Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/BTRQtqwtEa2I7FXT9YrtmpzS-Vs.roa
File: BTRQtqwtEa2I7FXT9YrtmpzS-Vs.roa (raw, json)
Hash identifier: sZno9ReQ99Rqcut5tMAqPx7iyeBbN1QrQnexDYhuO/Q=
Subject key identifier: 05:34:50:B6:AC:2D:11:AD:88:EC:55:D3:F5:8A:ED:9A:9C:D2:F9:5B
Certificate issuer: /CN=421f108882a9e2d72782db6527da4d9adeeb19cc
Certificate serial: 01856ECB6978DD9194AFDBD1A8F4DC6A4036
Authority key identifier: 42:1F:10:88:82:A9:E2:D7:27:82:DB:65:27:DA:4D:9A:DE:EB:19:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qh8QiIKp4tcngttlJ9pNmt7rGcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/BTRQtqwtEa2I7FXT9YrtmpzS-Vs.roa
Signing time: Sun 01 Jan 2023 19:25:02 +0000
ROA not before: Sun 01 Jan 2023 19:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.86.112.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:69:78:dd:91:94:af:db:d1:a8:f4:dc:6a:40:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421f108882a9e2d72782db6527da4d9adeeb19cc
Validity
Not Before: Jan 1 19:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=053450b6ac2d11ad88ec55d3f58aed9a9cd2f95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:35:c1:af:0c:39:7c:a3:a7:6e:82:92:ef:a4:
78:80:6c:10:93:5e:58:28:3d:78:1c:80:f7:e7:02:
54:fe:39:9d:52:51:53:9e:6e:9d:47:bd:72:9f:8e:
b6:82:8d:19:98:c0:31:a5:54:6c:4d:c2:4d:f2:1e:
27:9d:4c:f4:2e:19:80:8f:9d:34:75:64:e3:3c:1c:
71:fd:b6:87:57:da:c5:60:b6:53:90:0b:97:5f:f9:
2e:fc:11:fe:0a:ba:0c:28:5e:bb:af:ac:be:6b:77:
23:24:81:89:98:05:6e:1f:fc:55:9f:b6:3f:e3:b3:
6e:d5:85:7c:28:e8:a0:7c:b8:bb:77:d9:22:44:f1:
de:da:30:d5:04:ba:ce:56:06:6e:57:30:c8:7a:dc:
eb:3e:a3:06:d5:94:d2:c2:d4:d1:e6:49:20:f7:89:
61:97:d9:ff:35:11:c6:4a:9f:40:64:52:0d:6d:a6:
b0:83:ee:92:23:67:c7:86:a0:aa:4d:79:05:b2:62:
c9:f5:5f:7b:af:34:78:d6:26:bf:ae:6c:a8:a9:08:
60:b6:11:65:46:02:9b:83:62:4a:51:3a:65:e2:27:
e5:0b:f8:8d:ea:61:54:90:18:06:e0:be:ac:44:c0:
92:7c:1a:73:3f:70:b3:5b:b8:d0:4e:62:b8:c1:57:
53:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:34:50:B6:AC:2D:11:AD:88:EC:55:D3:F5:8A:ED:9A:9C:D2:F9:5B
X509v3 Authority Key Identifier:
keyid:42:1F:10:88:82:A9:E2:D7:27:82:DB:65:27:DA:4D:9A:DE:EB:19:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qh8QiIKp4tcngttlJ9pNmt7rGcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/BTRQtqwtEa2I7FXT9YrtmpzS-Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/21922a-dd79-4f56-83be-0a069dec100a/1/Qh8QiIKp4tcngttlJ9pNmt7rGcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.112.0/24
Signature Algorithm: sha256WithRSAEncryption
84:0d:cc:ca:9b:21:c0:62:86:2c:b9:74:b6:95:17:18:c0:18:
96:03:2a:71:1b:29:5e:27:db:27:44:25:c1:18:36:22:38:d6:
8e:a1:09:02:5a:f2:f6:d4:18:74:4c:9d:f2:6b:0b:2b:8d:37:
df:bd:0d:16:ee:36:a5:1b:63:83:f8:77:09:46:cb:14:40:63:
b4:b2:86:c4:e3:27:33:05:e9:5b:d0:01:d9:29:e3:e4:3d:bd:
af:db:a0:0a:68:d6:9b:11:03:da:b1:12:df:6b:0d:86:07:09:
9a:02:17:04:9e:3e:27:e5:c9:9d:97:cd:ca:ef:3f:c6:29:42:
a5:d9:fd:3c:e0:4c:c4:c8:25:bd:9a:c7:ca:7d:ea:e5:26:f7:
dd:ee:41:b4:3e:35:ba:bd:eb:28:f7:e6:6e:78:8a:3f:e4:b4:
d7:a4:ee:f2:f3:2e:f9:36:d5:12:ab:f2:33:d7:46:1f:73:39:
73:9d:1e:b6:a4:4a:61:30:ae:33:17:57:d8:06:c1:da:ff:00:
8f:8f:fa:ef:5b:8b:83:0e:c9:13:4a:07:53:dd:51:a6:70:aa:
7b:fd:94:8b:60:0d:07:1a:be:c8:9a:04:57:08:5d:c1:e3:ce:
74:26:dd:3a:a9:27:c5:b7:c2:50:11:b3:01:b9:2b:de:88:a9:
38:2f:a5:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:05 2024 by rpki-client on console-ams.rpki-client.org