Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/oJ-pm1kOg4-yIWjJd_oF0WC9bpI.roa
File: oJ-pm1kOg4-yIWjJd_oF0WC9bpI.roa (raw, json)
Hash identifier: z0XptFAx+8phnt99bo5FZ+oFH3j9b4bZXU0kvKcrUuY=
Subject key identifier: A0:9F:A9:9B:59:0E:83:8F:B2:21:68:C9:77:FA:05:D1:60:BD:6E:92
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E3D298628C0279771CA929C6F1883
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/oJ-pm1kOg4-yIWjJd_oF0WC9bpI.roa
Signing time: Mon 02 Jan 2023 06:14:45 +0000
ROA not before: Mon 02 Jan 2023 06:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47484
IP address blocks: 45.13.116.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:3d:29:86:28:c0:27:97:71:ca:92:9c:6f:18:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a09fa99b590e838fb22168c977fa05d160bd6e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:59:22:d5:a8:f7:5f:83:56:e3:07:15:a2:4d:
d1:2a:18:3a:4d:ba:03:19:d4:4c:19:28:64:7a:1c:
36:cb:bf:b4:81:25:f0:53:df:ca:03:a8:bf:98:ea:
2c:cd:87:35:28:ef:62:f1:b5:6f:c2:2e:b0:22:b0:
fc:9d:27:e4:e9:ef:b9:d1:bd:f2:19:f8:f3:dd:dc:
52:cc:bb:36:12:11:14:be:06:2b:6f:e9:07:ea:7b:
ff:3a:f2:85:a9:1b:ad:92:80:71:1a:7b:ae:36:9b:
b7:f3:21:a7:fd:20:fa:16:d4:bf:28:35:05:1e:d3:
5b:09:ac:ea:d5:9c:92:9b:64:b4:05:4c:ed:d5:bb:
c0:42:64:48:e0:14:30:36:6b:9e:4c:64:18:b2:1f:
81:28:db:58:b8:09:f6:b3:5a:b4:c8:10:ae:a5:0b:
62:20:01:ef:29:c8:ba:2d:81:b1:1f:be:c1:d9:32:
1e:1d:3e:3f:eb:c4:4e:28:a4:ea:25:10:1b:4c:07:
a5:f6:d8:dc:76:69:fb:56:39:e0:39:6d:31:29:c1:
b0:09:3a:e4:08:e1:23:11:0d:e1:8d:ac:d8:12:71:
bd:64:80:a3:37:97:5d:bd:99:09:ec:18:dd:1a:96:
2d:a2:de:01:b3:15:81:5d:5b:43:7d:f6:15:6a:0e:
f8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9F:A9:9B:59:0E:83:8F:B2:21:68:C9:77:FA:05:D1:60:BD:6E:92
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/oJ-pm1kOg4-yIWjJd_oF0WC9bpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.116.0/24
Signature Algorithm: sha256WithRSAEncryption
13:2c:d2:8c:b5:f2:58:e1:0c:03:14:6b:4d:25:34:2d:c3:e0:
82:4c:e5:00:2a:98:48:75:be:45:26:45:fc:67:4c:64:a8:31:
a5:75:76:d4:42:2c:80:d2:f9:5e:f8:ec:cb:12:24:3e:12:3e:
d8:1f:2c:bb:1a:b1:29:ee:eb:86:26:21:49:6d:49:6b:87:1f:
7c:f6:64:3d:4c:95:0b:30:bb:ef:92:94:5c:7c:2b:63:4c:39:
cc:b3:5d:3f:ca:e1:88:08:8f:10:ad:20:84:c0:2f:02:9b:7c:
4b:39:e6:e0:90:61:72:76:0e:bb:b1:ce:d0:ef:1c:83:dc:c0:
35:54:a2:ac:cb:51:5b:f6:b5:9f:48:86:4a:8b:e7:d2:1f:92:
b9:50:29:95:b2:0b:90:7f:c2:5c:4b:1d:19:da:75:a9:bf:71:
4a:b4:61:01:1f:7e:29:36:fe:a9:a1:65:03:c2:d5:97:c6:3d:
c4:6c:44:41:39:b4:e4:44:a4:57:9f:19:81:52:79:06:7b:92:
4a:17:2b:59:63:26:e0:cf:e1:27:cd:28:13:e0:ad:8e:98:d0:
b9:73:a6:10:8d:36:26:f7:a3:ff:d1:ce:77:62:0b:11:42:67:
55:d7:08:2a:53:20:4d:bb:ae:98:93:dc:7e:9b:4d:51:a3:8f:
59:f5:ce:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org