Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/oCd9UnNd2GgM480Ot0E9ccgQMOw.roa
File: oCd9UnNd2GgM480Ot0E9ccgQMOw.roa (raw, json)
Hash identifier: rSBK0Cl38DJc2LMi9t0+ZQIKHWwfrqEsek4seaPMxVY=
Subject key identifier: A0:27:7D:52:73:5D:D8:68:0C:E3:CD:0E:B7:41:3D:71:C8:10:30:EC
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 0189F0606F9FFBA34C9B90F63237B8BF7FD2
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/oCd9UnNd2GgM480Ot0E9ccgQMOw.roa
Signing time: Sun 13 Aug 2023 19:29:59 +0000
ROA not before: Sun 13 Aug 2023 19:29:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 45.84.240.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f0:60:6f:9f:fb:a3:4c:9b:90:f6:32:37:b8:bf:7f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Aug 13 19:29:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0277d52735dd8680ce3cd0eb7413d71c81030ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:54:eb:f9:20:88:90:6d:05:c5:31:e4:ea:a2:
d2:4a:06:9f:ca:33:2d:c7:da:08:b1:97:31:5d:89:
50:89:13:ec:6b:47:e0:59:3f:47:6d:dc:d6:b8:a2:
24:51:3f:3b:6c:e1:bb:6f:51:f7:50:e0:5d:0a:8f:
fd:b5:16:12:b7:eb:48:c4:0b:6d:e0:68:e8:d8:e5:
81:7b:63:61:44:13:35:e6:df:72:c9:6f:b0:cf:03:
63:d8:bc:46:d0:36:d4:17:36:af:03:ba:07:7f:bc:
de:6f:4e:44:3c:05:ce:ad:b9:de:1d:ec:cf:3e:90:
7a:69:0f:d6:2f:91:a0:8e:2f:e6:14:86:fb:45:2c:
de:b4:29:52:43:8c:8e:c6:50:7d:ea:6f:49:9f:31:
a9:c8:bf:fb:c0:28:3d:0b:0c:c1:e3:be:38:05:10:
d8:6f:62:fe:a8:98:3a:16:ac:70:3a:64:10:88:36:
71:52:74:2e:81:57:d1:a6:6b:74:bc:68:9c:97:67:
44:bd:82:42:d7:d2:d1:17:2e:a0:f5:b4:d0:47:99:
17:af:01:fa:f4:84:73:fd:99:93:5d:8b:7e:07:84:
df:e3:91:f6:5d:af:c0:91:1f:b4:5b:9d:c2:fe:25:
c7:62:dd:9c:5e:ba:47:01:6c:a7:79:1e:d5:34:7f:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:27:7D:52:73:5D:D8:68:0C:E3:CD:0E:B7:41:3D:71:C8:10:30:EC
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/oCd9UnNd2GgM480Ot0E9ccgQMOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.240.0/23
Signature Algorithm: sha256WithRSAEncryption
80:fe:58:a0:a9:82:9b:a7:77:7e:4d:1c:c9:52:d8:27:48:a3:
70:c1:4f:ea:59:43:9d:99:04:01:8c:52:b2:df:bd:3a:3e:f3:
21:e0:26:79:85:87:93:a6:0f:36:56:2e:bf:5d:fc:84:2a:50:
93:c6:a6:bf:8f:c8:4b:44:7a:8f:30:84:80:55:f5:88:25:cf:
f9:d1:47:59:b7:5b:5d:73:1f:6f:8b:00:f2:bf:08:54:ed:5d:
be:f1:f6:a0:28:36:cc:57:d8:4f:ef:26:71:af:58:2e:a3:72:
f6:27:16:6c:bb:2c:e1:5f:7e:ba:e6:06:88:e7:3d:dd:ed:6f:
b4:44:c3:2c:23:f8:a4:2c:7d:62:90:f8:fa:47:9b:b3:f3:fa:
c5:dd:a9:15:33:4f:c8:e2:3f:27:ee:14:8f:8a:d6:22:ba:c9:
ff:49:7a:0b:b9:79:63:87:4e:69:b8:10:da:97:2f:73:dc:bc:
aa:5a:09:aa:5a:a9:37:fa:7f:b4:9f:f6:4c:38:5c:c7:3c:00:
19:55:7f:21:05:19:c6:bb:3d:de:41:1a:0c:55:09:cc:53:18:
01:32:af:7d:0c:30:be:57:de:ef:1a:20:c2:49:f1:f3:ae:5e:
97:3e:df:36:c6:40:dd:ff:22:ef:c0:4d:bf:66:0c:6b:2b:be:
58:ba:b3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:21 2024 by rpki-client on console-fra.rpki-client.org