Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/thIn3aI88eVDAqIk3-QHmpiypR8.roa
File: thIn3aI88eVDAqIk3-QHmpiypR8.roa (raw, json)
Hash identifier: zdB6PJQiW5U/e3bkHq5nfJHoaXOnJ0oS64UB+t3iPzg=
Subject key identifier: B6:12:27:DD:A2:3C:F1:E5:43:02:A2:24:DF:E4:07:9A:98:B2:A5:1F
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 01897215ED2DA608E00F719DA0B67BF17B58
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/thIn3aI88eVDAqIk3-QHmpiypR8.roa
Signing time: Thu 20 Jul 2023 06:56:26 +0000
ROA not before: Thu 20 Jul 2023 06:56:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211603
IP address blocks: 45.158.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:15:ed:2d:a6:08:e0:0f:71:9d:a0:b6:7b:f1:7b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jul 20 06:56:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b61227dda23cf1e54302a224dfe4079a98b2a51f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:28:2f:5b:99:59:88:90:d0:d9:0e:d7:1d:
08:f7:56:a2:77:84:5e:7c:6d:d4:e5:01:2e:86:a2:
c2:b3:cd:4f:dc:6f:17:37:34:95:a2:c5:c3:10:56:
86:37:1b:f4:b1:4e:b9:20:77:05:9e:b0:50:00:c5:
7b:2b:ec:57:bc:a7:3a:30:61:65:45:8b:a8:3d:2f:
79:a9:f7:05:ed:5f:9c:58:29:85:8e:a5:23:59:78:
f1:f2:f4:e2:c5:d6:eb:1d:a1:a5:ac:ad:03:ce:d1:
52:57:dc:0d:26:f2:2b:6c:c9:a3:da:ce:ca:cd:fb:
8a:63:dc:e1:12:2c:09:fe:a4:ff:9b:d3:c4:91:a8:
71:65:f1:12:db:ee:e8:12:30:f9:6d:09:4f:a2:c9:
ba:47:ea:31:b2:6b:22:95:89:f7:bd:24:90:c0:a3:
fc:ca:c0:be:f3:09:4e:56:8e:c1:4e:a9:52:97:51:
2e:f8:97:85:13:ce:40:90:bf:ec:dc:49:1c:53:bd:
91:30:7e:0f:ee:1d:70:9f:2c:33:42:f6:51:fa:07:
a9:99:2d:ae:fe:84:35:fe:24:4b:df:2d:6b:a7:b2:
17:41:61:77:7a:f9:25:72:5b:09:d8:d5:f6:51:22:
ec:55:85:bc:a2:98:b3:58:43:0e:b4:18:d5:60:a3:
37:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:12:27:DD:A2:3C:F1:E5:43:02:A2:24:DF:E4:07:9A:98:B2:A5:1F
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/thIn3aI88eVDAqIk3-QHmpiypR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.76.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:32:45:d7:fe:32:e1:85:54:d9:f5:11:b6:7d:41:7f:9e:fb:
c9:ad:22:65:5a:47:83:1f:10:e6:0d:18:1a:bf:1c:44:13:4e:
0e:91:2e:d1:19:b6:d8:67:18:e2:18:da:1a:75:53:63:b5:6a:
89:4b:14:c3:7d:49:68:8f:48:6e:d5:4b:c0:47:dc:7a:d9:bf:
a1:23:a7:5d:c8:0f:31:a8:ec:34:e0:41:b7:25:1e:11:6d:81:
cb:9a:16:c7:4e:c3:58:fc:02:7f:43:8d:6f:35:e4:49:b0:03:
79:73:20:2b:d5:71:0b:81:92:16:bd:88:f0:d5:b0:f5:ed:74:
2b:ad:7c:49:82:8f:06:99:e1:3f:96:32:d4:6a:39:7d:66:74:
b8:94:38:d0:56:60:1f:52:6b:ae:08:ee:2c:f7:81:de:1c:31:
0e:02:7d:a6:58:e5:d5:c8:4a:e4:1b:44:15:e7:d0:78:3d:4b:
b0:b0:1a:11:b7:77:f4:17:55:ee:17:43:dd:6f:aa:9e:f7:ab:
cc:26:4d:40:ac:f2:31:00:4a:da:ef:40:d8:ff:95:71:ba:89:
24:18:db:a1:bb:4e:c9:eb:fd:70:7b:ee:53:55:dd:f3:34:a3:
9c:c5:f3:1f:9b:01:e5:c6:53:85:c0:f3:14:a9:52:2f:23:fe:
75:1b:6e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 12:06:15 2023 by rpki-client on console-ams.rpki-client.org