Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sbuAkHS74YugDEBFcgKH3nYlJUg.roa
File: sbuAkHS74YugDEBFcgKH3nYlJUg.roa (raw, json)
Hash identifier: c7f+jh88QNGM0PCrEunF6DPw6LQ2Y0g+j9cnZQlRtvY=
Subject key identifier: B1:BB:80:90:74:BB:E1:8B:A0:0C:40:45:72:02:87:DE:76:25:25:48
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E514A9E88E55F17F4212AF0B60279
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sbuAkHS74YugDEBFcgKH3nYlJUg.roa
Signing time: Mon 02 Jan 2023 06:14:50 +0000
ROA not before: Mon 02 Jan 2023 06:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204372
IP address blocks: 45.13.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:51:4a:9e:88:e5:5f:17:f4:21:2a:f0:b6:02:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1bb809074bbe18ba00c4045720287de76252548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:66:bf:c5:a5:7c:8b:1e:11:f7:e6:ce:ea:
40:79:c0:71:b9:99:60:cf:48:ce:77:03:1c:09:fb:
a2:3a:bf:62:3b:b9:4b:94:ed:70:68:97:7d:af:9f:
8a:15:d1:68:8b:47:b1:15:4a:9e:8f:37:f3:3e:32:
c0:0d:be:89:2f:11:e8:65:bd:fb:c9:50:10:6f:e3:
74:04:b4:b8:84:14:61:18:26:5a:3e:d3:c5:99:db:
1d:55:1f:56:46:4e:dd:09:e9:0b:a3:0a:f6:f8:58:
9d:1c:4d:7e:8a:d0:3f:83:7a:b6:18:0d:24:74:f1:
a5:46:f1:9c:34:6e:4d:06:58:fd:37:bb:c1:ce:f3:
e1:90:8e:08:57:9b:36:4c:08:b1:b9:df:00:9c:26:
35:5d:81:61:9b:f8:4e:ab:c9:a4:ba:96:0f:db:f8:
15:2c:38:09:7f:f7:f3:0e:de:a2:2a:50:2b:48:f3:
11:3a:da:bf:27:c1:b3:b5:95:84:96:2c:64:ec:70:
24:63:b8:d4:2a:d9:bd:54:39:e5:08:a9:50:7a:41:
c7:df:0f:9f:ab:94:18:43:c1:86:44:c5:04:7b:df:
07:ee:aa:da:9e:ee:a2:e7:a0:bf:21:84:13:49:e6:
c3:31:1d:b1:85:40:d4:43:28:97:67:94:c6:22:49:
34:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:BB:80:90:74:BB:E1:8B:A0:0C:40:45:72:02:87:DE:76:25:25:48
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sbuAkHS74YugDEBFcgKH3nYlJUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.117.0/24
Signature Algorithm: sha256WithRSAEncryption
94:42:2d:b9:f9:d8:d1:98:10:f1:26:5c:ae:b2:30:36:17:b2:
31:83:9d:f0:e7:84:cc:4d:a3:d9:ab:5e:5a:e3:88:1f:39:96:
8f:c9:03:f7:f1:b5:15:ac:ca:3c:12:d0:43:f5:c3:a0:8d:35:
8f:e4:8b:9c:43:d2:cc:f4:36:f8:6c:b3:5c:6e:01:b0:60:8c:
59:d2:d4:9d:79:2b:f1:53:2d:05:b9:bf:55:84:17:18:2a:a1:
f7:96:e3:b5:3c:b5:ce:5c:66:e9:dc:e8:01:a9:34:c7:a7:33:
d0:fb:3e:5c:38:d8:17:5d:42:88:d9:c7:bd:cf:a5:5f:ea:e4:
b6:7e:db:bd:ce:94:11:d7:0b:e9:30:ef:05:a8:f1:fa:18:05:
2b:3a:75:0b:02:f7:18:c8:09:6a:4d:ab:98:3c:a3:7d:92:a9:
f4:65:8b:fc:52:3b:98:57:79:10:fe:36:22:5c:c2:c5:8e:20:
1b:07:2b:2b:b4:23:89:cb:f7:39:2a:36:27:b8:08:53:12:c4:
83:6d:a4:7b:bf:b8:65:1d:cb:57:86:f0:e0:cb:cd:51:cb:2c:
cd:dd:5d:c4:5c:14:9e:c2:18:48:ca:bd:aa:06:11:26:4f:e9:
4d:5b:a1:0f:4e:74:ac:78:24:e3:37:89:a2:3c:10:6a:c0:d9:
fd:98:ca:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org