Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/iqrPdodD6_x1Z7VE6MpffLxkmdY.roa
File: iqrPdodD6_x1Z7VE6MpffLxkmdY.roa (raw, json)
Hash identifier: u6wbcxXmPjPNJcak8lqMo0uJu89D+xNCvm/Oo5lJi8s=
Subject key identifier: 8A:AA:CF:76:87:43:EB:FC:75:67:B5:44:E8:CA:5F:7C:BC:64:99:D6
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 018B3D893EF673DB3B74952FB05BDD618FAF
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/iqrPdodD6_x1Z7VE6MpffLxkmdY.roa
Signing time: Tue 17 Oct 2023 12:08:06 +0000
ROA not before: Tue 17 Oct 2023 12:08:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35197
IP address blocks: 45.159.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:89:3e:f6:73:db:3b:74:95:2f:b0:5b:dd:61:8f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Oct 17 12:08:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8aaacf768743ebfc7567b544e8ca5f7cbc6499d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:e0:94:5f:18:8a:55:cd:64:f7:4d:29:15:
e3:00:c4:c1:ae:d6:36:0a:5e:15:3f:e5:bd:f8:5a:
8d:57:0d:63:b4:30:07:4c:52:f9:2a:7b:00:78:03:
49:c6:6f:bc:2e:b6:2f:38:ab:11:88:f8:cd:f5:17:
1c:52:56:61:ba:61:78:fe:58:a1:94:04:f4:4b:93:
6d:45:dc:62:f0:6a:ce:b4:b5:51:7b:d1:c4:ab:ef:
fc:83:b8:e8:da:c4:21:fe:a5:30:c3:db:5e:04:36:
52:c9:4f:9b:65:ec:0e:e8:ab:da:93:d8:fb:c9:02:
4c:b7:c8:f1:b0:32:63:ad:2d:89:22:e3:8f:41:26:
c8:df:29:6f:8f:75:0e:64:55:52:79:32:32:23:80:
cc:bb:1d:1c:37:64:88:2a:b1:7a:91:e0:d8:b7:96:
93:4d:0e:61:a1:b3:f7:c5:3b:db:75:91:f2:f4:80:
2f:17:d5:88:af:b5:94:80:33:e1:8f:b2:5e:87:4e:
f2:8b:c4:80:33:09:88:71:8f:ca:ba:46:38:7d:12:
9d:08:76:f1:45:97:03:1f:39:31:b1:08:2e:85:61:
7f:51:c4:a6:10:28:7f:93:1f:75:96:a9:d4:ee:91:
53:48:8b:37:08:8d:20:f4:48:0c:dc:a1:cf:14:4e:
ab:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:AA:CF:76:87:43:EB:FC:75:67:B5:44:E8:CA:5F:7C:BC:64:99:D6
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/iqrPdodD6_x1Z7VE6MpffLxkmdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.187.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:95:b0:ae:27:6d:39:b9:dc:0c:9c:8d:67:61:93:a1:9d:46:
7b:6b:7b:9c:b3:16:1b:af:cb:54:3c:03:4e:60:a5:67:1f:d8:
5a:9f:62:5c:4a:19:28:18:e5:0b:85:e2:1f:b9:86:40:51:ec:
c0:65:bf:74:79:99:a8:08:3b:3e:fe:6a:8d:9d:b4:4c:79:d5:
9e:c9:ee:42:cd:71:2a:88:97:c3:c9:f7:a9:e9:8b:1f:43:75:
db:ff:19:9f:a8:6d:f6:df:71:51:b6:29:c2:2a:3e:9b:0c:8c:
90:5e:7d:12:93:6a:df:27:50:55:df:6e:06:6e:ca:83:79:09:
45:cf:50:c6:4b:75:b1:c1:14:9f:7a:74:2d:d6:af:a8:54:50:
20:ef:18:81:2d:5e:a2:84:0e:8a:16:06:94:13:ed:ff:36:9f:
22:2c:5e:38:da:14:4a:74:e5:3a:99:1d:95:ba:ea:1d:68:81:
93:61:8d:47:d4:f3:19:0b:28:cc:7d:c9:05:87:08:4e:c1:d0:
2a:3e:3f:5b:dc:3e:d4:d2:51:b0:98:df:87:50:ce:f8:41:32:
d5:0e:74:63:c6:04:4a:e5:00:1b:97:38:b6:0c:df:b6:64:8f:
48:5f:1b:e2:13:1e:0a:eb:77:4b:33:29:c5:a2:90:28:2b:a2:
18:4d:c9:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:44 2024 by rpki-client on console-fra.rpki-client.org