f2:72:c4:a2:3c:04:
2c:01:3b:b7:ef:5d:f4:ee:e1:12:5f:04:b0:32:4b:a4:f7:ed:
ab:38:73:48:25:ba:40:f2:3f:60:d3:9c:fd:77:6e:8e:0f:a2:
1b:0a:89:77:14:6f:c9:10:2f:ff:a7:c9:df:cc:b2:58:98:50:
e3:40:50:bb:26:54:21:c3:e2:89:17:e7:4a:f7:9e:a0:18:71:
66:16:71:f5:f7:61:fa:f7:cf:35:52:29:8b:2e:5c:20:83:e8:
3b:c7:75:d3:a1:ca:03:49:35:88:6c:90:eb:98:44:cf:5c:31:
a8:d4:09:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:13 2024 by rpki-client on console-fra.rpki-client.org