Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Oy018xcsgGCm4UG3BnNQIo_e9L4.roa
File: Oy018xcsgGCm4UG3BnNQIo_e9L4.roa (raw, json)
Hash identifier: qhrAMT7A1fdbOy14WoMw20S9msFHjisgfMnjo+7AqpA=
Subject key identifier: 3B:2D:35:F3:17:2C:80:60:A6:E1:41:B7:06:73:50:22:8F:DE:F4:BE
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01896524196F00198C745736F4463CD88C4B
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Oy018xcsgGCm4UG3BnNQIo_e9L4.roa
Signing time: Mon 17 Jul 2023 18:36:51 +0000
ROA not before: Mon 17 Jul 2023 18:36:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.128.0/22 maxlen: 22
45.65.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:24:19:6f:00:19:8c:74:57:36:f4:46:3c:d8:8c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 17 18:36:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b2d35f3172c8060a6e141b7067350228fdef4be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:dc:d8:1f:40:7b:fb:a3:c3:ef:52:b2:26:45:
c2:14:b5:51:ff:84:92:92:47:d8:b6:be:60:b2:74:
fe:b6:61:c7:75:16:60:1e:51:99:53:c8:16:a6:26:
7b:5c:99:8d:03:1b:41:d3:45:0b:94:b2:bb:57:6a:
73:27:30:8f:84:b1:be:36:c3:54:7c:9f:dc:f1:5d:
5e:d7:b7:eb:97:f0:91:48:d9:be:af:0c:ef:9a:e3:
5c:bd:30:6e:a0:46:78:a7:91:a3:23:95:75:4c:5f:
14:31:91:8b:f9:bd:9e:e0:e1:f6:c0:db:1e:76:39:
af:da:73:39:68:6b:76:76:53:fa:61:c8:9a:ac:db:
23:ac:b5:1f:ce:7f:2f:b6:72:e9:db:8a:c3:b6:bf:
c3:17:4b:c6:30:f7:ee:70:45:b7:7c:35:9d:d8:07:
30:e9:57:88:61:48:81:c3:fa:d3:11:49:b6:e5:58:
42:e9:87:6a:60:10:49:1e:c2:b7:de:ce:c9:7d:0e:
46:3b:f0:de:28:3f:ab:6d:ef:bd:3a:fa:f6:3f:8d:
90:00:18:6a:0d:b7:f1:de:f0:ff:66:8a:8f:a2:c7:
b1:21:59:8e:c1:c0:a3:99:8b:8d:49:14:8e:8e:a6:
4e:d1:48:90:e4:7b:64:ea:92:d8:93:ff:8d:95:5b:
33:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2D:35:F3:17:2C:80:60:A6:E1:41:B7:06:73:50:22:8F:DE:F4:BE
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Oy018xcsgGCm4UG3BnNQIo_e9L4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.113.0/24
188.209.128.0/22
Signature Algorithm: sha256WithRSAEncryption
41:5e:fb:cc:c8:f3:32:17:4d:10:c2:df:2f:ae:25:df:cd:37:
b1:a5:35:16:c4:aa:7e:10:75:ea:12:22:38:ee:5d:ca:c1:6a:
dd:55:4c:47:95:c7:3e:ce:ef:53:6a:d0:5b:ff:2e:d4:73:f5:
a3:16:f4:ab:ab:97:b4:ab:c7:52:52:56:81:19:17:fc:61:e5:
2b:9a:33:4e:8c:10:5c:66:b8:70:30:f2:be:c5:79:88:e9:57:
b5:1f:81:3e:6b:e9:6b:7d:49:18:cc:58:30:b8:f2:af:f7:c9:
3a:8a:7b:9b:02:c5:7e:3d:56:c2:28:e4:91:15:20:0c:5f:a6:
11:db:82:93:3d:a5:74:ea:d8:a5:a7:41:2c:3f:51:f3:c6:4a:
2d:11:c3:69:09:2c:bd:f9:c9:95:d9:47:51:8e:18:d9:a8:00:
8a:33:71:cd:ef:bc:2b:29:a9:1e:55:50:ae:2c:61:23:92:3b:
c4:81:4c:4d:74:bf:44:69:b2:e7:d4:c9:c5:e7:3e:80:54:8c:
23:59:0f:1e:bb:0c:3d:56:49:21:2d:42:02:08:d3:e4:c6:26:
9a:94:3a:cc:c0:27:2f:7a:6c:e5:44:03:36:8a:27:2f:76:6a:
9a:c4:73:4b:a3:99:f2:97:76:07:d9:25:80:3e:09:b0:3c:b8:
c8:34:94:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org