Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/fy2axsJkTOoW_hLszXIKGaGAHqw.roa
File: fy2axsJkTOoW_hLszXIKGaGAHqw.roa (raw, json)
Hash identifier: vv7vdlWA56mQ4CCO9s+BQH7h4GKs10raBjK7aj9WNvU=
Subject key identifier: 7F:2D:9A:C6:C2:64:4C:EA:16:FE:12:EC:CD:72:0A:19:A1:80:1E:AC
Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Certificate serial: 01856B8A14932B5BC84AB5ACBC24129FE3EC
Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/fy2axsJkTOoW_hLszXIKGaGAHqw.roa
Signing time: Sun 01 Jan 2023 04:14:49 +0000
ROA not before: Sun 01 Jan 2023 04:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44218
IP address blocks: 145.14.94.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:14:93:2b:5b:c8:4a:b5:ac:bc:24:12:9f:e3:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234
Validity
Not Before: Jan 1 04:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f2d9ac6c2644cea16fe12eccd720a19a1801eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4a:7b:7b:c5:1f:07:c7:3c:8f:92:b3:73:32:
7c:30:3e:55:d3:73:91:e4:b5:0d:1c:2b:a2:bf:01:
58:15:71:c0:ac:f6:d2:d7:ef:75:79:7d:58:9d:aa:
cf:46:ce:c4:50:8b:80:58:16:62:9d:82:ec:fe:8c:
92:06:f3:48:63:05:fc:1d:1f:ce:26:1f:de:57:f8:
09:77:63:f0:67:b0:9d:52:77:a8:f2:21:53:21:54:
bb:25:3c:e2:bc:49:fc:42:54:73:4d:01:a8:90:21:
f6:c3:26:59:5a:58:4a:4f:43:d4:b1:91:f4:5e:05:
d7:9b:8f:be:52:7e:67:c2:79:5e:1f:2a:e8:ec:53:
5c:b7:0e:63:80:47:4e:72:7a:c7:ad:7a:ef:30:4c:
34:55:d0:7f:44:25:09:b4:1f:a5:a7:fc:ac:bc:b8:
60:ae:4b:56:c8:cf:39:bc:90:cf:44:19:27:a1:d6:
82:c7:9f:59:11:e9:ff:6a:5d:2e:33:c6:70:48:c3:
7e:5a:3c:ed:8e:cd:9a:de:09:9c:65:21:0e:a5:f9:
2b:47:54:df:5c:ca:18:d8:9f:38:a2:7b:19:3e:de:
7b:c9:ae:3b:af:2d:4c:31:6e:6c:24:36:af:09:f4:
eb:e8:c2:21:f7:a1:48:3b:9f:6f:96:fb:55:9a:5a:
99:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2D:9A:C6:C2:64:4C:EA:16:FE:12:EC:CD:72:0A:19:A1:80:1E:AC
X509v3 Authority Key Identifier:
keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/fy2axsJkTOoW_hLszXIKGaGAHqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.94.0/24
Signature Algorithm: sha256WithRSAEncryption
91:1d:0b:6e:b8:41:20:f5:50:fe:45:33:2f:b1:c6:a9:63:e0:
77:f0:e7:3c:3a:b4:30:55:a2:2e:a9:cd:00:40:4e:c4:e4:44:
33:67:d2:b8:ce:ae:c6:f4:d5:0e:5c:5c:e0:23:ea:a5:51:7c:
e7:2e:9e:dc:8f:b8:32:d3:72:c5:9d:38:c7:63:12:36:86:6f:
c8:77:f7:3e:1b:90:f5:ba:cb:64:36:ac:41:0a:de:c7:e2:9c:
ef:70:56:0c:be:95:ed:22:3e:23:ce:6b:aa:ea:64:5c:bd:18:
da:48:15:cb:af:dc:75:bb:f6:73:1e:2e:4a:d1:cc:66:70:49:
37:7a:19:d3:1c:b3:f1:c9:35:e4:15:d8:b3:64:87:3f:1d:3f:
b5:af:f0:db:80:50:16:75:d0:79:21:52:ab:f2:87:b4:02:51:
a2:62:9c:63:34:f9:fa:b0:db:08:18:53:78:db:85:0b:eb:cd:
5e:2f:c1:dd:73:5f:57:15:39:46:33:0a:5b:a6:87:1b:92:b4:
5d:e9:37:eb:81:03:14:dc:47:d1:d6:bc:92:8e:69:5c:fa:5b:
1f:4f:68:27:8f:cd:4f:c0:c5:81:3e:38:29:cc:98:5d:83:4d:
14:00:ba:68:f9:92:c5:aa:00:5c:44:65:dd:d2:16:45:3e:36:
88:1e:7a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:42 2024 by rpki-client on console-fra.rpki-client.org