Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/oywdljUfe4UdNmatW3HshzjqJpo.roa
File: oywdljUfe4UdNmatW3HshzjqJpo.roa (raw, json)
Hash identifier: eY6+StWDf2PNV+v6VSps0S9y2BNYe/t1KaNts/7pkjQ=
Subject key identifier: A3:2C:1D:96:35:1F:7B:85:1D:36:66:AD:5B:71:EC:87:38:EA:26:9A
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018571A79E65180E5A9C6D2CA8D895696C25
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/oywdljUfe4UdNmatW3HshzjqJpo.roa
Signing time: Mon 02 Jan 2023 08:44:48 +0000
ROA not before: Mon 02 Jan 2023 08:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5089
IP address blocks: 45.67.196.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:9e:65:18:0e:5a:9c:6d:2c:a8:d8:95:69:6c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 2 08:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a32c1d96351f7b851d3666ad5b71ec8738ea269a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b3:3f:0d:be:a0:91:7e:b8:49:97:41:6a:e8:
d3:31:01:52:1e:5f:56:6c:68:6a:dc:8c:5c:fd:47:
15:b2:64:26:bc:d9:1b:c0:2d:1e:60:14:6e:d0:b3:
53:9c:cf:62:86:6a:77:2c:b2:16:7a:dc:56:a5:79:
a7:8c:91:0c:b0:3d:34:67:3e:0c:5c:ec:5f:ce:5b:
93:c7:2d:02:07:4e:b2:cc:d2:4a:2a:2d:00:08:cc:
f1:27:43:db:03:ca:56:7b:0c:f8:c3:83:a9:36:24:
46:a4:9c:f8:d5:6d:5b:d1:37:b6:26:ff:90:23:93:
a1:25:0b:d2:28:3d:c1:3f:ef:b1:2e:0c:22:cd:c9:
14:96:86:da:92:ff:bf:58:ba:a3:e0:ca:9e:bb:5b:
31:e2:28:46:7d:73:3f:d4:61:65:92:e4:b8:64:c2:
70:ae:d9:c8:09:4b:90:a5:ee:49:2e:61:98:97:33:
f5:fb:e8:aa:dc:4d:1b:95:31:36:cc:9d:fb:52:61:
7a:3b:2f:e7:1e:8f:8e:61:80:73:fc:f8:51:cb:b1:
db:83:b6:06:c8:15:8e:0b:11:bb:f2:ce:3b:45:d6:
fa:32:35:62:5d:d4:69:47:6b:d9:25:7f:c1:e9:94:
9e:47:12:b8:32:9e:cc:89:4b:ca:54:be:5a:9e:39:
85:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:2C:1D:96:35:1F:7B:85:1D:36:66:AD:5B:71:EC:87:38:EA:26:9A
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/oywdljUfe4UdNmatW3HshzjqJpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.196.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:5e:7c:4f:1d:ae:aa:e0:7f:dd:a9:a8:f5:28:72:4a:20:3b:
0d:66:f5:10:8f:6a:de:bd:38:0f:bf:9e:49:b6:11:b1:a2:3b:
a6:33:2b:58:ca:5b:18:e8:55:a1:04:e1:8a:00:ec:aa:05:9a:
c3:23:c4:32:46:c8:8e:59:c3:fa:4b:39:57:97:79:a6:7a:dc:
1e:d9:fe:78:15:94:6a:a8:77:95:9c:92:dd:73:fd:10:78:3e:
40:e5:65:0e:67:93:ab:71:93:7f:f1:7c:4c:4c:53:3a:41:10:
c1:16:08:b8:0c:55:19:40:0b:bc:80:e6:47:0c:41:ea:6f:fd:
02:53:0d:66:e7:4b:05:a7:18:c9:19:06:0d:fa:a8:45:4d:34:
38:df:c8:1c:a4:82:19:9c:72:77:8a:e9:44:d1:cd:bc:3e:c7:
92:e3:4f:75:82:ba:c4:c3:96:93:24:03:6a:f1:f9:22:43:63:
9a:d0:c2:89:e3:bd:0f:01:81:5c:2a:9f:8d:c5:db:7d:bc:ab:
32:1e:cd:64:b6:53:96:24:6c:35:1c:34:b8:2b:a5:79:ed:d7:
d1:33:e5:04:41:ac:b9:c7:08:95:4c:81:fb:55:6c:59:20:de:
17:72:d7:08:37:e4:8d:f1:da:92:ba:7c:c1:6a:2d:5d:a3:3b:
04:5f:1f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:06 2024 by rpki-client on console-ams.rpki-client.org