Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/vQJOu-aYbPT95xcOCn9l-G3wlZ0.roa
File: vQJOu-aYbPT95xcOCn9l-G3wlZ0.roa (raw, json)
Hash identifier: YAJGdSdyDOhYztILWAjR0Mq7Hghz5hr6hKfi7iQLXVM=
Subject key identifier: BD:02:4E:BB:E6:98:6C:F4:FD:E7:17:0E:0A:7F:65:F8:6D:F0:95:9D
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0186FF47489DF2720F0C6FD74AFC26405A3B
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/vQJOu-aYbPT95xcOCn9l-G3wlZ0.roa
Signing time: Mon 20 Mar 2023 13:48:27 +0000
ROA not before: Mon 20 Mar 2023 13:48:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202834
IP address blocks: 45.94.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:47:48:9d:f2:72:0f:0c:6f:d7:4a:fc:26:40:5a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Mar 20 13:48:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd024ebbe6986cf4fde7170e0a7f65f86df0959d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3e:d5:9c:96:0e:1c:7e:48:3a:37:34:59:b6:
5f:74:1a:18:01:e4:e5:d1:3f:42:8c:7d:a3:7a:43:
95:41:75:e5:bb:5d:ae:03:9b:a5:0d:a9:0c:eb:b7:
9f:75:67:fc:a4:73:e4:5d:aa:87:74:2a:dd:f5:36:
45:2c:06:59:f0:00:28:19:94:84:dc:81:e0:cf:24:
15:e8:07:86:4f:b5:09:54:61:f1:1f:f4:12:3f:2b:
e6:b7:55:b9:f7:7b:04:66:94:40:7c:bc:31:d4:8b:
d7:7e:e4:63:7a:b0:1e:e9:53:e9:54:5c:6d:a8:62:
1a:a0:98:c1:3e:53:23:d2:1a:2d:7a:2b:79:ce:93:
41:a0:14:2f:8b:cf:05:c1:7d:e6:cc:d4:dd:3d:d0:
2f:9e:09:82:6c:9d:83:93:28:41:a5:0c:a5:d2:7e:
6b:3a:be:6a:86:d3:35:d1:6c:19:91:f1:6d:1e:42:
63:84:e2:d1:15:83:4d:77:5a:15:7b:50:39:ab:cc:
ec:43:68:76:3e:6c:b4:42:f1:3f:76:c5:5b:a7:5e:
98:0b:51:3f:0e:aa:68:70:23:3b:c4:98:61:f0:94:
c0:cb:3c:09:a4:a5:e4:fc:40:ad:41:80:50:c2:41:
41:9d:44:7c:44:ee:e0:a5:4c:95:aa:4c:b0:af:69:
93:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:02:4E:BB:E6:98:6C:F4:FD:E7:17:0E:0A:7F:65:F8:6D:F0:95:9D
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/vQJOu-aYbPT95xcOCn9l-G3wlZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.16.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:bf:55:15:61:89:00:63:6d:dc:32:59:65:77:18:71:d9:8c:
61:da:e3:77:1e:b0:d2:08:90:30:1c:b7:b6:eb:38:19:1e:12:
37:14:93:8e:56:4d:46:86:a3:b7:3f:00:b4:18:1b:8d:65:8e:
00:2e:0d:10:33:5b:3a:e7:f9:63:72:c5:ae:c4:88:13:81:c0:
9a:78:75:c8:fd:84:d8:db:bf:70:a3:c9:53:ae:54:bf:2e:59:
5f:9a:b7:97:92:4b:9b:c6:86:51:e8:43:37:f2:90:ec:3b:fd:
35:db:c1:bd:9c:9a:2b:48:b4:89:25:4c:d4:77:28:cc:5f:f6:
37:a3:8c:0a:61:77:fb:2f:43:a0:03:89:05:8d:9e:1e:6f:ee:
e6:33:a4:d1:da:c1:06:3f:20:c7:a3:5d:f4:1a:0a:c9:ec:eb:
c2:85:b7:37:45:60:94:f4:34:44:d0:7a:ec:5a:fa:f0:ce:bd:
87:56:fc:57:15:3e:6c:d6:99:c2:69:5d:e4:cf:36:e1:86:49:
7e:fe:dc:71:1f:bc:3f:b8:43:0d:d2:7c:bd:77:2c:9a:e2:31:
60:38:31:9e:c8:c9:2d:25:f9:92:fc:34:3a:55:28:7f:67:0b:
64:2d:f7:1c:27:a6:fc:5b:d0:49:e1:1c:6c:b1:9b:ed:b4:6f:
4b:be:7a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:19 2024 by rpki-client on console-fra.rpki-client.org