Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/y2NQyv6BV0dVY-UcWhtORiXM6LM.roa
File: y2NQyv6BV0dVY-UcWhtORiXM6LM.roa (raw, json)
Hash identifier: EfgSlV7DsIPjDocAjAabtY1Q+MRaslkOl96Jk2831fI=
Subject key identifier: CB:63:50:CA:FE:81:57:47:55:63:E5:1C:5A:1B:4E:46:25:CC:E8:B3
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0188E72D76F0147394FCF56FF0EADF126D5E
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/y2NQyv6BV0dVY-UcWhtORiXM6LM.roa
Signing time: Fri 23 Jun 2023 07:34:56 +0000
ROA not before: Fri 23 Jun 2023 07:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203758
IP address blocks: 45.65.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e7:2d:76:f0:14:73:94:fc:f5:6f:f0:ea:df:12:6d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 23 07:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb6350cafe8157475563e51c5a1b4e4625cce8b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:81:8f:70:87:60:15:68:c2:ea:d1:1a:ff:b5:
4d:57:1a:ba:ad:19:57:bf:f7:b8:e4:ef:8d:97:aa:
33:5c:6c:a1:c5:cb:19:a0:b6:bf:bb:59:73:75:0b:
15:43:ff:eb:98:f1:47:96:f0:5e:14:62:99:9b:c9:
9d:ee:85:a3:83:cc:ed:d1:d3:59:75:e0:33:9c:7b:
e4:dc:c4:fd:45:1d:76:47:d8:e6:e7:e6:3c:f7:29:
09:14:d7:d2:1e:66:96:bb:f2:e2:0e:2a:89:43:74:
af:83:2d:97:d4:61:e6:3a:e6:24:14:a3:00:1f:d5:
b3:15:85:6a:c8:96:42:e9:3b:9e:f2:f5:46:59:65:
ac:a7:d2:a5:d2:4b:7e:4f:3e:bd:94:36:e9:f5:83:
cf:f6:3c:3a:da:4d:2c:82:78:95:85:4c:40:a7:56:
28:45:18:dc:08:1f:62:37:08:94:45:6f:49:03:b5:
ca:b0:3b:c8:0d:47:8c:92:ea:0d:01:66:9e:92:80:
9b:6c:1e:7c:e1:8f:fe:4a:af:bd:d2:61:14:ae:e0:
09:8b:bd:eb:df:7c:c0:00:66:30:0e:2a:62:04:f6:
63:30:85:53:d5:33:62:80:a8:f8:37:7a:43:6e:88:
5d:69:18:79:e0:c7:b8:e3:0a:d7:56:67:6c:15:91:
b8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:63:50:CA:FE:81:57:47:55:63:E5:1C:5A:1B:4E:46:25:CC:E8:B3
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/y2NQyv6BV0dVY-UcWhtORiXM6LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.114.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c2:b7:18:e4:2d:38:03:c5:e8:96:65:c4:bc:49:c5:7b:7c:
49:73:7a:0e:34:a2:89:91:98:fe:db:ca:9d:d3:0a:4e:eb:dd:
7f:7b:85:ae:9e:02:43:d2:46:72:d6:60:2c:4a:16:30:40:ce:
fd:bf:e8:c5:fc:46:90:b2:a9:b3:33:16:09:35:1a:e5:0d:74:
66:81:c5:82:b7:97:07:a0:13:28:78:8e:ca:46:d8:09:16:66:
21:e9:21:b3:27:44:74:71:d2:88:cb:eb:99:72:fe:88:18:f4:
34:f9:76:8f:06:b0:d2:af:72:5c:6c:08:27:1e:7b:af:ad:2e:
19:e6:30:82:c5:b1:57:1c:74:9b:75:67:50:db:17:33:e1:26:
d3:c2:07:52:50:df:d1:b1:4d:e3:7a:06:5a:8a:f7:20:44:15:
36:b6:86:3a:0a:af:55:cf:cb:d3:f1:20:65:8b:94:ee:b1:fb:
95:11:63:21:0a:80:e2:0f:33:56:18:64:5b:30:f4:3e:12:95:
15:b6:d0:c2:d1:41:61:1c:c2:75:53:24:fe:56:70:2a:d7:69:
ae:17:8e:dd:6b:1e:de:07:5e:d8:f8:db:e7:2b:7a:56:65:84:
8a:18:49:ad:6e:6f:ed:0e:21:64:77:40:0f:23:0f:28:39:83:
15:18:33:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:23 2024 by rpki-client on console-fra.rpki-client.org