Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/eFKcoJpLxnwCRy9QFzoD61xDsbI.roa
File: eFKcoJpLxnwCRy9QFzoD61xDsbI.roa (raw, json)
Hash identifier: dhzXFD4YwB4uYc3o6cCt6TE1EqMjgErE4e4x+6Zt0r4=
Subject key identifier: 78:52:9C:A0:9A:4B:C6:7C:02:47:2F:50:17:3A:03:EB:5C:43:B1:B2
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018BCEBA9B46B348431EFFA5377005FB98D5
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/eFKcoJpLxnwCRy9QFzoD61xDsbI.roa
Signing time: Tue 14 Nov 2023 16:46:57 +0000
ROA not before: Tue 14 Nov 2023 16:46:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 45.12.218.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:ba:9b:46:b3:48:43:1e:ff:a5:37:70:05:fb:98:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 14 16:46:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78529ca09a4bc67c02472f50173a03eb5c43b1b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:42:8f:01:db:9a:f4:f1:33:73:61:74:c4:8d:
a5:68:76:2d:dd:93:7a:41:a6:38:26:c0:e3:29:e7:
be:fb:b1:2f:01:a9:6a:16:51:4e:41:6a:92:2d:7d:
80:e3:16:a5:f4:c6:9a:89:f2:d5:6d:e8:de:cb:d7:
80:4c:36:00:93:0f:6f:42:1e:5a:8a:dd:3f:28:9a:
6d:9c:73:03:69:87:ad:b5:30:d4:b7:87:97:73:a5:
57:5e:65:40:22:87:81:9f:59:d4:ef:b5:20:5c:b5:
6e:cd:97:72:fa:9a:c2:3f:3a:1e:b9:e1:e2:5f:9e:
d6:47:ec:d5:9f:97:8a:ac:86:a4:f4:35:95:07:17:
3c:ea:e1:92:fb:8c:58:9d:2d:11:fc:21:95:0e:75:
db:6a:03:7e:68:49:32:a2:27:7f:dc:3f:da:60:88:
15:2e:c3:d3:60:6b:55:26:be:b5:47:f8:18:f5:8b:
44:56:88:28:99:0c:73:e6:a7:c4:68:d4:93:f3:d2:
7d:47:f3:ec:07:00:26:59:9d:ab:cd:f0:25:df:6b:
7e:95:44:5f:a5:30:84:e7:b9:e3:06:b9:45:3d:d5:
e5:5a:3c:a8:6d:bf:29:ea:47:b4:7c:27:be:51:5c:
7c:ec:b2:f8:26:82:2e:77:2d:1f:3f:8a:ba:4b:9a:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:52:9C:A0:9A:4B:C6:7C:02:47:2F:50:17:3A:03:EB:5C:43:B1:B2
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/eFKcoJpLxnwCRy9QFzoD61xDsbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.218.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:9f:dc:89:e9:fe:26:48:11:0f:9a:86:0a:46:96:80:66:f3:
3a:53:d7:2c:d5:43:93:f1:e5:7e:df:2e:c1:c6:4a:e7:e8:df:
e2:99:8f:df:f5:6c:49:01:2f:08:a0:78:dc:d2:b4:85:9f:fe:
f2:fe:1b:78:4f:25:46:74:95:96:44:f0:ad:e6:73:c0:76:2f:
fd:8a:71:b2:e3:e2:42:05:3c:9f:98:07:c4:27:30:d1:3d:b0:
94:dc:42:03:5b:15:f0:aa:5c:87:56:3f:6d:a8:b7:49:67:75:
44:b0:77:60:41:68:ce:59:32:37:6e:6c:3e:06:05:a2:0d:11:
c9:04:fe:2e:81:38:35:e8:dc:a9:a2:1c:07:87:26:ec:a0:b2:
28:b9:ab:c9:b1:1d:ab:5b:db:a1:b7:2d:d7:0d:79:b4:de:14:
77:a9:ab:17:eb:7e:c7:e9:8d:54:c4:7c:1d:e4:64:ed:4a:e7:
b8:aa:7f:6d:db:04:9f:00:0c:b8:89:0e:47:bf:a9:3f:66:72:
f7:61:0d:d4:13:3c:80:43:b4:e9:39:a6:5f:fe:76:a7:7d:2d:
6a:4e:41:40:11:69:6b:cc:ac:ef:c1:bc:a0:bc:e3:f4:bd:d9:
a8:ef:63:b3:97:e8:6e:31:fc:2c:67:99:bf:42:d1:e2:28:e2:
d3:10:10:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 14 15:02:44 2023 by rpki-client on console-ams.rpki-client.org