Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/f3ba5e-898c-4fe9-bd88-3c3673d44905/1/2s2wBQ5taFV7mCBYqBLIASGHmaY.roa
File: 2s2wBQ5taFV7mCBYqBLIASGHmaY.roa (raw, json)
Hash identifier: XDU0AMWqpJsRCLi1AY0Rd1gPSYc2QbzIRASi6RJYBa8=
Subject key identifier: DA:CD:B0:05:0E:6D:68:55:7B:98:20:58:A8:12:C8:01:21:87:99:A6
Certificate issuer: /CN=04a4ae7471c8f3621d53256d75f110b748997898
Certificate serial: 018572C36E823D64F708974F5C8162092465
Authority key identifier: 04:A4:AE:74:71:C8:F3:62:1D:53:25:6D:75:F1:10:B7:48:99:78:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKSudHHI82IdUyVtdfEQt0iZeJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/f3ba5e-898c-4fe9-bd88-3c3673d44905/1/2s2wBQ5taFV7mCBYqBLIASGHmaY.roa
Signing time: Mon 02 Jan 2023 13:54:48 +0000
ROA not before: Mon 02 Jan 2023 13:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208721
IP address blocks: 45.14.116.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:6e:82:3d:64:f7:08:97:4f:5c:81:62:09:24:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a4ae7471c8f3621d53256d75f110b748997898
Validity
Not Before: Jan 2 13:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dacdb0050e6d68557b982058a812c801218799a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8b:27:2a:f0:96:7e:b7:9c:11:39:3c:03:c1:
79:d2:05:26:52:01:92:46:24:76:ba:75:cc:08:fc:
1d:44:cc:65:db:9f:fa:14:eb:8a:77:a3:0b:72:4d:
e9:9d:47:ea:91:5d:ca:19:a7:19:3e:ea:39:6a:02:
2c:85:2d:c5:42:39:43:b1:45:93:24:4a:be:ca:71:
aa:04:c4:d7:d7:f1:8b:5b:ff:12:b7:a9:65:9b:50:
af:76:65:c1:05:b1:e3:23:06:7e:a7:80:a2:9e:ce:
55:d8:b6:17:19:4f:66:d1:a0:9b:04:a0:1e:e2:66:
fe:c1:d5:58:4f:e2:ea:07:1d:c1:fb:27:8d:72:8d:
30:82:48:16:58:cc:22:40:60:cf:59:93:7e:09:78:
bf:7d:cd:20:0e:1c:1e:c0:e5:01:ec:a7:0b:54:b1:
89:75:8a:da:7a:ee:0f:12:d3:0c:a1:ec:94:ac:0b:
fe:e7:aa:95:e5:f1:3f:e0:b1:59:5a:22:29:ef:f7:
cb:d0:40:2f:3d:11:38:a5:05:44:be:5c:97:ec:da:
96:84:12:2c:75:43:68:91:b9:76:1e:36:fb:bf:c6:
db:bb:d2:38:bc:4b:64:81:a6:4d:60:8a:f8:3f:80:
f0:4e:4a:5b:e7:9c:aa:ea:62:fd:dd:47:22:e6:3f:
28:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CD:B0:05:0E:6D:68:55:7B:98:20:58:A8:12:C8:01:21:87:99:A6
X509v3 Authority Key Identifier:
keyid:04:A4:AE:74:71:C8:F3:62:1D:53:25:6D:75:F1:10:B7:48:99:78:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKSudHHI82IdUyVtdfEQt0iZeJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/f3ba5e-898c-4fe9-bd88-3c3673d44905/1/2s2wBQ5taFV7mCBYqBLIASGHmaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/f3ba5e-898c-4fe9-bd88-3c3673d44905/1/BKSudHHI82IdUyVtdfEQt0iZeJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.116.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:2c:f6:15:e4:74:dc:43:0c:85:05:d9:1c:c6:4a:12:8b:17:
5f:1f:52:c3:a6:e9:c8:42:7a:c1:96:ef:72:ac:6f:82:2f:99:
fa:0e:39:8b:90:55:5f:ac:5c:58:91:9d:9d:8b:4a:c5:cf:04:
c8:22:9e:1c:b3:a7:50:2b:71:4f:e8:a5:74:0a:e7:0c:a5:03:
70:e1:15:8d:07:33:ae:c7:44:37:86:c4:e8:83:2b:ef:3c:e4:
75:f8:9d:46:04:60:23:6d:07:e3:4e:c3:89:4b:29:09:51:ea:
d4:c2:ce:b5:73:d9:47:53:55:24:ab:3c:d6:f1:4b:67:c4:c2:
ba:70:3b:10:7f:3e:03:3f:de:f5:74:d1:5e:93:d2:63:80:5b:
7c:08:e7:41:b4:bd:23:54:c8:3e:1a:df:a3:a1:fc:ef:b7:26:
b9:6e:16:fa:83:9b:2a:47:57:20:86:c5:91:0d:4a:1f:f6:82:
ab:ce:93:ca:ba:0c:b4:b1:b0:e8:ac:d6:8a:0c:fe:56:74:6d:
a7:78:7f:82:61:d4:c9:81:56:5f:e3:34:1d:26:55:ee:e1:57:
38:6d:7c:3f:44:91:1a:37:a1:77:79:ff:b3:02:09:93:a3:cc:
80:45:e3:fe:a5:4a:f7:1d:bc:1d:af:d3:33:e2:d2:ca:37:28:
08:5c:06:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:37 2024 by rpki-client on console-fra.rpki-client.org