Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/uxXTLEU7BSAY1zjvxr78shc019g.roa
File: uxXTLEU7BSAY1zjvxr78shc019g.roa (raw, json)
Hash identifier: x3AIsZWdNfp/NG/42XfSxX1WlEcoXX+p+4PmokORloE=
Subject key identifier: BB:15:D3:2C:45:3B:05:20:18:D7:38:EF:C6:BE:FC:B2:17:34:D7:D8
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018571A7AFC0323B06E1ECED7DF19CED5DA7
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/uxXTLEU7BSAY1zjvxr78shc019g.roa
Signing time: Mon 02 Jan 2023 08:44:52 +0000
ROA not before: Mon 02 Jan 2023 08:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203624
IP address blocks: 45.91.84.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:af:c0:32:3b:06:e1:ec:ed:7d:f1:9c:ed:5d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 2 08:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb15d32c453b052018d738efc6befcb21734d7d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:43:50:57:43:e2:54:47:f4:a9:38:ad:0e:8e:
ef:1f:28:6c:aa:10:5c:2f:54:ce:7e:af:c0:16:af:
e9:d9:7a:4b:ad:29:89:85:25:86:66:26:e0:7e:d1:
87:99:62:73:02:23:dc:e5:96:75:7c:11:e1:c7:0e:
1a:e5:9c:2f:3c:9c:29:9c:be:41:09:d1:67:ec:53:
89:a3:9b:6e:8f:d0:17:54:32:e6:95:3e:4c:c0:1e:
12:c3:aa:58:04:81:7e:12:fe:68:ed:55:c0:cd:d4:
e4:dd:df:fa:9f:e1:8f:0b:a3:42:71:ab:5e:25:63:
c6:23:51:a1:d3:0f:1f:7f:44:77:33:ab:5a:61:c9:
ef:a6:cd:57:ca:a3:8e:56:b7:c0:9a:ca:63:9f:02:
78:0d:20:0e:5f:52:52:fe:a9:c2:81:0d:98:cd:a7:
ef:5c:0d:50:96:12:a4:d3:30:5c:6a:4e:d6:fb:c5:
4f:ca:f8:9e:ee:9b:ec:db:4d:8f:fa:87:14:54:52:
13:3c:cd:e3:8c:c0:2b:51:9b:d7:60:b0:c1:48:8e:
04:9b:31:e9:99:cb:87:4f:2b:04:49:61:0c:9e:f0:
95:fb:48:ef:a9:df:b7:a4:e9:44:78:7c:80:c3:63:
83:8e:91:03:5e:39:ad:ab:fb:dd:97:3f:f5:12:ff:
d0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:15:D3:2C:45:3B:05:20:18:D7:38:EF:C6:BE:FC:B2:17:34:D7:D8
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/uxXTLEU7BSAY1zjvxr78shc019g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.84.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:67:37:ff:8e:c3:f6:18:36:2f:05:50:ae:35:f9:ae:5c:ab:
35:dd:45:1f:90:0a:cc:ac:e1:3b:1f:0f:46:7a:cf:a5:21:83:
d8:16:c8:6b:8b:3c:c0:d2:19:e2:e8:92:a7:1b:76:27:dc:90:
fd:9f:36:57:d2:11:03:10:cd:ee:0e:56:42:fc:79:da:34:f0:
d2:09:ed:40:23:d9:21:04:8d:3e:06:6f:47:df:08:05:38:4f:
ec:40:89:67:0d:68:c6:52:ef:37:a6:54:f8:81:f8:f9:52:8e:
25:f9:ae:66:9b:be:e9:22:18:ed:49:b2:bc:76:07:71:c9:3f:
04:d2:4b:ac:55:ba:d9:70:d6:58:c2:e0:11:26:0e:20:86:ce:
f8:c4:fd:c6:6c:7f:82:33:a4:e0:57:ee:14:f0:a3:03:16:ed:
54:9b:13:2f:36:e3:7d:56:2d:d7:ec:0d:fe:33:5a:07:4c:86:
ae:41:04:5c:81:19:4f:8a:3c:47:2a:60:9e:61:18:49:72:1e:
7e:7e:68:61:07:59:0e:88:a9:b6:f4:9b:4e:a1:4a:38:10:bb:
e9:99:59:8d:ee:42:a8:ab:03:75:ce:4a:c8:0c:23:38:3d:57:
ac:5c:43:bc:82:40:32:c7:0e:f2:c0:a9:2b:22:4f:89:3c:ed:
1d:54:45:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:21 2024 by rpki-client on console-fra.rpki-client.org